similar to: Winbind and Multiple ADS.

Displaying 20 results from an estimated 110000 matches similar to: "Winbind and Multiple ADS."

2004 Apr 22
2
winbind talking to backup ADS server
Hi- I've set up samba 3.02a and have it successfully authenticating against a Windows 2000 ADS Server. Everything is working great, except that samba (winbind?) won't talk to the backup ADS server when the primary ADS server goes down. I'm shutting off the primary ADS server to test this, and when I do I get the following: [root@iceberg /etc]# /usr/local/samba/bin/wbinfo -u Error
2008 Nov 06
0
winbind and secondary ADS
Hi, I'm working with two AD servers (I was trying to setup a primary and secondary): From smb.conf: password server = server1, server2 security = ADS This is the scenario I tested and the results: ===> Start: CLDAP is sent to server1. Authentication requests (microsoft-ds) are sent to server1. ===> server1 disconnected: CLDAP is sent to server2. Authentication requests
2004 Oct 09
0
winbind doesn't follow updateref in replica ldap server
Hello all, I have setup an HA cluster running under Debian GNU/Linux with samba 3.0.7, openldap 2.0.23 with two machines. Each machine runs winbindd and slapd. One additionally runs slurpd to replicate to the other. Replication works but winbind seems to add entries on the secondary ldap server and not follow the updateref given from the server. This is a problem since the ldap database run
2004 Aug 09
0
winbind joining wrong AD domain?
(Apologies in advance for the length of this message - hopefully someone more familiar with AD will be able to point me in the right direction or at least help me identify what's going wrong here).. I'm in the process of putting together a new print server using Samba and CUPS, and I'm having a bit of trouble getting Samba to properly join the AD domain. Printing works perfectly, and
2007 Aug 16
0
samba3.0.25b group permissions problem via AD+Winbind
Hi Samba people, I'm having a strange problem with Samba 3.0.25b running on solaris 9 with native ADS and Winbind. A domain user (no /etc/passwd entry), jlunch, can write to directories via the unix shell that has group permissions he is part of without any issues. However, doing the same via a samba share (share1) in the same folder (folder1), returns permission denied. It almost appears
2005 Oct 10
3
ADS auth when primary AD server fails
Im having some trouble getting, or even finding out if this works. I have read through the samba by example and all the docs i can get my hands on and i cant get this to work. Maybe it isn't supposed too.... I have setup samba under RHEL4 QU1 to authenticate to AD. I am just using samba to authenticate users for login purposes. It works fine and dandy until my primary AD box goes down. I
2010 Jan 21
0
Samba/Winbind 3.4.4 on AIX 5.3 TL 10 does not retrieve ANY User's Secondary Groups
Hi folks ! Has someone any idea on this issue on AIX 5.3 TL 10 with winbind ? I'm really stuck now ... I think everything is working pretty well with WINBIND and AD 2k3 , but not my most important point : I absolutely need the Secondary groups of each AD user which get connected to the AIX to use this filter with sudo... I only get Primary Group (which is by default "Domain Users"
2006 Feb 14
0
Winbind problem w/ ADS domain local group and other-domain members
This one is probably going off into the esoteric side of things, but Samba/winbind doesn't seem to be working quite as expected in one particular area -- domain local groups having members from other trusted domains. I've searched extensively (google and elsewhere...), and have found little/no mention of this particular problem: "domain local group" members from other
2015 Nov 12
0
How to configure Winbind to use uidNumber and gidNumber
2015-11-12 15:13 GMT+01:00 Rowland Penny <rowlandpenny241155 at gmail.com>: > On 12/11/15 13:48, mathias dufresne wrote: > >> 2015-11-12 14:32 GMT+01:00 Rowland Penny <rowlandpenny241155 at gmail.com>: >> >> On 12/11/15 13:05, mathias dufresne wrote: >>> >>> >>>> >>>> That's for that same reason I don't agree
2011 Jul 11
1
Active Directory failover problem with winbind
Hello, I have configured a Nagios server to be part of a Windows 2003 domain. The Linux server is RedHat 5.3 with winbind version 3.0.22. The configuration is using kerberos and pam with winbind to support Windows user and local account. Everything is working fine until we test the active directory failover. The system is still accessible through domain account but it's very slow and the
2004 Nov 17
0
Authenticating off a Windows 2003 ADS DC with Samba/Winbind
[originally posted to fedora-users] I'm having difficulty getting samba/winbind to authenticate of a W2K3 box. I've searched the list archives and although there are some similar problems, none have seemed to help resolve this one. Here's the network configuration: - Windows 2003 Server gx270-rmaniar [192.168.0.100] - Fedora Core 3 gx280rmaniarFC3 [192.168.0.5] FYI: A Windows XP box
2015 Nov 12
0
How to configure Winbind to use uidNumber and gidNumber
2015-11-12 14:32 GMT+01:00 Rowland Penny <rowlandpenny241155 at gmail.com>: > On 12/11/15 13:05, mathias dufresne wrote: > >> >> >> >> That's for that same reason I don't agree and think it is not fair to not >> give Samba admins the choice. >> If all my 120000 users have primary group id set to 100, as you said all >> newly created
2010 Sep 11
0
Version 3.0.33-3.29.el5_5 + Winbind: UNIX group as valid users
I have setup a Centos5.5 VMWare guest with Samba and Winbind for Active Directory integration, using GUI tools. Authentication works flawlessly, with automatic home directory creation. What I want to achieve now is using local UNIX groups to controll access to shared folders. smb.conf global section: workgroup = COGITANS password server = domainserver.hq.cogitans.it realm = HQ.COGITANS.IT
2004 Mar 16
0
winbind: how to map Windows groups to existing unix groups; limit windows group to unix groups
Hi, I'm running samba 3.0.2a as a windows domain MEMBER, security=ADS. Just installed winbind last week it it looks great. However I would like to have winbind 'map' some windows groups (e.g. "Domain Users") to existing unix groups (e.g. "users"). First I thought net groupmap could be used to achieve this but this tool seems only intended to map unix groups to
2006 Jun 09
0
Winbind ADS feature request
Hello all! I've been successful at adding ADS authentication to my Samba servers on all fronts, and also get kerberos authentication working. I've managed to overcome some limitations (like, for instance, automatic password changes on password expiration), but am facing one last hurdle before I can honestly say that my system is well prepared for (almost) all scenarios. When the
2020 Nov 18
0
samba / debian 10 / security=ads
On 18/11/2020 10:42, Gregory ROCHER via samba wrote: > Hi all > > I'm looking for some help on winbind/idmap for a new host > > > We want to use security=ads so we join this host to the domain > No problem for windows clients : they can mount shares that are > accessible to their primary unix group and secondary unix group(s) You are using AD now, so the primary group
2006 Mar 02
0
winbind, sIDHistory and getpwuid problems
In our native Win2K3 AD domain, several AD accounts have a sIDHistory that carry SIDs from before the AD domain migration in addition to the "primary" objectSID. Samba 3.0.21c winbindd (with idmap OpenLDAP backend) on domain member servers (running SuSE 9.3 Pro) allocates multiple uids for these SIDs with the same (AD) user name: Primary SID: # getent passwd myuser
2015 Nov 12
2
How to configure Winbind to use uidNumber and gidNumber
On 12/11/15 13:48, mathias dufresne wrote: > 2015-11-12 14:32 GMT+01:00 Rowland Penny <rowlandpenny241155 at gmail.com>: > >> On 12/11/15 13:05, mathias dufresne wrote: >> >>> >>> >>> That's for that same reason I don't agree and think it is not fair to not >>> give Samba admins the choice. >>> If all my 120000 users have
2004 Feb 02
0
ADS winbind/krb5 error
Hi all. Pretty new in Linux side of the world. I'm trying to run Samba 3.x on Fedora-core-1 in an ADS environment, with krb5 authentication. Installed Samba 3.0.2rc2 from source, installed the required libraries for kerberos MIT, configured smb.conf and krb5.conf. Run net ads join -U administrator and it worked, i can see the machine account in the active directory. From my linux box I
2003 May 08
1
An old winbind syncronization question
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 First the setup: Samba 2.2.3a on Debian testing, built with ACL support on XFS filesystem. NT4 PDC (Eventually we plan to implement Samba PDC, but that's a ways off.) Secondary offsite Samba server, same config as above, rsyncing data directories every 5-minutes over T1. Offsite Backup server grabbing data off the live Samba server nightly