similar to: simple 2 node ctdb howto

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello everyone, I know that many people know not to use .local, but in the last weeks we had several People having problems using .local. So to all peopel starting implementing Samba 4 AD, read this: http://miketelahun.wordpress.com/2012/09/16/stop-using-local-as-the-top-level-domain-for-your-lan/ So stop using .local as TLD. Maybe there should be a

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The error codes for' doveadm user' should be improved to avoid error handling workarounds when scripting commands: $ doveadm user doveadm user [-a <userdb socket path>] [-x <auth info>] <user mask> [?] $ echo $? 1 $ doveadm user foo userdb lookup: user foo doesn't exist $

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hallo, when I do an "samba-tool gpo list username" I get an "faild access check on OU=name,......". But not if I do a "samba-tool gpo listall" then everything is ok. Is this normal? If I take "administrator" as username I didn't get this message. Stefan -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2

On 05/01/15 07:00, Achim Gottinger wrote: > Hello, > > I deployed an Samba 4 AD back in 2013 with .local, not knowing it can > cause troubles with mDns. > On my linux server i did not install avahi and i do not have mDns in > my nsswitch.conf hosts entry. > On windows machines i usually deinstall bonjour whenever it shows up > and i do not install it when installing

Hi all, I recently tried to use --kerberos switch in addition to some samba-tool command (mainly samba-tool user create) without any success. The man page of samba-tool is quiet shy on that subject: -k KERBEROS|--kerberos=KERBEROS Use Kerberos Looking into samba-tool python script, in fact into /usr/lib64/python2.7/site-packages/samba/netcmd/user.py, I can't find any

During the Christmas holiday I created a AD DC & a MEMBER server (both on Debian 7.7.0) with these scripts (https://secure.bazuin.nl/scripts/) and thank you, L.P.H. van Belle. However, I have created them with a *.local TLD (that now I need to change.) I will need to adjust my hostname files, need to re-configure the kerberos install and of course Bind9. The hostname files I know how to

Hi Stefan, Thank you a lot for that, it helped me much. To be a bit more precise, thanks again to your example, to authenticate samba-tool command using --kerberos: syntax is "-k yes" or "--kerberos=yes" or "--kerberos yes" AND -U username must not be present. "-k=yes" is not working. 2015-10-19 11:59 GMT+02:00 Stefan Kania <stefan at

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, after I joined an new machine into my domain, "getent group" is not showing any domaingroup. The domainusers are listet with "getent passwd" as expected. In nsswitch.conf winbind is used with "passwd" and "group". Wbinfo -g shows all groups. "net rpc testjoin" gives the right result. I can get

I expected to re-provision the domain. (That is easy, now.) Okay, so now the question becomes after the re-provision of the domain on the DC what needs to be changed on the MEMBER server. Obviously, the hostname needs to be corrected and check any needed changes within the smb.conf file. Thoughts? --- ------------------------- Bob Wooden of Donelson Trophy 615.885.2846 (main)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Lars, I have writen a Howto in German f?r CTDB with GlusterFS BUT there is still a problem. If you try to set the Filessystempermissions via Windows it is not working. You can't delete any of the permissions. If you wan't I can send it to you. I also writing a Howto for Samba CTDB with a Corosync, Pacemaker and OCFS2 Cluster. If you try it

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, I like to know what will happend if: - - one Domain with 2 DCs - - two Admins working on their Windows-ws with RSAT. - - Admin1 is connected to DC1 - - Admin2 is connected to DC2 - - Admin1 creats a user "u1" and a group "g1" - - then the two DCs will lose connection, the user and group is replicated to DC2 - - now Admin1

Hi, my Fileserver lately refused to work anymore. I'm quite thankfull for that for that it was a bit slow anyway ;-) My idea is to set up two relativley samba-hosts instead of byuing one "real" server with many build in redundancies. That can only work if I can manage to keep both filesystems in sync and I see two alternatives: 1.: Use drdb to build a RAID1 across the two

Hi all, Where i want to arrive: 1) having two storage server replicating partition with DRBD 2) exporting via GNBD from the primary server the drbd with GFS2 3) inporting the GNBD on some nodes and mount it with GFS2 Assuming no logical error are done in the last points logic this is the situation: Server 1: LogVol09, DRDB configured as /dev/drbd0 replicated to Server 2. DRBD seems to work

Hi Guenther, When I executed nmap -p5060 <xx.xx.xx.xx> I got below output. [root at ip-172-31-32-117 cel]# nmap -p5060 xx.xx.xx.xx Starting Nmap 5.51 ( http://nmap.org ) at 2015-04-21 11:19 UTC Nmap scan report for ec2-xx-xx-xx-xx.us-west-2.compute.amazonaws.com (xx.xx.xx.xx) Host is up (0.00080s latency). PORT STATE SERVICE 5060/tcp filtered sip Nmap done: 1 IP address (1 host

I'm not sure if I would not advise to use .local, sometimes it seems to be needed to make a proper location for a running domain where even .cityname cannot accomplish what you need. To be honest I don't run Avahi and will not either. Avahi and mdns are actually only designed because of of bad DNS management by system administrators and have (Apple) users use all their features, the same

I forgot the answer for this: in http://wiki.dovecot.org/AuthDatabase/PasswdFile, we have the passwd file defined as user:password:uid:gid:(gecos):home:(shell):extra_fields What should the uid and gid be associated with? In my setup I told postfix to use Dovecot LDA's deliver, which then is saving files as uid:gid of 1500:1500. How would that affect the uid:gid used in the passwd file?

We would like to use samba 4.x as our ADDC and also as an ldap source for authentication. Google apps can use an ldap server as a source for users and groups. There seems to be plenty of use of AD as a ldap server for this purpose. I wanted to check to see if anyone has used samba 4 running as an ADDC as an authentication server for other services that can consume ldap. -- David Bear mobile:

I just read the rhel6 filesystem size limit. http://www.redhat.com/rhel/compare/ It says 16TB limit for ext4 (same as ext3)?!?! I thought ext4 was supposed to support 1EB ( ~ 1 million TB) limit. That was one of the main advantages of rhel6. After a little more digging all I found was that the user space formatting tools (mkfs.ext4) only support 32bit filesystems (not 48bits). I'm surprised

A question to the Samba developers (or anyone else who knows the answer): Since Samba (as of version 4.2) can now use the "normal" winbindd daemon, I suppose that RID mapping on a AD DC will work in the same way as it works on a member server. So, if I configure it in exactly the same way as in my member servers and then replace the UID/GID of all files in the DC with the new ones,

Micrososft changed this statement a several of times. The only reason they did is because people using Apple are complaining some services are not working "well" on their OSX and it's a pain to change the DNS name of your Business Server on Windows Server As said before, running on .alocal for Avahi works perfectly and mDNS is only for small networks, and setting up some proper DNS