similar to: Shared posix account for machine trust

I just receive a copy of the official samba 3 howto, to be honest i'm rather disapoint with the content and layout. Well with free online version, i can't complaint, but with 'paid' version maybe i can complain to the author :-). Most of the contents are still the old documentation with few 'little' updation for samba3. Imo, its better if it can be rewrite from scratch

I have some weird error with one of my samba installation. When modifying samba password using smbpasswd, samba seems trying to add same attribute (instead of delete and add again), pls see the "MOD" from log file (from different domain) : UNSUCESSFULL Mar 15 17:10:53 hurricane slapd[27056]: conn=29489 op=1 MOD dn="uid=pwreka,ou=people,ou=purwakarta,dc=indorama,dc=com" Mar 15

When BDC will not make any changes in ldap, is it safe to not set any *script paramater in smb.conf? --beast

Please, I can`t see my messages. Can anyone confirm if it is reaching to the list? Thnaks! ?lvaro ----- Original Message ----- From: Alvaro Lassance <lassance@sidercom.com.br> To: <samba@lists.samba.org> Sent: Thursday, December 27, 2001 1:39 PM Subject: SETEUID > > > Hello! > > > > Anyone knows how I install the "seteuid method" in a RH 7.0? >

I'm just storing machine accounts under ou=computer,ou=site,dc=domain,dc=com and it works. Tested with W2K sp2 and W2K sp3, recreating from fresh ldif 2 times were never failed. Im sure it is 'stable' right now :-) 'works' means it was able to add machine trust on-the-fly, or using manual creation with smbpasswd command. The key is in not to use

If the first LDAP server faild, the second can be used directly. This server is a PDC server with more than 100 people connected and some application required domain authentification for running. For me is a critical server. ----------------------------------- St?phane PURNELLE stephane.purnelle@corman.be Service Informatique Corman S.A. Tel : 00 32

Greetings everyone I finally succeeded in doing the seemingly most difficult thing, "following directions." I got my act together configuring the smb.conf and migrating using net rpc vampire into tdbsam. There are issues with this migration in which computer netbios names which are obviously all uppercase were not being created in /etc/passwd. I put my C cap on and converted the computer

Anyone dare to explain? For #2 I'm not using rpc vampire because it can't migrate hash password. ---- Hi, 1. I want to migrate NT to Samba 3 domain without needing to rejoin all machine (using same domain name and SID). just curious, machine account should belong to what group sid? does it matter if belong to any value? 2. I just examine output of pwdump, some of member domain or even

Is it possible? just for wins server, not for file sharing. --beast

It apparently samba stored trusted info on secret.tdb so only samba PDC was able to retrieve this info, am I correct? (though trust account waqs stored in ldap). I can't browse samba BDC from (trusted) NT domain, it always ask for username/password again. samba domain = IRSJKT NT domain = DOMJKT msg from samba BDC : [2004/03/18 21:16:42, 5] auth/auth_util.c:make_user_info_map(216)

I have a problem with machine trust accounts breaking in a purely Samba controlled domain. I have one master Samba server acting as a PDC, and three slave servers in different networks. The UNIX user account information is updated by means of NIS, and smbpasswd gets rsync'ed to the slave servers whenever there is a change in the file. All this works without problems at all times. When I

Greetings, I was reading over the documentation online for using SAMBA as a PDC, and in the section about creating machine trust accounts is talks about having to add machine accounts to the /etc/passwd file. The text also mentions that future versions of SAMBA will remove this requirement: "Because Samba requires machine accounts to possess a UNIX uid from which an Windows NT SID can

The origine of my message is a problem with my local LDAP server. last thursday I upgraded my RH 8 with the glibc update from RedHAt, after sometimes the LDAP server is unreachable. In log : Mar 2 11:40:02 coradm01 slapd[5342]: warning: cannot open /etc/hosts.allow: Too many open files Mar 2 11:40:02 coradm01 slapd[5342]: warning: cannot open /etc/hosts.deny: Too many open files Mar 2 11:40:02

What should be the flag for PDC machine trust account? If I set to "S" then it will appear as "BDC" in NT server manager, if "W" then as "Workstation or server", if no machine trust then it will not appear on server manager list. --beast

I have a Samba 2.2.7 PDC, and I am now trying to set up a new 3.0.1 server. I want this machine to act as a BDC initially and replicate all the accounts over. When I followed the howto it said to use smbpasswd -S to transfer the machine SID and then to replicate the smbpasswd file to the new server. This has caused two major problems: 1) the smbpasswd command does not support the -S option

I'm still getting near a thousand error messages a day on only one of my two samba servers that both participate in the same W2K domain: [2004/02/16 09:17:52, 0] rpc_client/cli_trust.c:change_trust_account_password(248) 2004/02/16 09:17:52 : change_trust_account_password: Failed to change password for domain ITS. The server getting the errors is version 2.2.7a-security-rollup-fix

I have client running windows 2000 which is part of a domain with a samba (2.2.3a) server running as PDC. Authentication works fine. On the _same_ client I have added a partition that boots into Win XP, it has the same machine name. However I cannot get it to join the domain. I can use the administrator account to look at objects on the pdc, but when I try to create a user account I get a

I read in the Samba HOWTO Collection that every machine in the domain needs to have a corresponding UNIX account. Does this mean whenever I add a machine to the network, I must create a UNIX account for each one?? Am I supposed to create Unix accounts for my users as well? Doesn't this defeat the purpose of using a centralized authentication backend such as LDAP or MySQL?

Is it possible to have samba adminitrator account with non zero uid? I have a problem with email if admin is root. creating alias in postifx is somehow not a good option in my case. Tks. --beast

When configuring samba PDC to use slave ldap, it seems parameter ldap replication sleep did not work, setting any value did not make any different. I have samba PDC and slave/master ldap connected over fast-ethernet switch, ldap replication take less than 2 seconds, however when adding (XP) machine to domain it gives error " The username could not be found". In machine log: Closing