similar to: How to join a domain without using root?

Displaying 20 results from an estimated 5000 matches similar to: "How to join a domain without using root?"

2003 Nov 20
1
Groups and LDAP
I'm a little weak on how the groups assignments work with Samba and LDAP. The Samba HOWTO collection says to map each Domain Group to a UNIX system group, but if all authentication is done via LDAP (Unix and Windows) then do the groups still have to exist on the Samba Unix machine? Where do the RIDs fit into all this? I don't see a schema in LDAP for sambaGroup. Do I create the
2010 Aug 20
3
Users mapping in security tab
Hi there, I have a Samba installation acting as a Domain Member with a disk share (the partiton is mounted with acl and user_xattr options). I am not using winbind, because I want the domain users to be mapped to Unix users. Everything works right, excepting the users in the Windows Explorer security tab. I will try to explain the situation with an example. I have username map, that maps
2004 Mar 04
1
Domain Admin with tdbsam on 3.0.2a
Firstly I apologise for the length of this query but I am hoping that if I document everything I did someone might respond / be able to help. My Configuration is Samba 3.0.2a as a PDC on Redhat 8. I cannot for the life of me get the "Domain Admins" functionality to work I am hoping that another set of eyes can shed some light on this problem as I have now spent 41 hrs googling /
2005 Feb 08
1
Samba v3.0.11 assigning privileges with custom pdb plugin
Greetings, We have home grown user management backend system, and I have ported our v2.2.x passdb over to v3 type plugin. I am able to access files and print using our backend. I am running into trouble joining PCs to the domain. I am assuming the primary problem is that our backend system doesn't have a 'root' user. I was hoping that assigning SeMachineAccountPrivilege to our tech
2023 May 14
1
samba users at boot, the same local and samba user bug has gone
On 14/05/2023 20:32, Kees van Vloten via samba wrote: > The uid + gid are the unique identifier of a user in Linux, the name is > only relevant for the translation of number (uid) to name. > > I.e. a local-user == domain-user when uid + gid are identical. > > My nsswitch.conf prefers local-users over domain-users: > > passwd:???????? files systemd winbind >
2023 May 14
1
samba users at boot, the same local and samba user bug has gone
On 14-05-2023 21:39, Rowland Penny via samba wrote: > > > On 14/05/2023 20:32, Kees van Vloten via samba wrote: > >> The uid + gid are the unique identifier of a user in Linux, the name >> is only relevant for the translation of number (uid) to name. >> >> I.e. a local-user == domain-user when uid + gid are identical. >> >> My nsswitch.conf prefers
2023 May 14
1
samba users at boot, the same local and samba user bug has gone
On 14/05/2023 20:47, Kees van Vloten via samba wrote: > > On 14-05-2023 21:39, Rowland Penny via samba wrote: >> >> >> On 14/05/2023 20:32, Kees van Vloten via samba wrote: >> >>> The uid + gid are the unique identifier of a user in Linux, the name >>> is only relevant for the translation of number (uid) to name. >>> >>> I.e. a
2004 Jul 06
1
Q about net groupmap examples on samba.org
Considering the following page... http://us3.samba.org/samba/docs/man/guide/small.html First of, my compliments to John for some great examples to study. In my mind I see three levels of security: 1) Linux - such as SSH'ing into the Linux server, Linux accounts and groups come into play here 2) Samba PDC - "Domain Admins" "Domain Users" come into play here. Examples
2023 May 14
1
samba users at boot, the same local and samba user bug has gone
On 14-05-2023 21:58, Rowland Penny via samba wrote: > > > On 14/05/2023 20:47, Kees van Vloten via samba wrote: >> >> On 14-05-2023 21:39, Rowland Penny via samba wrote: >>> >>> >>> On 14/05/2023 20:32, Kees van Vloten via samba wrote: >>> >>>> The uid + gid are the unique identifier of a user in Linux, the >>>> name
2015 Apr 22
1
Using smbpasswd users as AD Member
Hi, I'm an old admin used to configure computers by using a few command lines, that used to quite similar for about 20 years now. For example there was a quite simple method to add a smbpasswd for a unix user to allow access to samba shares. Sometimes I like to share directories with the foreign AD world and sometimes I want to keep the directories inside the unix realm. For example a
2023 May 14
1
samba users at boot, the same local and samba user bug has gone
On 14/05/2023 21:05, Kees van Vloten via samba wrote: > > On 14-05-2023 21:58, Rowland Penny via samba wrote: >> >> >> On 14/05/2023 20:47, Kees van Vloten via samba wrote: >>> >>> On 14-05-2023 21:39, Rowland Penny via samba wrote: >>>> >>>> >>>> On 14/05/2023 20:32, Kees van Vloten via samba wrote: >>>>
2006 Jul 13
2
mapping well known groups problem (net groupmap)
Hi I have samba 3.0.14a (debian/stable) and wonder where the problem is that running this command: # net groupmap add ntgroup="Domain Admins" unixgroup=ntadmins rid=512 type=d gives: adding entry for group Domain Admins failed! but (note changed rid) # net groupmap add ntgroup="Domain Admins" unixgroup=ntadmins rid=1000 type=d works fine. Hm, winbind is not working, but I
2023 May 14
2
samba users at boot, the same local and samba user bug has gone
On 14-05-2023 21:21, Rowland Penny via samba wrote: > > > On 14/05/2023 17:29, Michael Tokarev via samba wrote: >> Hi! >> >> We faced another issue with not having samba (ad-dc) users in local >> /etc/password: >> this way, we can't easily have services run as users this way, since >> winbindd is >> started later than most services are (and
2023 May 14
2
samba users at boot, the same local and samba user bug has gone
On 14/05/2023 17:29, Michael Tokarev via samba wrote: > Hi! > > We faced another issue with not having samba (ad-dc) users in local > /etc/password: > this way, we can't easily have services run as users this way, since > winbindd is > started later than most services are (and it requires working network). > Also, > user-defined cron @reboot jobs aren't being
2004 Aug 15
2
Samba not honouring write/admin lists on shares
I'm running debian testing, so samba 3.05 atm. As of a few upgrades ago, which i think coincided with a library restructure or somewhat samba is no longer honouring read/write/admin lists on share definitions. Using the below share as an example, previously all users could access the share with read access, and those in the ntadmins group had write access. Since the upgrade users can only
2004 Aug 12
2
Group management
I'm trying to add a user to the domain admins group in vain. I've tried using the windows usrgrp tool. I've tried doing 'pdbedit -u username -G S-1-5-21-2351621536-730267382-1598341932-512' I've tried 'net groupmember ADD 'Domain Admins' username. The user I'm trying to add is already in the unixgroup that's mapped to the NTgroup. Does any one know
2006 Mar 10
1
Why do un-groupmap'ed Unix groups show up in Windows?
Typical Linux Distros add all sorts of Unix groups to users when it creates them, like cdrom, floppy, dialout, audio, etc... Logging in to the domain from Windows with an account that has such membership over on Linux... "ifmember.exe /list" shows all of those memberships. Why exactly? I would expect only the groups I did a "net groupmap" on would be considered by Samba.
2005 Mar 06
2
Domain login not working with MySQL backend
Hello! I'm kind of stuck here. I'd like to set up a Samba PDC server using a MySQL database backend, so that me and my colleges can easily administer the users with a PHP based web interface. I've already installed and configured Samba 3.0.11 and MySQL 4.0 on FreeBSD. Everything seems to work great, except I can't login. I always get a message that says the domain controller
2006 Jul 02
2
Administrator doesn't have admin rights on workstation
Hello, I'm running FreeBSD-6.1, and Samba 3.0.22 with a Windows XP (SP2) client. As per subject line, administrator doesn't have administrator rights on the workstation. --- 'net groupmap list' gives, Domain Admins (S-1-5-21-3323006203-4037909810-1162086780-3003) -> ntadmins --- 'pdbedit -Lv' includes, Unix username: administrator NT username: Account
2007 Oct 31
3
How to make "Add permission" for folder in system withntacl support?
Hi! Let's go back to this topic please! I have to replace the Windows NT 4.0 server with Samba but I still don't know how to do this. I need to allow to someone (some user group) the right to add files into the folder. They use this "feature" on current NT server ver often and to this in the following ways: 1. Rightclick on file you want to add, Copy, then go to server, for