similar to: Listing groups in the AD

Hi, I am currently trying to configure AD (Windows 2003) + Linux (CentOS 4.4) to allow user logins for certain users, namely, developers. The winbind authentication part of it is working correctly, but every user in AD can login to the servers via ssh. I have tried to limit users by adding valid_users = @"domain+developers" (+ is the separator) on /etc/samba/smb.conf, but this

Hello All, Samba is posting the following error messages repeatedly during user authentication: Feb 20 09:35:50 SUMSRVR smbd[27950]: [2007/02/20 09:35:50, 0] rpc_server/srv_util.c:get_alias_user_groups(206) Feb 20 09:35:50 SUMSRVR smbd[27950]: get_alias_user_groups: gid of user xxx doesn't exist. Check your /etc/passwd and /etc/group files It does not appear to be causing any problems,

Hello, i have some problems migrating a Windows 2000 PDC to a Debian GNU/Linux Samba Server, i want to migrate it to a LDAP backend.. but as i'm kind of newbie with ldap and samba migration stuff, i preffered to migrate it to tdbsam first and try it for a while, if everything works fine, then switch to a ldap backend. The problem is that Essential Windows Groups are automatically created, so

Hello, I have a test environment with 1 windows 2000 AD domain pdc ( mixed mode install ), 1 linux server ( to become pdc ) and a win xp box to test logon when the migration was completed. The problem is no matter what I try after the migration the win xp's logonserver = windows server not linux server. I have no idea what is going on here. I've listed the process for migration

Considering the following page... http://us3.samba.org/samba/docs/man/guide/small.html First of, my compliments to John for some great examples to study. In my mind I see three levels of security: 1) Linux - such as SSH'ing into the Linux server, Linux accounts and groups come into play here 2) Samba PDC - "Domain Admins" "Domain Users" come into play here. Examples

We have bumped into a most odd problem. Server: Debian Etch and their Samba 3.0.24-2 Client: WinXP SP2, MSI v3, all hot fixes The following settings are in place on the server: #!/bin/bash # # initGrps.sh # Map Windows Domain Groups to UNIX groups net groupmap add ntgroup="Domain Admins" unixgroup=domadmin rid=512 type=d net groupmap add ntgroup="Domain Users"

Howdy People, I have a problem with roaming profiles in samba 3.0.5 on redhat9 ( installed from the rpm with rpm -Uv samba.3.0.5.rpm I am not using LDAP ( dont know how and as I am a Netware person on a very steep learning curve with Samba, didn't want to complicate the installation after seeing every second posting on this list as a ldap problem). The smb.conf file is listed below. The

Hello. After fresh install. Samba and ldap seems to run normally ( I can join win2k workstation to linux samba pdc ). Using yast I create a system group named domadmin But I am unable to map "Domain Admins" to domadmin I am unable to map "Domain Admins" to existing ntadmin group I am unable to mofify mapping "Domain Admins" to domadmin group Thank you for

Hello, Second post: first had logs attached but was too big. I have a test environment with 1 windows 2000 AD domain pdc ( mixed mode install ), 1 linux server ( to become pdc ) and a win xp box to test logon when the migration was completed. The problem is no matter what I try after the migration the win xp's logonserver = windows server not linux server. I have no idea what is going

Hello again, I am using samba 3.5.6. I have another though maybe this problem occurs due to my OpenLDAP service? My /etc/openldap/slapd.conf is using: [...] access to dn.base="" by * read access to dn.base="cn=Subschema" by * read access to attrs=userPassword,userPKCS12 by self write by * auth access to attrs=shadowLastChange by self

Firstly I apologise for the length of this query but I am hoping that if I document everything I did someone might respond / be able to help. My Configuration is Samba 3.0.2a as a PDC on Redhat 8. I cannot for the life of me get the "Domain Admins" functionality to work I am hoping that another set of eyes can shed some light on this problem as I have now spent 41 hrs googling /

Hi I have samba 3.0.14a (debian/stable) and wonder where the problem is that running this command: # net groupmap add ntgroup="Domain Admins" unixgroup=ntadmins rid=512 type=d gives: adding entry for group Domain Admins failed! but (note changed rid) # net groupmap add ntgroup="Domain Admins" unixgroup=ntadmins rid=1000 type=d works fine. Hm, winbind is not working, but I

Hello I have been solving a problem how to make a nonroot user able to administer the domain (add users, groups, modify them etc.) from Windows workstation using usrmgr.exe It looks like what is stated in Samba HOWTO collection as prerequisites is not enough. First I found Chapter 12 cxl "How to make Samba PDC users member of the Domain Admins group" - made the nonroot user member of

I thought I had this working when I tested it a few months ago with a different test server, but I?ve tried everything from my previous notes, and can?t get it to work now. I?m replacing a Samba 3.0.10 Unix server with a SerNet Samba 4.1.2 Debian Wheezy server. The new server has to look exactly the same to the existing workstations. The workstations are all running Windows XP Pro. I?ve

We would like to migrate grom Winnt 4.0 to Samba 3 with ldap support. We have installed openldap on Rh 2.1 AS and created starting databases with IDEALX.org scripts. Now i have added computer to domain no problems and than I tried to migrate users and groups, but only user migrate but there is a problem " Primary group of Administrator has no mapping!" ( this is error for every user).

Hi, I think at first you have to do a net groupmap add all the well known Groups. System Operators (S-1-5-32-549) -> -1 Replicators (S-1-5-32-552) -> -1 Guests (S-1-5-32-546) -> -1 Domain Users (S-1-5-21-3732367786-856876144-3282938955-513) -> -1 Domain Admins (S-1-5-21-3732367786-856876144-3282938955-512) -> -1 Power Users (S-1-5-32-547) -> -1 Domain Guests

Good day list, I hope, you will pay attention to my small problem (big problem for me). I'm totally new to samba, so I don't know exactly, where the problem is. Situation - I need to setup samba as a domain controller (and fast!). Server - openbsd 3.9, samba 3.0.21. There are my configs: smb.conf -------------------------------------------------------------------------------------------

Relevant part of "net3 groupmap list" is System Operators (S-1-5-21-1617713866-2789119093-1479812082-1007) -> sys In howto there is the following example net groupmap modify ntgroup="System Operators" unixgroup=sys net groupmap modify ntgroup="Power Users" unixgroup=sys You can add System Operators but trying to add Power Users fails. If you do it in reverse

Hi I am new to linux & Samba. I would like to setup Samba as a domain controller and using Fedora-ds for authentication. I have read some documents from www.samba.org but I am still in the mist. Here is my dumb questions about Samba as follows. 1. Is CENTOS4.6+SAMBA3.0.25 as PDC +FEDORA-DS possible? 2. Is this HOWTO from

Hi list, I'm trying to set up a samba server and have run into a problem: Whenever I try to access a share other than /home/<user> I get a message saying that this resource is nonexistant on the server... I have problems getting "net groupmap modify" work, the commands I'm using is: net groupmap modify ntgroup="Domain Admins" unixgroup=root net groupmap modify