Displaying 20 results from an estimated 2000 matches similar to: "Hostname handling of openssh"
2004 Sep 22
0
ADS and trusted domains=no
Hello,
we have a problem with the same userid's in different domains.
we have to set the option "allow trusted domains = No" because winbind seens
not beable to browse the
hole AD (30 Domains over 20000 users).
So everything is working fine like kerberos, net commands,....
Ticket name is [user1@DomA.net]
[ 3151]: getpwnam DomA\user1
rpc: name_to_sid name=user1
name_to_sid
2011 Dec 07
0
wbinfo -r not listing domain local groups
Hi,
Between Samba 3.4.15 and 3.5.11 there was a change in how 'wbinfo -r'
gathers the groups of which a given user is member of.
Assume there is a Windows 2003 domain called DOMA. This domain has a
child domain DOMB. On DOMA there is a security group G-DL-DOMA which has
domain local scope. On DOMB there is a security group G-U-DOMB which has
universal scope. Group G-U-DOMB is member
2008 May 29
1
Trustdom setup and trusted group management
Hello,
I did join 2 sites using an IPSEC tunnel, and made one domain trust the
other (2 small Samba DC based domains with about 10 users in each)
I first had resolving issues until I decided to keep only one WINS server
for both networks (though this is still an issue to me because if for any
reason the tunnel is broken, I have no longer WINS on one side).
Finally here is my setup :
Network A
2015 Feb 25
3
samba4 domain member and multiple domains
Hello.
I've got a samba4 domain member server. It works fine for the joined
domain, but I'm not able to let user from a different domain get
access. This worked fine on my samba3 member server, but I don't
remember if I did anything special.
I do have authentication set on the AD object for the users in
question and we have a one-way trust with the other domain. All DCs
are Windows
2008 Oct 10
1
winbind does not list users from trusted domain
Hello all.
I've set up a testing environment with two Windows DCs. The first,
called DCA, is serving the domain DOMA and is running Windows 2003. The
second is called DCB and serves DOMB on Windows 2008.
The Samba machine I'm setting up (named ULYSSES) should be able to
authenticate users from both domains for shell login. I've installed
Samba 3.2.3 as a Debian package and closely
2014 Dec 01
0
How to stop winbind client connecting to trusted DC
Hi All,
Wonder is someone can help?
We have mixed windows & Linux boxes in DomA network. Afaik all DomA clients are blocked and direct connection to DomB are not possible by design & for security.
DomA DC(Windows) -- trust --> DomB DC(Windows)
^
|
DomA Linux Client(DALC) winbind Samba 3.0.33
For some reason DomA Linux Client attempts ldap connection to all DomB DC once in 5 to 10
2005 Jun 02
0
Samba trusted domains and access control lists problem (cannot delete or rename)
Hi,
I am having difficuly deleting and renaming files with users from a
foreign domain using acls.
My setup is as follows :
I have two Samba (3.0.14a)/LDAP domains connected via a VPN (OpenVPN)
with a bi-directional trust relationship established. The trust
relationship appears to be working correctly. I can log on onto PC's at
either end on either Domain :) and the browse lists of both
2006 Aug 22
1
Authentication against AD
Hallo.
I have problem configuring winbind to authenticate against Active
Directory (Windows Server 2003 R2 in native mode).
Our net topology seems as follows:
- We have PDCs for domain DOMA (i.e.) - there are user accounts for all
people on our university.
- We have PDC for domain DOMB (DC for our department) that holds
computer accounts.
- Between DOMA and DOMB is one side trust. So Windows
2006 Oct 17
1
NT4 to Samba Migration and Trusted Domains
Well, I'm attempting to migrate my old NT4-based domain to Samba3. I've
got Samba set up with an LDAP backend, I've extended my NDS schema, and
I've got users in this new domain set up successfully and authenticating.
I've decided that the best, most seamless way to migrate my domain is to
create a new domain which will run alongside the old domain. A
two-way trust
2014 Aug 13
1
(Again) Some trouble with dovecot 2.1(.7) and SASL
The parentheses in the subject are due to referral to this discussion on the mailing list: http://dovecot.org/list/dovecot/2012-February/063851.html
At first I thought I found the problem, but then realized this was 2012 and the suggested patch already is applied in dovecot.
I also have segault messages in my kernel log; not too many, but it was enough to dig for it:
> Wed Jun 25 08:29:05
2005 Feb 07
0
Problems with Trusted Domains
The company I work for is split across two sites, each site has its own
domain. The local end is a Samba server (DomA) with about 50 users, the
remote end is NT4(DomB) with about 150 active users (400+ usernames in
userlist). The two sites are connected over a VPN (Internally
DomA=172.16.1.0/24, DomB=10.1.0.0/16) and the two domains trust each other.
Users from either site regularly visit,
2020 Jan 10
0
smbclient can access sysvol Windows clients cannot
If I create directory on the DomB DC named /test and create the following share:
[test]
path = /test
read only = No
acl_xattr:ignore system acls = yes
DomA users can access that through Windows on DomB without issue, but if I set [sysvol] to "path - /test they cannot".
There appears to be some special magic with [sysvol] I am unaware of. I'm not seeing any
2023 Aug 02
1
[PATCH] ssh_config: reflect default CheckHostIP no
Checking up on this change:
On Wed, 29 Mar 2023 at 19:38, Ed Maste <emaste at freefall.freebsd.org> wrote:
>
> From: Ed Maste <emaste at FreeBSD.org>
>
> By convention settings in ssh_config are shown with a commented out
> default.
>
> Fixes: 6cb52d5bf771 ("upstream: make CheckHostIP default to 'no'...")
> ---
> ssh_config | 2 +-
> 1
2007 May 11
0
About CPU Affinity
Hi all,
I would like to set CPU Affinity like:
vcpu#0 ---> pcpu#0
vcpu#1 ---> pcpu#1
When I start the domain by configuration file defined [vcpus=2] and
[cpus="0,1"], the state become as follows.
vcpu#0 ---> pcpu#0 or pcpu#1
vcpu#1 ---> pcpu#0 or pcpu#1
So, I have to execute 2 commands to achieve the state.
# xm vcpu-pin foo 0 0
and
# xm vcpu-pin foo 1 1
# xm
2008 Sep 19
0
Can't authenticate users from both domains in forest
I have 2 domains in my forest. I need to allow users from both DomA (The
forest root and the Domain the server is joined to) and DomB to log in. All
works fine with DomA, but no one from DomB can log in. wbinfo --domain=DOMB
-u returns error looking up domain users. wbinfo -D DOMB returns the
following:
Name : DOMB
Alt_Name : DOMB.local
SID :
2011 Mar 21
1
Logon scripts not executed when NT4 trusted domain users log in a S3-controlled domain
I'm currently building a Samba3-based domain (DomA) that has a trust
relationship with an existing production NT4 domain (DomB).
DomA uses an LDAP backend. The LDAP server is local on the PDC and is
dedicated to such use. DomA runs Samba 3.5.6 on Debian 6.0.
DomB is an old-timer: NT4 domain that's running for ages.
The trust relationship has been established: DomA trusts DomB.
Clients
2020 Jan 09
2
smbclient can access sysvol Windows clients cannot
Hi everyone,
I have two domains with a two way trust (DomA and DomB).
When users from DomA (on a DomB Linux PC) access sysvol on DomB's DC using smbclient everything works:
# smbclient //DomB /sysvol -Udoma\\user -c 'ls' -k
. D 0 Thu Jan 9 13:53:03 2020
.. D 0 Thu Jan 9 14:28:29 2020
domb
2005 Dec 06
2
Help IDMAP_RID and trusted domains
hi,
it?s me again :(
i?m still not able to use idmap_rid in a trusted domain environment
(samba v3.0.20b Sernet).
well, to be clear: NSS is not working (id, getent passwd <user>, ...) so
samba does not find the posix information for any user from a foreign domain
it?s working in a single domain with
#####################################
# WINBIND - Settings
idmap backend =
2005 Sep 08
1
[UNDERSTANDING] BDC and Trusted Domain
hi list,
just for my knowledge -> we have a working PDC / BDC infrastructure for
our domain DOMA, where PDC trusts another PDC from DOMB (all samba v3).
when PDC from DOMA goes down, is the trust still valid or do we have to
setup the trust on *both* DCs from DOMA (net rpc trustdom establish DOMB
... )? is that possible at all?
thx&greez
--
Michael Gasch
Max Planck Institute for
2008 May 29
1
Winbind: SID2UID looks in own domain only ?
Hi,
Trusting domain: DOMA
Trusted domain : DOMB
We are running samba-winbind 3.0.24 and have problems when
authenticating user from a trusted domain (DOMB) (idmap backend = ad) in
to DOMA.
After some investigations, we found that when we are trying to login as
a user from DOMB, it seems that sid2uid looks in own domain only, and
fails to retrieve uid from sid.
In DOMA:
wbinfo -m shows the