similar to: changing SID breaks some permissions

so I have some local users that I'd like to show up in my samba domain a bit more properly, but it's infeasable to add their accounts to the ldap directory proper. I've tried to create an idmap entry (probably wrong) and a structural SID with a sam account pointing to the numeric UID and a proper name for the unix account, but it still shows up as UNIX-USER/accountname. what am

Hi, I''ve been working the past 8 hrs combatting DDoS attacks on websites and dedicated servers I host for clients. They''re hitting one specific IP address, but coming from thousands of external IP addresses. I use: shorewall-4.0.10-3.noarch How can I tackle this? I''ve blocked many subnets in the blacklist file but it''s made very little difference. If

I found a fancy, easy (seeming) way to add printer drivers in windows 7 since the old methods don't seem to work anymore. if you run mmc, you can add a snapin called print management, which enables you to manage various things (drivers, forms, ports, and printers to be most important). Problem is, I can't figure out how to use the "Drivers" method to add drivers. I get a

how to do only users from ldap? i'm not running in domain mode, I'd just like to be able to have the same username and password for users from ldap. there are no machines, and nothing else, just users and groups. all the guides I find have machines in ldap too, and require domain mode, I'm not sure which pieces need tobe changed.

I have some shares on a media server that are considdered "Local, offline content", namely they should be accessible if the rest of the network is down, and each system has it's own group of users who are allowed to maintain it. the media servers in the livingroom are only for my wife and I, but each person can modify the one in their own bedroom and noone elses bedroom.

I would like to dnat certain protocols (HTTP, HTTPS, SSH) to the contents of an ipset (lan:+serviceshost or similar) where the ipset is ensured to contain only one host, but can be changed dynamically when services are in maintenance mode and go to the "services are down" message on another server. Will this work, or am I barking up a fish here?

I've got a somewhat special domain (servers only, no clients, for unified passwords stored in ldap and unix passwords are in there too), and I'm looking at my directory and there are a few things I don't quite understand, or that I need some clarification on.. 1) these "Domain Admins" and "Domain Guests" and "Domain Computers" groups.. do they NEED

Hi all, I need help to clear a bit of confusion regarding SIDs on Samba servers. I had my PDC collapse on Thursday which wasn't too much of a problem as I had everything backed up but I'm now in the position that I have a mismatched Domain SID. If I run net getlocalsid I get the sid for the server (called smb0) and net get local sid <domain> returns the sid for the Domain. I

I''m converting my network from a "one interface per segment" to a "single connection with vlans", well, some hardware I have requires using different vlan IDs. suffice it to say I need bridges to connect a few different vlans that should all be one but can''t be because of firmware constraints. so my first step is to get shorewall to know about bridges.

Is there a way to change SAMBA Domain SID? My SAMBA PDC Server hard drive crashed. I have created a new install with new Samba PDC Server. I know my old Domain SID. Is there a way to change the New Domain SID to original SID? I have read losts of thread here. I have tried "net setlocalsid SID" command on the SAMBA PDC Server. But, that did not change the Domain SID. I have

I have an admin machine, and a backup server which does backups. The backup server has IPMI so I can do lights-out admin, and I want to allow this from the admin machine only. IPMI is completely unfirewalled, and so it must have a different class C than working networks.... this is just how it is. I''ve set the IPMI IP on the backup server to 192.168.10.4, and created a virtual

Hi folks, We just had a problem with our samba server here in the office. I upgraded our file server from Debian wheezy (samba 3.6) to Debian jessie (samba 4.1) but this broke Samba and I struggled for a day or so to figure out why. Searching for answers online found lots of cases of similar problems but nothing jumping out as a relevant solution. This is my global config section [global]

I am in the process of building a new machine to replace several older servers. I am considering running several virtual servers on one box, all linux for host and virtual machines using VirtualBox. Is it possible/advisable to configure shorewall on the host to act as a firewall for the virtual machines, each having one or more static public IP address? Any pointers, suggestions and/or

Hello, I recently noticed a problem on our PDC (samba 3.0.32 on SLES 10 SP2) which I kind of know how to solve after web research but I am unclear about the possible consequences for our domain and clients. The situation is this: Originally samba was set up on this machine to test. Back then its hostname was infrahostnew, so there is a SID for that NETBIOS name in secrets.tdb. When the PDC went

Hi, For reasons best known to the IT admin before myself, we currently have a domain name of WARLOCK. I want to change this. We have about 15 WinXP Pro client machines on the domain as well as a few linux domain clients. A bit of reading shows that it should be as simple as doing a net getlocalsid, making the change, followed by a net setlocalsid. I started doing this when I noticed something

I have a domain with Samba 3 acting as PDC, and using LDAP (passdb backend = ldapsam). I now wanted to add a second Samba 3 machine as a simple file server. I get errors with getdomainsid and getlocalsid, so there is obviously still something wrong with my config. The PDC runs Samba 3.5.6 on Debian Squeeze. Sid queries return: # net getdomainsid SID for local machine MY_PDC_HOST is:

I am trying to change the localSID for a SAMBA server, however I am unable to. I have tried the command "net setlocalsid" to no avail. To troubleshoot I have also stopped the smbd and nmbd services, but this did not help. Any help would be great! root at TheWiggle:~# net getlocalsid SID for domain THEWIGGLE is: S-1-5-21-748580849-194208185-3916830000 root at TheWiggle:~# net

hi, i'm trying to migrate my samba 2.2.8a pdc to 3.0.12 pdc. I'm using ldap and i have already migrated all the data. Also i have executed convertSambaAccount for the new schema. My problem is that I cannot set the old SID (samba 2.2.8) to the new samba 3.0.12 for that the clients can authentificate to pdc server. samba2.2.8> smbpasswd -S LDAP Successfully set domain SID to

http://samba.org/samba/docs/man/Samba-HOWTO-Collection/ This document has provided more information to me than I can adequately express, and as masochistic as it sounds, I'd kinda like to pop a copy on my nook and devour it. along with any of the other docs hosted on the samba website. has anyone prepared epubs of the documentation? if not epubs, than at least xhtml files in a zip

None of my systems can use lld2d to map the network when connected via wireless, but it works fine over the wireful network. the wireless is client -> hostapd -> ath5k -> bridge -> kernel with shorewall handling the bridge and kernel, as best I can explain it. on the bridge is also a wired device and a bunch of other PCs. the wired PCs can all map using lld2d just fine. lld2d