Displaying 20 results from an estimated 50000 matches similar to: "Problem with RID to unix account mapping in ADS mode"
2007 Feb 05
2
Urgent help request!
I've gone further down the food chain in diagnosing the problem:
A net rpc join command works but wbinfo -u or wbinfo -g fails:
[root@hcnas samba]# net rpc join -U Administrator
Password:
Joined domain MERCURY.
[root@hcnas samba]# net rpc info -U Administrator
Password:
Domain Name: MERCURY
Domain SID: S-1-5-21-356471451-824197641-1237804090
Sequence number: 20543
Num users: 625
Num domain
2004 Jul 01
0
Samba 3.0.2 - Unix Name Mapping not working properly with Windows 2003 ADS with Trust to NT 4.0 PDC, running on RH AS 3.0
Environment Summary:
Samba version 3.0.2-6.3E (Red Hat AS 3.0)
Kerberos version 1.3.4 (MIT download - Kerberos 5 release 1.3.4)
openLDAP version 2.0.27-11 (Red Hat version - we may try 2.2.13 or 14)
pam_smb version 1.1.7-1 (Red Hat version)
Red Hat AS 3.0 (2.4.21-15.0.2.ELsmp kernel on a Dell 1750)
Windows 2003 using Active Directory
One-way trust from Windows 2003 to an NT 4.0 PDC
smb.conf
2007 Feb 04
3
Samba-3.0.23 problem
We had to power down all servers today for electrical maintenance in the
building and for some reason I began having access problems related to
the valid users lists when power was restored.
The dialog from the 'Samba-3.0.23 broke my network' thread seemed as if
it might be related even though I had not performed any software upgrade
so I tried adding the group mappings as discussed in
2007 Feb 27
0
ldap machine account: bad RID, no SambaPrimaruGroupSID, since 3.0.23c
Hello all
When a windows xp workstation join a domain, by windows gui parameters, ldap
machine attributes are not filled correctly:
- No attribute sambaprimarygroupsid (before, there was one terminated by 515)
- rid (of sambasid) is not equal a 2*uid+1000
gid attribute is ok (515)
If i create a user, rid (sambasid) equal a 2*uid + 1000 (and sambaprimarygrousid
terminated by 513)
All the others
2008 Jan 23
8
Retry: Mapping AD domain users to UNIX users
I posted this last week but haven't heard anything. I'm not sure if this
is because nobody knows the answer (can't believe that!) or I'm missing
something obvious in the documentation and people are thinking "Read The
Fine Manual". Whatever the reason, if anyone has any insights into this
problem I'd be very grateful for their comments.
We're using Samba 3.0.23b
2015 Jan 22
0
Samba 3.6.6, ADS, Winbind, no local Unix account
On 22/01/15 18:19, francis picabia wrote:
> We run AD on Windows servers and have Linux systems
> authenticate against AD with pam, for shares, cyrus mail, or shell logins.
> For shares on a Linux system we often have no local account.
>
> We've had success with Samba 3.5.10 and prior versions using
> security = ads with winbind, pam, nsswitch.conf, krb5.conf
> while there
2009 Jan 22
11
Support for i7 architecture?
What is the status of i7 architecture support for CentOS-5? Do the
latest updates support it?
--
This e-mail may contain technical information which is controlled by the United States Government, Department of State, International Traffic & Arms Regulations (ITAR) (22 CFR 120-130) which requires an export license prior to sharing with foreign persons. Lacking such license, ITAR technical
2000 Jul 28
1
UNIX/NT Account Creation Scripts?
Hi:
We're running Samba on a Unix machine which is a member of the NT domain.
This has several interesting ramifications involving UIDs and passwords
(I've listed those below). But this is my basic question:
Does anyone have any scripts they use across UNIX and NT
to create user accounts? I have access to rsh and
adduser.pl with the NT Resource Kit, so presumably I
could write
2015 Apr 12
2
rid mapping works on member server but not DC
Thank you Rowland, that clearly explains why it isn't working for me.
Appreciated.
I was trying to achieve my goal of having two domain controllers for
redundancy, without having additional physical machines - it looks
like I'm now in the same boat as the other current thread ("Domain
controller in a chroot"), which is unfortunate! :(
My scenario is that I have one ESXi
2009 May 28
1
Repository with gtkterm for CentOS-5 anyone?
Is there a yum repository which contains the package gtkterm for
CentOS-5?
--
Michael St. Laurent
IT Department
Hartwell Corporation
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
2004 May 24
4
Pointer to ACL enabled Red Hat 9 kernel RPM?
Does anyone know of an ACL/extended attributes enabled version of the Red
Hat 9 kernel exist in RPM form?
--
Michael St. Laurent
Hartwell Corporation
2015 Apr 12
0
rid mapping works on member server but not DC
On 12/04/15 13:50, Jonathan Hunter wrote:
> Thank you Rowland, that clearly explains why it isn't working for me.
> Appreciated.
>
> I was trying to achieve my goal of having two domain controllers for
> redundancy, without having additional physical machines - it looks
> like I'm now in the same boat as the other current thread ("Domain
> controller in a
2005 Jan 13
2
Mapping Windows groups to Unix ones on Samba 2.2
Hi all,
Now that I've got Samba 2.2.12 running correctly on that HP-UX box, I
need to allow write access to a given AD domain group.
What is the right way to do it on Samba 2.2?
I added a group.map file in smb.conf, and a line inside that said:
unixgroup = "AD Domain Group"
Then in smb.conf, I put in [global]:
groupname map = /etc/opt/samba/group.map
And in the correct
2015 Jan 22
2
Samba 3.6.6, ADS, Winbind, no local Unix account
We run AD on Windows servers and have Linux systems
authenticate against AD with pam, for shares, cyrus mail, or shell logins.
For shares on a Linux system we often have no local account.
We've had success with Samba 3.5.10 and prior versions using
security = ads with winbind, pam, nsswitch.conf, krb5.conf
while there is no local Unix account.
Starting after this version, possibly 3.6.0 and
2007 Aug 01
2
No separate SMP kernel for CentOS-5?
Is there not a separate SMP kernel for multi-processor systems in
CentOS-5? I don't see one in the repository.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos/attachments/20070801/c1d05b7f/attachment-0001.html>
2006 Nov 08
0
Mapping of Windows SID to existing UNIX users not work
There was a thread in the past, i know, but i have not found any solution:
I have a domain member server Samba 3.0.23c and an AD witch manage the users.
Always a user tries to add permissions for an other user I got the error in log.smb
create_canon_ace_lists: unable to map SID
S-1-5-21-3120594657-2306910035-793260449-1128 to uid or gid.
Which means that the Windows SID is not able to map to
2009 Aug 24
0
ADS mode. Stop machine account auto creating in home folder
Using Samba and active directory mode. Everything works well. I would
however like to avoid having the machine accounts have a folder auto
generated in the ?home? folder.
Is there a way to stop that? They show up as MACHINENAME_ or MACHINENAME$.
Thanks.
2004 Apr 05
2
NT/ADS and UNIX user convergence using Samba
Hi-
I'm deploying a fileserver running Samba 3.0.2a in an environment that
contains NT and UNIX users. I'd like to have my fileserver set up as
follows:
- Users connecting to the fileserver from NT boxes are authenticated against
the Win2K ADS Domain Controller.
- Users connecting to the fileserver from other UNIX boxes are authenticated
locally using NIS and access the shared volume
2018 Feb 08
1
RFC2307: Recommendations for mapping Administrator account
Hi,
thank you for your input guys.
2018-02-08 10:55 GMT+01:00 Denis Cardon <dcardon at tranquil.it>:
> unless you have really specific requirements, you should really stick with
> RID mapping, it will be easier on the long run.
I think that would actually be more pain in the long run, as this
pretty much rules out using Samba/AD with sssd/nss-ldap.
2018-02-08 11:25 GMT+01:00
2006 Sep 19
3
File Locked
Hi,
I've got a Word document on a Samba share that I can't rename, overwrite or open. Attempting to rename it gives: Cannot rename Filename: There has been a sharing violation.
Attempting to open it gives: Filename.doc is locked for editing by 'another user'.
This is on a NAS box so I can't say which Samba version it is.
There are no temporary files in the share to show who