similar to: Problem with RID to unix account mapping in ADS mode

I've gone further down the food chain in diagnosing the problem: A net rpc join command works but wbinfo -u or wbinfo -g fails: [root@hcnas samba]# net rpc join -U Administrator Password: Joined domain MERCURY. [root@hcnas samba]# net rpc info -U Administrator Password: Domain Name: MERCURY Domain SID: S-1-5-21-356471451-824197641-1237804090 Sequence number: 20543 Num users: 625 Num domain

Environment Summary: Samba version 3.0.2-6.3E (Red Hat AS 3.0) Kerberos version 1.3.4 (MIT download - Kerberos 5 release 1.3.4) openLDAP version 2.0.27-11 (Red Hat version - we may try 2.2.13 or 14) pam_smb version 1.1.7-1 (Red Hat version) Red Hat AS 3.0 (2.4.21-15.0.2.ELsmp kernel on a Dell 1750) Windows 2003 using Active Directory One-way trust from Windows 2003 to an NT 4.0 PDC smb.conf

We had to power down all servers today for electrical maintenance in the building and for some reason I began having access problems related to the valid users lists when power was restored. The dialog from the 'Samba-3.0.23 broke my network' thread seemed as if it might be related even though I had not performed any software upgrade so I tried adding the group mappings as discussed in

Hello all When a windows xp workstation join a domain, by windows gui parameters, ldap machine attributes are not filled correctly: - No attribute sambaprimarygroupsid (before, there was one terminated by 515) - rid (of sambasid) is not equal a 2*uid+1000 gid attribute is ok (515) If i create a user, rid (sambasid) equal a 2*uid + 1000 (and sambaprimarygrousid terminated by 513) All the others

I posted this last week but haven't heard anything. I'm not sure if this is because nobody knows the answer (can't believe that!) or I'm missing something obvious in the documentation and people are thinking "Read The Fine Manual". Whatever the reason, if anyone has any insights into this problem I'd be very grateful for their comments. We're using Samba 3.0.23b

On 22/01/15 18:19, francis picabia wrote: > We run AD on Windows servers and have Linux systems > authenticate against AD with pam, for shares, cyrus mail, or shell logins. > For shares on a Linux system we often have no local account. > > We've had success with Samba 3.5.10 and prior versions using > security = ads with winbind, pam, nsswitch.conf, krb5.conf > while there

What is the status of i7 architecture support for CentOS-5? Do the latest updates support it? -- This e-mail may contain technical information which is controlled by the United States Government, Department of State, International Traffic & Arms Regulations (ITAR) (22 CFR 120-130) which requires an export license prior to sharing with foreign persons. Lacking such license, ITAR technical

Hi: We're running Samba on a Unix machine which is a member of the NT domain. This has several interesting ramifications involving UIDs and passwords (I've listed those below). But this is my basic question: Does anyone have any scripts they use across UNIX and NT to create user accounts? I have access to rsh and adduser.pl with the NT Resource Kit, so presumably I could write

Thank you Rowland, that clearly explains why it isn't working for me. Appreciated. I was trying to achieve my goal of having two domain controllers for redundancy, without having additional physical machines - it looks like I'm now in the same boat as the other current thread ("Domain controller in a chroot"), which is unfortunate! :( My scenario is that I have one ESXi

Is there a yum repository which contains the package gtkterm for CentOS-5? -- Michael St. Laurent IT Department Hartwell Corporation -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.

Does anyone know of an ACL/extended attributes enabled version of the Red Hat 9 kernel exist in RPM form? -- Michael St. Laurent Hartwell Corporation

On 12/04/15 13:50, Jonathan Hunter wrote: > Thank you Rowland, that clearly explains why it isn't working for me. > Appreciated. > > I was trying to achieve my goal of having two domain controllers for > redundancy, without having additional physical machines - it looks > like I'm now in the same boat as the other current thread ("Domain > controller in a

Hi all, Now that I've got Samba 2.2.12 running correctly on that HP-UX box, I need to allow write access to a given AD domain group. What is the right way to do it on Samba 2.2? I added a group.map file in smb.conf, and a line inside that said: unixgroup = "AD Domain Group" Then in smb.conf, I put in [global]: groupname map = /etc/opt/samba/group.map And in the correct

We run AD on Windows servers and have Linux systems authenticate against AD with pam, for shares, cyrus mail, or shell logins. For shares on a Linux system we often have no local account. We've had success with Samba 3.5.10 and prior versions using security = ads with winbind, pam, nsswitch.conf, krb5.conf while there is no local Unix account. Starting after this version, possibly 3.6.0 and

Is there not a separate SMP kernel for multi-processor systems in CentOS-5? I don't see one in the repository. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20070801/c1d05b7f/attachment-0001.html>

There was a thread in the past, i know, but i have not found any solution: I have a domain member server Samba 3.0.23c and an AD witch manage the users. Always a user tries to add permissions for an other user I got the error in log.smb create_canon_ace_lists: unable to map SID S-1-5-21-3120594657-2306910035-793260449-1128 to uid or gid. Which means that the Windows SID is not able to map to

Using Samba and active directory mode. Everything works well. I would however like to avoid having the machine accounts have a folder auto generated in the ?home? folder. Is there a way to stop that? They show up as MACHINENAME_ or MACHINENAME$. Thanks.

Hi- I'm deploying a fileserver running Samba 3.0.2a in an environment that contains NT and UNIX users. I'd like to have my fileserver set up as follows: - Users connecting to the fileserver from NT boxes are authenticated against the Win2K ADS Domain Controller. - Users connecting to the fileserver from other UNIX boxes are authenticated locally using NIS and access the shared volume

Hi, thank you for your input guys. 2018-02-08 10:55 GMT+01:00 Denis Cardon <dcardon at tranquil.it>: > unless you have really specific requirements, you should really stick with > RID mapping, it will be easier on the long run. I think that would actually be more pain in the long run, as this pretty much rules out using Samba/AD with sssd/nss-ldap. 2018-02-08 11:25 GMT+01:00

Hi, I've got a Word document on a Samba share that I can't rename, overwrite or open. Attempting to rename it gives: Cannot rename Filename: There has been a sharing violation. Attempting to open it gives: Filename.doc is locked for editing by 'another user'. This is on a NAS box so I can't say which Samba version it is. There are no temporary files in the share to show who