similar to: Manage unix users from AD

Displaying 20 results from an estimated 3000 matches similar to: "Manage unix users from AD"

2014 Jan 21
2
AD domain member with sssd: any downside not running winbindd?
Hi, Setting up a samba4 domain member against a samba4 ad server using Ubuntu 12.04 and sernet packages. AD server is OK. On this domain member, if I use sssd to map windows users to unix users, will I miss something if I disable winbindd entirely? With sssd I already have domain users on linux, getent works, and all seems fine. Asking for some known gotcha? Regards. -- *Marcio Merlone*
2014 Jan 13
1
Samba 4.1.4 sernet packages on Ubuntu 12.04.3
Hi all, I installed SerNet samba packages on a Ubuntu 12.04.3 server and provisioned samba with dns-backend=BIND9_DLZ, but when I start bind it throws "samba_dlz: ldb: Unable to find backend for '/var/lib/samba/private/dns/sam.ldb' - do you need to set LDB_MODULES_PATH?" on syslog. I tried to install ldb-tools, but it conflicts with samba: root at dc01:~# aptitude install
2004 Nov 28
1
use of file.show() under linux session....
Hi all, I know this is a stupid question, but I can't display a text file in a separate console window under a R session in X11 (gnome with MDK 9.2). I use R 2.0.0. When I enter : > file.show("/path/to/my/file/filename.txt" ,pager="gnome-terminal") the new window opens and then I just obtain the blinking cursor after the console prompt :-( I always obtain the same
2014 Jan 16
1
User folder automatic creation - should use skel, but no
Hi, I am testing Samba 4.1.4 Sernet packages on Ubuntu 12.04 to replace our old Samba 3.x server. I edited pam common-session file and added '<https://wiki.samba.org/index.php/Setting_up_a_home_share>session required pam_mkhomedir.so skel=/etc/skel/ umask=0027' just before pam_unix.so and pam_sss.so. If I shell-login on the server it create its homedir as expected using
2018 Nov 27
2
Odd behavior on group membership
Hi, I have a samba 4.7 AD DC running on a Ubuntu 18.04 server with distro packages. I update a user with a new group and this new membership is not reflected on that user. On example below, I can successfully add the user "test.account" to group "test", but not my user "marcio.merlone": root at araucaria:~# id test.account uid=30214(A1\test.account)
2017 May 29
3
SSL problem - no banner
Hi, I am running dovecot 2.2.22-1ubuntu2.4 on a ubuntu 16.04 server. It has a valid Letsencrypt certificate but the problem also happens with a self-digned one. Only openssl s_client -connect localhost:993 works fine and fast, while all MUA's and telnet does not. Telnet timeouts waiting for banner after a minute or so: root at netuno:~# openssl s_client -connect localhost:993
2020 Mar 30
6
Azure AD Connect
Hi, We are preparing to migrate our mail server to Azure and would like to integrate it vi AD Connect with our AD - Samba 4.7 upgrading to 4.11 (Thanks Louis!). Anyone willing to share the experience? I see on some not-so-old posts there is a problem syncing password hashes, but since samba is an ever evolving solution I would like to know how are you dealing with this? Thanks and best
2020 May 04
4
Azure AD Connect
We joined one MS Windows 2012 R2 server to our Samba DC fleet and pointed the Azure AD sync tool to that new Windows AD server and Azure password sync is working well now. I don?t have any experience with distribution groups. Good Luck! > On May 4, 2020, at 10:21 AM, Marcio Merlone via samba <samba at lists.samba.org> wrote: > > So, testing samba 4.12 on a Debian buster I found
2020 Mar 19
3
One more upgrade question
Hi, I have a running samba 4.7.6+dfsg~ubuntu-0ubuntu2.15 on a ubuntu 18.04 server and would like to upgrade to van Belle latest repo. My plan is plain simple: 1. Deploy a new ubuntu 18.04 server 2. Add van Belle repo 3. Install and *then* join the domain as a DC 4. Demote and remove the old one Is this OK? Thanks, best regards. -- *Marcio Merlone*
2013 Feb 06
8
Sieve also filter outgoing messages
Greetings, A probably simple question and answer: can a sieve script be executed on outgoing messages? I already use deliver on postfix, perhaps the sieve script could be executed when saving to the Sent folder? Regards, -- Marcio Merlone
2020 May 07
2
Azure AD Connect
G'Day Marcio and gabben, Douglas (CC'ed) is going to try and look into why this doesn't 'just work' with Samba. No promises, but at least a trained eye will look over the process. If you could help him get set up and understand what works and doesn't that will leave him more time for actual debugging. The Azure AD sync feature is a big of an oddity in Samba, because it
2016 Sep 19
2
Windows 10 anniversary update (1607) causing profile sync errors
On 2016-09-19 14:08, Marcio Vogel Merlone dos Santos via samba wrote: > Em 09/09/2016 12:48, Luc Lalonde via samba escreveu: > >> We have some machines that have updated to the Windows 10 anniversary update (1607) that are having roaming profile sync problems. >> >> Before I search the event logs or provide details, has anyone experience profile sync wierdness? >>
2020 May 25
3
Nested groups when using RFC2307
Hi, Just noticed, I am unable to use nested groups when relying on RFC2307 for filesystem permissions, am I wright? What have I missed? (Samba 4.12 on Buster, 2008R2 domain level) Any migration path to stop using RFC2307 and go to pure idmap without loosing all permissions on a 6T filesystem? Is that a solution? Regards, -- *Marcio Merlone*
2018 Dec 13
5
AD Domain member - getent passwd truncated to only 18 users
Em 12/12/2018 17:39, Rowland Penny via samba escreveu: > The above lines are only applicable for Samba >= 4.6.0 > Add: winbind nss info = rfc2307 > remove the last two lines, see here for more info: > > https://wiki.samba.org/index.php/Idmap_config_ad Oh, God! Vacation is coming... Thank you for such obvious correction. BUT I edited smb.conf the right way, removed
2016 May 05
1
Cannot join server to Samba4 NT4 domain
Em 05-05-2016 00:14, Jones Syue escreveu: > > How about add 'server signing = auto', > for example: > > [global] > server signing = auto Hi, Made no difference if set on the member I want to add to domain, but when set to the server I got this on member: mic-158 samba # net rpc join -S PDC -U domadminuser No realm has been specified! Do you really want to join an
2009 Apr 24
2
Quota: ldap dict
Hi, I have set a dovecot-1:1.0.10-1ubuntu5.1 server on top of a Ubuntu 8.04 LTS box and everything goes fine. All my users are on a LDAP database integrated via nss_ldap, so from the dovecot point of view they are all local system users. Now I want to set maildir quota for everybody, and was wondering if I could store quota limits per user on LDAP. As I read on
2018 Aug 16
2
NT3.x -> AD: accounts and profiles
Hi, Since we cannot join a W10 machine to NT3.x domain anymore, it is time to move on. We have a decade-old domain 'A1CWB' and will profit from the situation fixing the old S-1-5-21-1234567890-1234567890-1234567890 SID and implementing a new domain name: Old domain: A1CWB, SID S-1-5-21-1234567890-1234567890-1234567890 New domain: AD.A1.IND.BR, decent SID from net getdomainsid, two
2016 May 04
3
Cannot join server to Samba4 NT4 domain
Em 28-04-2016 12:14, Rowland penny escreveu: > On 28/04/16 15:16, MI wrote: >> I have a Samba 4 NT4 PDC (Version 4.1.17-Debian) with openLDAP. >> >> I would like to add another server, and have it authenticate users >> against openLDAP. I thought I had to add the new server to the domain >> with "net rpc join", but that seems to think I want to join an
2018 Nov 28
2
Odd behavior on group membership
Hi Rowland, Those tests were made on DC (araucaria), not a domain member. root at araucaria:~# testparm /etc/samba/smb.conf Load smb config files from /etc/samba/smb.conf rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384) Processing section "[netlogon]" Processing section "[sysvol]" Loaded services file OK. Server role: ROLE_ACTIVE_DIRECTORY_DC Press
2010 Jun 18
1
Help with a generated sieve rule
Hi all, Can some kind soul please help me find why this rule did not work, what's wrong? I am using dovecot 1:1.2.10-0xk1. ## Generated by RoundCube Webmail SieveRules Plugin ## require ["vacation","variables"]; set "subject" ""; if header :matches "subject" "*" { set "subject" "${1}"; } #