Displaying 20 results from an estimated 10000 matches similar to: "Samba4: net ads join fails: Host is not configured as a member server."
2012 Aug 02
9
winbind: uid range is ignored
Hi everone.
Ubuntu 12.04 v3.6 clients with winbind joined to 12.04 Samba4 DC
Clients:
smb.conf
[global]
realm = polop.site
workgroup = POLOP
security = ADS
wide links = Yes
unix extensions = No
template shell = /bin/bash
winbind enum users = Yes
winbind enum groups = Yes
idmap uid = 300000-400000
idmap gid = 20000-30000
/etc/nsswitch.conf
passwd: compat winbind
group: compat
2012 Nov 23
2
Samba4 - Bind Config with DHCP
To those who will eb able to assist,
Platform: On Ubuntu 12.04 I have used the latest Git version.
I have installed isc-dhcp-server and bind9 from the plain apt repositories and have configured DHCP and BIND9 so that DHCP can update DNS entries via the hmac-md5 as so:
key rndc-key { algorithm hmac-md5; secret "XXXXXXXXXXXXXXXXXXXX==";}
allow unknown-clients;
use-host-decl-names on;
2012 Aug 16
1
S4 DC S3 file server: samba-tool and net ads user problems
Hi everyone
I have a S4 DC with a S3 fileserver. I want to create users and their
UninxHomeDirecory on the fileserver. I can do this with a script which
uses ldapmodify. Fine so far.
The user shows in getent passwd on the DC and in wbinfo -u on the S3 box
but does not show in getent passwd on the fileserver. The user has been
created with all his rfc2307 attributes but is invisible to
2013 Feb 13
2
Extend Samba4 Schema Scope
Hi All Experts,
I am about to extend our production Samba4 schema to add a few
intra-organizational attributes (Employee ID,Passport No., Date of
Joining, Date of Leaving) . How can
I make change in my samba4 schema. I have already make a post in the
forum, but got no reply. Sorry for
posting again. But precaution should be taken in to prevent the server
from any damage.
Kindly help.
With
2013 Apr 01
3
SAMBA4: pdbedit not changing SID
Since I don't seem to be having any luck with the classicupgrade, I
decided to try starting from scratch and then adding users.
I ran the command:
/usr/local/samba/bin/samba-tool domain provision --realm=<my realm> \
--domain=<mydomain> --adminpass 'mypass' --server-role=dc \
--dns-backend=BIND9_DLZ
Then I tried both adding and changing users. In neither case can I
2012 Aug 15
1
Domain Admin cannot access files
Hi
I just joined a Samba 3.6.3 machine as a file server for a Samba4 domain.
Normal users can login and reach the shares apart from the domain
Administrator.
After Administrator has logged in, any attempt to reach the file server
results in a username and password prompt. Supplying the correct
information still will not allow share access for Administrator.
Using s3fs under Samba4,
2013 Feb 11
1
Samba4: Extending the Schema
Hi
We are thinking of Developing a corporate Directory application the would
pull user information from Samba4 Ad. However for our needs we need some
additional User attributes that don't seem to be available as part of the
AD-schema, such as "Hire Date" or "Emergancy contact information", so it
seems to me that I would need to Extend the Schema to make this user
2013 Jun 29
1
samba4 pdc: Import sudoers active directory schema to ldb
Hi guys and congrats for bringing a fantastic project to the open source world. I' ve setup a samba4 pdc succefully and i am able to do domain logins. I was also able to add the automount schema into the ldb. But when it comes to sudoers schema i cant import it in.
Further system details:
Debian wheezy 7,
samba 4.0.6 compiled from source,
sudo-ldap standard binary package from repos.
I have
2012 Aug 17
1
About s3fs in samba4
Reading Whatsnew.txt in samba I understand that If I use s3fs, as it is
set by default in the provision step, I won't be able to modify GPOs
later, right?
So I have a couple of questions:
- What's the advantage of using s3fs over ntvfs in new installations?
- If I'm planning to deploy a new Domain, probably needing to change GPOs
later, should I select ntvfs???
Best regards,
Felix
2012 Nov 21
1
Samba4 logon server against windows server 2003
Hello,
does any one knows how I can force samba4 to be the logon server against windows server 2003?
I have below in my smb.conf but it doesn't help:
? domain logons = Yes
? domain master = Yes
? preferred master = Yes
? os level = 255
Best Regards,
Innocent.
2013 Jan 04
1
Samba4 & Key Management Server; DNS Failure To Register
I have Microsoft Key Management server on a Windows 2003 server - joined
to my new Samba4 AD domain.
But the KMS is not available. In the event log it says:
Event Type: Error
Event Source: Software Licensing Service
Event Category: None
Event ID: 12293
Date: 1/4/2013
Time: 3:05:38 PM
User: N/A
Computer: IPECACA
Description:
Publishing the Key Management Service (KMS) to DNS in the
2013 Apr 15
2
file share necessary?
On
https://wiki.samba.org/index.php/Samba_AD_DC_HOWTO#Setup_a_basic_File_Share
the instructions says
For the server to be useful you, will need to update it to have at
least one share
What do you need a file share for the server to be useful? Isn't a
domain controller 'useful' to authenticate machines and users even if it
doesn't have a file share? I would have thought
2013 Apr 15
2
python scripting samba
Can someone point me to some documentation on scripting samba user and
group management from python? I'd much rather not do this via calls out
to samba-tool, and if I could do this remotely (via LDAP like calls) I'd
be even happier.
Cheers,
Geoff
2012 Oct 19
2
PDC and BDCs : net rpc testjoin
People,
I have one PDC and a BDC on the matrix side and two BDCs on the branch
office.
I don't know if it is a problem. Anybody could help me?
PDC # net rpc testjoin
get_schannel_session_key: could not fetch trust account password for domain
'DOMAIN_NAME'
net_rpc_join_ok: failed to get schannel session key from server PDC for
domain DOMAIN_NAME. Error was
2013 Jan 22
1
[Samba 4] Issues with uidNumber and gidNumber in AD for Linux clients
Hi,
I am still experimenting with Samba 4 and I'd like to serve both
Windows and Linux clients with Samba (standalone AD server). The
Windows-side is already working well. For serving Linux-clients I need
to store the users' uidNumber and gidNumber in the Active Directory.
This is how I do that:
1. Create a user "test" with samba-tool
2. Get the internal UID which was assigned
2012 Aug 17
1
XP Administrator has no access to shares
Hi
S4 DC with S3 fileserver.
smb.conf on the fileserver:
[global]
workgroup = ALTEA
realm = HH3.SITE
security = ADS
kerberos method = secrets and keytab
winbind enum users = Yes
winbind enum groups = Yes
idmap config *:backend = tdb
idmap config *:range = 3000-4000
idmap config ALTEA:backend = ad
idmap config ALTEA:range = 20000-40000000
idmap config ALTEA:schema_mode = rfc2307
2013 Apr 15
3
Winbind strip domain from username?
Hello Folks,
This directive works with Samba3 but does not seem to work with Samba-4.0.5:
winbind use default domain = Yes
I want to get a username that does not contain the domain (GIGL). Instead here's what I get:
[root at roquefort ~]# getent passwd | grep GIGL
GIGL\Administrator:*:0:100::/usagers/%U:/bin/bash
GIGL\Guest:*:3000002:3000003::/usagers/%U:/bin/bash
2013 Aug 15
2
Remote linux auth vs samba4: winbind or nslcd + openldap.
I'm lost in documentation.
I setup a samba4 AD, and configured winbind so I can have local
authentification using pam, I can now login to AD users v?a ssh.
I want to achieve the Holy Gria of 1 source of users and password, for
both, linux and windows machines, but I'm lost in documentation.
So far I know:
samba4 cann't use openldap as backend.
samba4 ldap doesn't really is a full
2013 Apr 13
1
samba4 rfc2307 practice and confuse
hi:
I setup a small samba 4.0.5 AD DC server. my client is windows 7 and
linux. and I use windows 7 with remote managment tools to manage rfc2307
account seetings of samba4 DC. I hope my users can use the same account to
use windows and linux.
samba4 DC provsion command as below:
samba-tool domain provision --use-rfc2307 --function-level=2008_R2
--interactive
and smb.conf global
2012 Jul 11
1
splitting services in samba4
Question: Right now samba4 is great as in all-in-one solution (samba,
kerberos, ldap, dns) into one service.
Is it possible to split it up so that for example, I run openldap on one
server, kerberos on another server, and then dns/samba on a third server?
br,
Quinn