similar to: Samba4 and idmap_ad

Hello from Germany, I have a problem with the following constellation: A Samba-Fileserver - Samba 3.5.6 - running in a Windows AD as a member server using idmap_ad for the mapping the User-IDs. This all works fine as long as the LDAP-port 389 is available on the domain controllers. Now, our AD admin wants to close this and move over to LDAPS. And here is my problem. How do I configure my Samba

On 01/13/2015 10:41 AM, Rowland Penny wrote: > On 13/01/15 15:11, John Lewis wrote: >> On 01/13/2015 09:23 AM, Rowland Penny wrote: >>> On 13/01/15 14:06, John Lewis wrote: >>>> On 01/13/2015 06:35 AM, Rowland Penny wrote: >>>>> On 13/01/15 11:33, John Lewis wrote: >>>>>> This morning I remapped gidNumber from primaryGroupID to

On 01/13/2015 09:23 AM, Rowland Penny wrote: > On 13/01/15 14:06, John Lewis wrote: >> On 01/13/2015 06:35 AM, Rowland Penny wrote: >>> On 13/01/15 11:33, John Lewis wrote: >>>> This morning I remapped gidNumber from primaryGroupID to gidNumber. I >>>> did that because I could not change the integer in primaryGroupID wit >>>> ldbedt as root.

Hi list I have trouble setting up the system permissions to be secure. Here my basic setup. 2 groups: users and staff /home/user should have the permissions user:users rwx------ /mnt/staff should have the permissions user:staff rwxrwx--- For the last one users should'nt have access. I test with fx.: user=staffuser, primarygroup: users, member of group: staff If i setup the permissions to

@Andrew: I expect these lines came from RDP issue workaround which should be happening with previous Samba version. I removed all these lines as now, with 4.2.2 Samba version RDP and RSAT are working well without them. I removed also each and every idmap lines, commented most of winbind lines too and now my smb.conf is: ------------------------------------------------------------ [global]

2015-06-30 12:42 GMT+02:00 Rowland Penny <rowlandpenny241155 at gmail.com>: > On 30/06/15 11:17, mathias dufresne wrote: > >> @Andrew: I expect these lines came from RDP issue workaround which should >> be happening with previous Samba version. I removed all these lines as >> now, >> with 4.2.2 Samba version RDP and RSAT are working well without them. >>

My smb.conf looks like so. [global] security = ads realm = MIND.UNM.EDU workgroup = MIND idmap config * : backend = tdb idmap config * : range = 2000-7999 idmap config MIND:backend = ad idmap config MIND:schema_mode = rfc2307 idmap config MIND:range = 8000-9999999 idmap config MIND:unix_nss_info = yes winbind use default domain = yes restrict anonymous = 2 I have

Cit?ju Rowland Penny <rowlandpenny at googlemail.com>: >> CFG files from fileserver: >> ============ >> krb5.conf >> [libdefaults] >> default = INTERNAL.DOMAIN.LV >> dns_lookup_realm = false >> dns_lookup_kdc = true >> >> =========== >> nsswitch.conf >> passwd: compat winbind >> group: compat winbind

Hello, Share the printer via "Print Management -> Deploy with GPO" it works, but then the Printer is default on all users which is not an option. So I try to share it per User, but this does not work, the printer is not added after login. My GPO look like: Brother_HL-L5100DN Data collected on: 12/17/2018 4:38:22 PM General Details Domain samdom.example.com Owner

hi there i have recently moved all users to LDAP and incorporated the Samba schema i have allocated servers read only access to the data except for what is required ie lmpass ... ntpass .. what disturbs me is that smbpasswd demands write access to uid,rid,primarygroup,cn,displayname i would rather it did not do this i fully understand why samba requires write access to other attr's in fact in

Hi all, I'm wondering about winbind[d] behaviour. I tried the following with: auth methods = sam winbindd and the same with only one d: auth methods = sam winbind One user: ldbsearch -H $sam '(cn=another.fakeuser)' homeDirectory loginShell gidnumber uidnumber # record 1 dn: CN=another.fakeuser,OU=a,OU=Standards,OU=Utilisateurs,DC=ad,DC=dgfip homeDirectory: */home/another.fakeuser*

Cit?ju Rowland Penny <rowlandpenny at googlemail.com>: >> getent passwd shows list of local users, freezes for a while and exits; > > This is possibly because you may have (somehow) the same username in > AD and /etc/passwd even with the "problematic" user removed behaviour is the same (with net ads leave, remove krb5 keytab and join +restart) > >> id

Cit?ju Rowland Penny <rowlandpenny at googlemail.com>: >> after assigning UNIX attributes to users and domain groups all of them have >> uidNUmbers and gidNumbers starting from 10000, >> ldbsearch gives: >> dn: CN=Domain Users,CN=Users,DC=internal,DC=domain,DC=lv >> objectSid: S-1-5-21-216404829-505555237-127066545-513 >> gidNumber: 10000 >>

Hi: recently i am doing fast boot from linux kernel to Xen hypervisor,and vice-versa. it means when linux is running on the real machine, i just want to switch to Xen hypervisor without going through bootloader. both linux and dom0 of Xen using the same filesystem. we boot Xen and the Linux with the following command in grub: title Ubuntu 8.04.2, kernel 2.6.29 root (hd0,7)

On 16/12/14 20:47, Carl Carpenter wrote: On 16/12/14 17:35, Carl Carpenter wrote: Forgot to mention that the permissions are also incorrect. They are supposed to be 775 but come out as 744. Carl Carpenter Director, Information Services Hill Country MHDD Centers (830)258-5414 or ext. 2038 On 12/11/2014 4:13 PM, Carl Carpenter wrote: Per your request [global] workgroup =

On Tue, 2 Oct 2018 15:21:03 +0200 Fabio Fantoni <fabio.fantoni at m2r.biz> wrote: > Il 02/10/2018 11:03, Rowland Penny via samba ha scritto: > > On Tue, 2 Oct 2018 10:33:35 +0200 > > Fabio Fantoni <fabio.fantoni at m2r.biz> wrote: > > > >> Il 01/10/2018 17:33, Rowland Penny via samba ha scritto: > >>> On Mon, 1 Oct 2018 17:14:09 +0200 >

Hello, I am using Xen 4 with Debian Squeeze and  trying to virtualize a Windows 2008 Server machine. I''ve followed these instructions: http://alex.mordue.co.uk/blog/?p=85 But once i do:  xm create windows2008.cfg The domU tries to start but then dies in few seconds with these errors: in xend.log: [2011-06-18 14:28:04 2254] INFO (XendDomain:1206) Domain windows2008 (28) unpaused.

Hi all, I've been experiencing an intermittent problem where some UIDs on a member server spontaneously change from being their AD-derived values to being allocated from the default idmap space, even when there is no change to the AD user information. Specifically, I have a member server running Samba 4.4.5 on CentOS 6.8. AD service is provided by two Samba 4.4.5 servers. The member

Hi, How do I view the libvirt virsh domxml-to-native function implementation? I think this function contains some error. Because we use libvirt to manage some host and vms on vmware hypervisor. We use openenbula generate a template for libvirt ,such as my attachment windows2008.xml. but when i use domxml-to-native to convert xml file to vmware config file vmx as below. This may not be

Hi, We have upgrade samba from 3.6.23-36 to 4.6.4, but we got "*Logon Failure Unknown user name or bad password*" error while trying to access samba form window 2003. And we use usename and password to login, not by the AD. We also test on windows2008 windows2008-R2 window7 windows10, it works. Thanks. Lifeng Ren