similar to: ldap: adding user to multiple groups

Hi all, I have a few ldap servers slaved to a primary via syncrepl, all is well. I've set my clients to auth against a few and there /etc/ldap.conf looks like so; uri ldap://primary.domain.com ldap://secondary.domain.com However when either primary or slaves go down, while the clients can log in, access is very slow, ls of any dir is painful. The /var/log/messages shows several failed

Allo esteemed Centos-ers, Noticed something funny with an mdadm mirror based raid the other day. So I had a system disk set to mirror via mdadm. One of the disks went south at a remote office and since there was no one available to swap out the disk, I thought to leave it for later. Well, due to work being what is it, this later became a year. During one of the servers many reboots, much of

hope thus comes under the remit of this mailking list... We use puppet, and Im trying to come up with "code" that will create two user accounts with a shared groiup ID eg? user1 with UID 1000user 2 with UID 1001 but I would like them BOTH to share the GID of 2000 I've tried the following accounts::groups:? ? jointgroup:? ? ? ? gid: '2000' accounts::users: ? ? user1:? ? ? ?

Hello everyone. Well, I have been working very hard lately, trying to get a server up to act as our Samba PDC with LDAP. So far, everything seems to be working well. I've been able to get samba 2.2.8 and openldap 2.0.27 installed with no problems. I've setup my config files (ldap.conf, slapd.conf, smb.conf) as well as added some initial entries to the LDAP directory. I've been

dn: cn=Domain Admins,ou=groups,dc=mydomain objectClass: top objectClass: posixGroup objectClass: sambaGroupMapping gidNumber: 512 cn: Domain Admins description: Netbios Domain Administrators sambaSID: S-1-5-21-3936576374-1604348213-1812465911-512 sambaGroupType: 2 displayName: Domain Admins memberUid: root memberUid: sadmin dn: cn=Domain Users,ou=groups,dc=mydomain objectClass: top objectClass:

Hello all, I could not find anything in the discussion groups or documentation about using LDAP and Unix group mappings. The documentation states that in order to map unix groups to samba groups, you need to use the net group add command. However, I have an ldap backend and all my groups, that I care about are in LDAP. So I have a group called mainwdev. dn:

Hi,all: I'm working on populating an OpenLDAP server (Dapper) for pam authentication. I'm having trouble import LDIFs for my groups. The following is and example: (this imports on CentOS 5.3 i386, openldap version is 2.3.43-3.el5 ) # org.X.admins dn: cn=admins,dc=X,dc=org changetype: add objectClass: groupOfNames objectClass: top objectClass: posixGroup cn: admins gidNumber: 1001

I'm a little weak on how the groups assignments work with Samba and LDAP. The Samba HOWTO collection says to map each Domain Group to a UNIX system group, but if all authentication is done via LDAP (Unix and Windows) then do the groups still have to exist on the Samba Unix machine? Where do the RIDs fit into all this? I don't see a schema in LDAP for sambaGroup. Do I create the

On Fri, 26 May 2017, Christian, Mark wrote: > On Fri, 2017-05-26 at 11:19 -0400, Bernard Fay wrote: >> Hi, >> >> Does a fix has already been made in the CenOS RPM repositories for this >> Samba remote execution code vulnerability, CVE-2017-7494? > yes. samba-3.6.23-43.el6_9.x86_64.rpm And samba-*-4.4.4-14.el7_3.x86_64 -- Paul Heinlein <> heinlein at

I've got a CentOS 6 machine that's slated to go into production providing some web and development-repository services. Part of the environment is gitweb, which works as expected with one glitch: SELinux doesn't allow gitweb.cgi to query sssd to display who owns the repositories. The audit log entries are pretty straightforward, e.g., type=AVC msg=audit(XXXXXXXXXXXX): avc:

-- John H Terpstra Email: jht@samba.org ---------- Forwarded message ---------- Date: Tue, 30 Dec 2003 04:33:24 +0000 (GMT) From: John H Terpstra <jht@samba.org> To: Sundaram Ramasamy <sun@percipia.com> Cc: samba@lists.samba.org Subject: Re: [Samba] suse 8.2 Samba 3 LDAP Domain Join Error : Logon failure: unknown user name or bad password On Mon, 29 Dec 2003, Sundaram Ramasamy

On Thu, 23 May 2019, Stephen John Smoogen wrote: > I might actually be able to have a workable answer: > > alias drf='/usr/bin/df -x tmpfs' /usr/bin/df \ -x autofs -x binfmt_misc -x cgroup -x configfs -x debugfs \ -x devpts -x devtmpfs -x efivarfs -x hugetlbfs -x mqueue \ -x nfsd -x proc -x pstore -x rpc_pipefs -x securityfs \ -x selinuxfs -x sysfs -x tmpfs :-) --

Hopefully I can write this out so someone understands it. We are currently running a number of Solaris servers, to which windows computers need to connect. Currently they connect via NFS using hummingbird's NFS client. This requires them to have a separate unix account along with their windows account. Our idea is to implement samba 3.0.0 to eliminate that NFS client. My current

CentOS 6.4 (amd64) client desktop with SSSD installed+configured to do LDAP AUTH from an openLDAP DS. Groups in LDAP DS -- dsusers (for all users), project1, project2, .... The objective is to give group permissions to directory trees with users belonging to various groups; users thereby inheriting the ACL given to respective groups. Test case -- uid: jdoe, gid: dsusers (primary) On LDAP

Hi Gruss, Had to ditch the VM and start again. Here is the info: tdbdump secrets.tdb |egrep -v '^data|^}|^{' key(21) = "SECRETS/SID/mydomain" key(18) = "SECRETS/SID/sam3dc" key(42) = "SECRETS/LDAP_BIND_PW/cn=admin,dc=mydomain" key(25) = "SECRETS/DOMGUID/mydomain" key(42) = "SECRETS/MACHINE_SEC_CHANNEL_TYPE/mydomain" key(42) =

Stephanie, Thank you for your help. I tryed what you suggest but no luck.. I get this: root@lnxsrvr2:~# /usr/local/samba/bin/net groupmap add ntgroup="Domain Admins" unixgroup="Domain Admins" rid=512 Can't lookup UNIX group Domain Admins Is there something with initial compiling samba 3.0.0 that would disable this? All the documentation that I've seen makes it look so

OK, I had this working a few days ago, but have evidently changed something that I cannot locate. Someone hit me with their 2x4. Samba 3.0.22, Fedora Core 4, ldapsam (OpenLDAP 2.3.24). smbd will not start, with the "ERROR: failed to setup guest info" error (I have "guest account = guest", which is a valid user with correct info in LDAP): ldap_connect_system: Binding to ldap

Hi community, In CentOS 7 there is such rpm (libcxx-devel - it seems from EPEL repository), but in CentOS 8 it isn't. How is it possible to have it there as RPM? because alternative to build it (libc++) from sources is a big headache (I need it in order to build v9 and plv8 projects) Thanks

This is probably pretty simple. The following error appears in my logs since upgrading from version 2.2.8 to 3.0.1: [2003/12/25 14:44:09, 0] rpc_server/srv_util.c:get_domain_user_groups(372) get_domain_user_groups: primary gid of user [testuser] is not a Domain group! get_domain_user_groups: You should fix it, NT doesn't like that I'm guessing that my user's primary group

Hi All, I'm wondering if anyone can shed some light on a problem I'm having. I have a samba PDC with an LDAP backend, keeping the smb.conf file constant, When I have /etc/nsswitch.conf configured with groups: files ldap Then /usr/local/samba/bin/net rpc user info dbb only returns my primary group. If I have /etc/nsswitch.conf configured with groups: files nis Then all