Displaying 20 results from an estimated 500 matches similar to: "sssd getent problem with Samba 4.0"
2013 May 29
1
smbclient fails only for the domain Administrator
4.0.6 with 3.6.12 file server
Hi
Ordinary users can connect fine:
smbclient //oliva/users -Usteve2
Enter steve2's password:
Domain=[HH3] OS=[Unix] Server=[Samba 3.6.9]
smb: \>
log:
schannel_fetch_session_key_tdb: restored schannel info key
SECRETS/SCHANNEL/OLIVA
schannel_store_session_key_tdb: stored schannel info with key
SECRETS/SCHANNEL/OLIVA
auth_check_password_send: Checking
2014 Jul 23
1
sssd problems after dc1 is no longer online
Hi all,
I hope that this request for help will be the last one, for a while to
come. Today, sernet support helped my sort out our DC mess, and they did
a great job. However, sssd no longer works, and I hope someone here can
help out.
We used to have DC1, DC2 and DC3. DC1 was the classic-upgraded, first,
'original' DC, and had to be shutdown, unfortunately. So only DC2 and
DC3
2013 Oct 01
1
Should I forget sssd ?
Hi again,
Thanks again, Denis, Steve and Rowland for your previous answers about
RFC2307 and winbind.
Maybe I'm an dreamer but here is that I wanted to achieve :
Ubuntu server 12.04.3, samba4 as PDC, several NICS : 1 LAN and 2/3 WANS
Use a windows VM (on this server) to control AD through WRAT
AD offers me the 'wishdom' of software deployment and GPO, users are
can't install
2014 Jan 10
1
ddns update fails for reverse zone
Hi everyone.
I have a Linux nsupdate client sending dns update requests via sssd.
Just gone from 4.1.2 to 4.1.3. I've done this:
http://linuxcostablanca.blogspot.com.es/2013/09/samba4-bind9dlz-stale-dns-records-with.html
After which the forward zone update is working fine:
2014-01-10T12:32:35.376142+01:00 hh16 named[4963]: samba_dlz: starting
transaction on zone hh3.site
2013 May 01
0
slow automounted cifs
Samba 4.0.6 git both DC and fileserver with openSUSE 12.3 clients
Hi
I'm trying to debug why logins to Linux clients are sometimes slow. Here
is a login with the user steve2 requesting his (automounted) home folder:
]
Kerberos: TGS-REQ authtime: 2013-05-01T20:57:27 starttime:
2013-05-01T20:57:27 endtime: 2013-05-02T06:57:27 renew till:
2013-05-02T20:57:25
Kerberos: AS-REQ steve2 at HH3.SITE
2013 May 11
1
S4 nsupdate tsig error with internal server
Hi
I know that this has been addressed before but I couldn't find a
solution. Summary: when attempting to write a dns record using nsupdate,
nothing gets written to the zone due to the error:
; TSIG error with server: tsig verify failure
Everything is working. We can login to the domain from the same client
and we have sssd sending the dyndns update requests which also produce
the same
2012 Feb 16
1
acl's, Samba4 and rw shares
Hi
I'm trying to make a share called dropbox rw for members of a group.
/usr/local/samba/etc/smb.conf
[global]
server role = domain controller
workgroup = CACTUS
realm = hh3.site
netbios name = HH3
passdb backend = samba4
template shell = /bin/bash
[netlogon]
path = /usr/local/samba/var/locks/sysvol/hh3.site/scripts
read only = No
[sysvol]
path =
2014 Feb 18
0
sssd + samba4 not working (yet)
Dear list,
It has been a true adventure setting up a samba4 ad with a bind9 backend.
>From what I can see, everything is more or less working:
--> samba itself:
root at bubba3-one:/etc/sssd# smbclient //localhost/netlogon -UAdministrator
-c 'ls'
Enter Administrator's password:
Domain=[EARTH] OS=[Unix] Server=[Samba 4.1.4-SerNet-Debian-7.wheezy]
.
2011 Dec 18
2
Samba 4 WBC_ERR_DOMAIN_NOT_FOUND
Hi everyone
Ubuntu 11.10
Version 4.0.0alpha18-GIT-23a0343
Added a user called steve2. The first time I used winbind, no problems:
wbinfo -i steve2 gave me the info I needed for user and group.
But now it doesn't work:
wbinfo -i steve2
failed to call wbcGetpwnam: WBC_ERR_DOMAIN_NOT_FOUND
Could not get info for user steve2
I can logon OK:
smbclient //localhost/home -Usteve2
Password for
2013 Aug 24
1
smbd looking for non existent files
Hi
4.0.8 file server in a 4.0.8 domain
After a user logs in on a Linux client which is joined to the domain,
smbd is constantly looking for files which don't exist:
Here is the file server log after a user login to a Linux client has
settled down:
[2013/08/24 18:43:24.748511,
3] ../source3/smbd/vfs.c:1140(check_reduced_name)
check_reduced_name [steve2/.icons/gnome] [/home/users]
2012 Jan 23
1
Samba 4 GSSAPI problem
Hi
Same checkout, same provision, same machine.
openSUSE
samba --version
Version 4.0.0alpha18-GIT-c3a7573
hh3:/home/steve # ldapsearch -H ldap://192.168.1.3 cn=steve2 -b
"dc=hh3,dc=site" -Y GSSAPI
SASL/GSSAPI authentication started
<snip>
and all is OK.
Ubuntu
samba --version
Version 4.0.0alpha18-GIT-c3a7573
root at hh3:/tmp# ldapsearch -H ldap://192.168.1.3 cn=steve2 -b
2017 Aug 28
2
Issues with mounting Samba shares after update
Actually it isn't part of AD at all. We are using FreeIPA and Samba. We
just finally figured this out with the help of some folks at Red Hat. It
turned out there was a bug in one of the libraries that came along with
sssd (sssd-libwbclient I believe). Their suggestion to use winbind and the
version of the same library that came with it seems to have solved our
problem instantly. It
2014 Jul 28
0
[sssd] Not seeing Secondary Groups
I am currently looking at migrating my existing CentOS6 servers over to CentOS7 and am currently testing out my sssd configuration on the new build with some issues. For some reason I am unable to see any secondary groups for my user like I would expect, and the /etc/sssd.conf, /etc/nsswitch and related /etc/pam.d configurations should be the same for both my CentOS6 and 7 servers (Configuration
2014 May 20
2
Ubuntu client ddns failure
Hi
I'm trying to get an Ubuntu 14.04 client to update its rr to a working
bind dns DC with Samba 4.1.7. The setup is the same as with our openSUSE
clients with sssd 1.11.15
sssd.conf
id_provider = ad
auth_provider = ad
access_provider = ad
ldap_id_mapping = False
/etc/hosts
127.0.0.1 lubuntu-laptop.hh3.site lubuntu-laptop
127.0.1.1 localhost
But it is sending a request for the wrong
2014 May 20
1
ddns failure on Ubuntu client
Hi
I'm trying to get an Ubuntu 14.04 client to update its rr to a working
bind dns DC with Samba 4.1.7. The setup is the same as with our openSUSE
clients with sssd 1.11.15
sssd.conf
id_provider = ad
auth_provider = ad
access_provider = ad
ldap_id_mapping = False
/etc/hosts
127.0.0.1 lubuntu-laptop.hh3.site lubuntu-laptop
127.0.1.1 localhost
But it is sending a request for the wrong
2016 Feb 02
3
Mac OS X and ACL's
Hi all,
I have a server that has ACL's enabled on it and the groups are set properly from the domain that are applied on top of it for the shared folders. I am running with Mac OS X 10.10.5 on the client side and am having nothing but issues with getting them to respect the ACL's set on the files.
The Server Setup is as follows:
Domain Server: Debian 7.9 with Samba 4.3.4
Member
2013 May 26
1
samba3 file-server crash for Samba4 DC
Hi
I have a s3 fileserver joined to a s4 DC
Here is smb.conf on the fileserver:
[global]
workgroup = HH3
realm = HH3.SITE
security = ADS
kerberos method = system keytab
winbind enum users = Yes
winbind enum groups = Yes
idmap config *:backend = tdb
idmap config *:range = 3000-4000
idmap config HH3:backend = ad
idmap config HH3:range = 20000-40000000
idmap config HH3:schema_mode = rfc2307
winbind
2013 Sep 14
0
BIND9_DLZ disallows ddns updates
Version 4.2.0pre1-GIT-20999fc
openSUSE BIND9.9.3
Hi
We're getting refusal of ddns updates using nsupdate from a client
sending the updates from sssd:
2013-09-14T22:53:36.517230+02:00 hh16 named[11055]: samba_dlz: starting
transaction on zone hh3.site
2013-09-14T22:53:36.522244+02:00 hh16 named[11055]: samba_dlz:
disallowing update of signer=CATRAL\$\@HH3.SITE name=catral.hh3.site
type=A
2013 Apr 11
1
Samba4 Does cifs need a keytab for the multiuser option?
Hi
samba --version
Version 4.0.6-GIT-4bebda4
smb.conf:
[users]
path = /home/users
read only = No
Working on the DC which is also the fileserver
user steve2 can write to his folder at /home/users/steve2
But if we now mount the share:
sudo mount -t cifs //doloresdc/users /mnt -osec=krb5,multiuser
he can't write to the mounted share at /mnt/users/steve2 He gets
'Permission denied'.
2013 Sep 27
2
Adding RFC2307 attributes to an existing Win2003 AD domain?
Running Samba 4.0.9, we have added a pair of Samba4 domain controllers
to an existing Win2003 domain.
How do we determine whether RFC2037 attributes already exist in the
domain? And how would we go about adding them to an already existing
domain?