similar to: Proper use of SID's and LDAPon dc's?

I have two samba dc's, same subnet, the goal is to have them both be able to answer domain login requests and therefore if one goes down we still have the ability to login to the domain. Can this be done with samba? if so could you just tell me generally the procedure for this? heres what I have right now. server1, openldap master, samba points to loopback for ldap server2, openldap replica,

Ok I narrowed down the problem I am having here... I have a master ldap server and a replica ldap server. If I point the DC at the master logins don't work, I get a "domain cannot be found" type message. If however I point it at the replica it works just fine. On both servers multiple other services also use ldap, they all work fine with either server, I have phpldapadmin on both

I have a client who has a bunch of macs accessing some samba shares, and they write these ._filename and .DS_STORE files all over the place, he would perfer it to not write these files at all. Anyone ran into this issue? what would be the best way to prevent these files from getting written onto the shares? veto? -- Matt Pruett <entelin@logicaldreams.net>

i have two domain controllers, both have openldap, server1 can write to the ldap database and pushes that to server2 which can only read. In the smbldap.conf file it reads... # Notes: to use to dual ldap servers backend for Samba, you must patch # Samba with the dual-head patch from IDEALX. If not using this patch # just use the same server for slaveLDAP and masterLDAP. # Those two servers

Is it possible (and correct) to have two DC's on the same subnet? Both have write access to an ldap backend. -- Matt Pruett <entelin@logicaldreams.net>

I have setup two samba domain controllers, both have basicly the same configs and use the same ldap database backend. Often however when logging in users will get a "domain cannot be contacted" error, attempting to login multiple times will eventually get them in and it will work fine from then on. The question is, is there anything else I really need to do to make this work correctly?

Dear All, I am still new to iptables and need some clarification and My Current Setup is CentOS 4.4 I need to implement some sort of transparent proxy server for the rsync protocol. (In case you don't know: rsync uses tcp and the standard port 873). I want to port forward the rsync client request to server2 from server1 and Details are given below 1. I am Execute the rsync command from

I hope that someone can let me know what I have done wrong. I need to replace and existing server (server1) with a new server (server2). Server1 is currently running LDAP/Samba (3.0.14). Profiles stored in /opt/samba/profiles I installed all of the pieces, and LDAP works (mostly, I have an issue, see below) I ran net getlocalsid DOMAINNAME on server1 used the SID value in net setlocalsid

RedHat enterprise v4 openldap 2.2.13-4 cyrus-sasl 2.1.19-5.EL4 samba 3.0.10-1.4E.9 krb-libs 1.3.4-27 server1: openldap and kerberos server server2: samba server We have openldap working as posix source for all of our *nix logins - with passwords stored in kerberos accessed via sasl. We have an exiting samba server running on redhat for macintosh/windows user access to network storage. Our

Hello, I just tried to migrate an old samba-server (PDC with tdb) to new hardware. Old samba : 3.02 New samba : 3.2711.. (according to webmin) What I did : I copied smb.conf from old to new. With tdbbackup I backed-up all tdb's I could find on the old machine, and restored them on the new machine. I copied passwd, group and shadow to the new machine. I shut down samba on the old machine. I

i (and others) have missed messages on centos-devel as well. did other people not see the 4.7 announcement message? i'm wondering if the centos list server is having some kind of issue.

I would like to be able to use SID's in linux so as to have ACL's identical to windows. Example usage why: Say I have an ntfs partitioned disk that I share with a co-worker that uses windows. Currently I am connected to the domain using rfc2307 and that allows me to authenticate using AD and on the nfs through the Isilon the windows users see files correctly permissioned but when I share

Did looked up some old threads. it started here : Nov 2013 https://lists.samba.org/archive/samba/2013-November/177110.html Then https://lists.samba.org/archive/samba/2014-June/182429.html On this link, test there shows on the DC.. root at DC2:~# wbinfo -G 3000002 S-1-5-18 root at DC2:~# wbinfo -s S-1-5-18 NT AUTHORITY+SYSTEM 5 root at DC2:~# so it was working in 2014. that was samba 4.1.x

On 31/03/2020 14:29, Dan Stevenson wrote: > > Rowland, > > No problem, thanks for replying. > > > > I use a shell script to add users and set permissions. The actual > adding of new users to the shell and setting Samba passwords is just > done by the standard useradd and pdbedit commands. I do not use sssd. > Ah, light dawns, if you use pdbedit, then you are

Yeah, i noticed, tried also adding user and group.. For the domain member, its not a problem. I have a workaround now for my PC which have joined my domain, so i can go ahead with what im testing. Thanks for haveing a look into it. Greetz, Louis > -----Oorspronkelijk bericht----- > Van: Rowland Penny [mailto:rpenny at samba.org] > Verzonden: woensdag 25 januari 2017 12:41 >

Am 02.12.2016 um 09:34 schrieb L.P.H. van Belle via samba: > Exact, and at this point, im at also. > > Here, typing the username results in the windows event and errors out. > Did a lot of research and im 100% this is and missing mapping. > Typing does not works, i dont know if this is a windows thing or a samba thing. But i found several reports where in a windows 7+ with Server

Hai Rowland, This happens when im creating a "Scheduled task" , this task needs NT AUTHORITY\System but you need to select the account, when you select the account a sid/rid mapping is done and this fails. Resulting in the windows event id and error code. While searching for that i found that i cant type the username. You must select it. To reproduce. Create a GPO : Computer

Hi All, I am running Samba - 3 using a ldap backend, recently I have needed to change the domain of the computers as I am migrating to other server, I have the ldap database and populated the ldap database on the new server, but I am facing a problem with SID's as the SambaSID in the ldap backend is from the old samba server which is different from the current SambaSID(net

Hi, I've running a samba 3.0.22-13.30 server in standalone mode (security=user) for quite a while. It's authenticated against an openLdap and works great, say Server A. A few days ago I've installed OpenSuSE 11 Beta 2 in another server, it came with samba 3.2.0-18, so as I'm very lazy I copied the smb.conf file from the working server to the new one with little modifications

Howdy all, Does anyone have any good advice for trying to serve to windows clients in a two domain enviroment? There is the possiblilty of users connecting with the same username and password from two different domains. As the accounts are generated from an ldap server, the identical usernames in the two domains share a single uid. Point being since the samba server is in one domain, it