Displaying 20 results from an estimated 10000 matches similar to: "Samba4 + external ldap"
2015 Mar 24
6
Samba4 + external ldap
After some reading and attempts, I managed to set the Samba4 with the
external openldap.
I tried to add a user through the command "smbpasswd", but an error
occurred, which follows below:
root at sol:~# smbpasswd -a billy
>
> smbldap_search_domain_info: Searching
>> for:[(&(objectClass=sambaDomain)(sambaDomainName=POA))]
>
> smbldap_open_connection: connection
2015 Mar 24
2
Fwd: Samba4 + external ldap
On 24/03/15 17:32, Elias Pereira wrote:
>> it has been sometime since I used an NT-4 style domain, but I seem to
>> remember that you need to run the command as root and the user needs to
>> exists as a Unix user.
>>
> You were right! Fixed!
>
> Continuing:
>
> But now when I try to join a window xp sp3 in the domain, it does the
> following error:
>
2015 Mar 24
2
Fwd: Samba4 + external ldap
On 24/03/15 18:40, Elias Pereira wrote:
> I had tried with the "root", but also gave error: *Could not find the
> username.*
>
> The first time this happened I ran the following command:
>
> root at sol:~# smbpasswd -a root
> smbldap_search_domain_info: Searching
> for:[(&(objectClass=sambaDomain)(sambaDomainName=POA))]
> smbldap_open_connection: connection
2015 Mar 24
0
Samba4 + external ldap
Elias,
The easiest way is to use the smbldap-tools package; i.e. man
smbldap-useradd for syntax and options.
Dale
On 03/24/2015 9:51 AM, Elias Pereira wrote:
> After some reading and attempts, I managed to set the Samba4 with the
> external openldap.
>
> I tried to add a user through the command "smbpasswd", but an error
> occurred, which follows below:
>
> root
2014 Dec 22
5
Net groupmap list strange result
On 22/12/14 17:47, Elias Pereira wrote:
> And now, I run the command "samba-tool user list" and the result is as
> follows:
>
> *# samba-tool user list*
> *ldb_wrap open of secrets.ldb*
> *Could not find machine account in secrets database: Failed to fetch
> machine account password from secrets.ldb: Could not find entry to match
> filter:
2014 Dec 22
2
Net groupmap list strange result
Guys,
In my lab test when I run the command "net groupmap list" the result is as
follows:
*# net groupmap list*
*Domain Admins (S-1-5-21-187220369-3628530160-3539241734-512) -> 512*
*Domain Users (S-1-5-21-187220369-3628530160-3539241734-513) -> 513*
*Domain Guests (S-1-5-21-187220369-3628530160-3539241734-514) -> 514*
*Domain Computers
2015 May 21
4
Import idmap database error on classicupgrade process
>
> Then why can the upgrade not contact the ldap server ?
I dont know! :(
Was ldap running on another computer before ?
I installed a temporary openLDAP backend on the new host.
Can you post the smb.conf from the old PDC ? the one you are trying to
> upgrade from.
I sent my smb.conf to your private e-mail.
On Thu, May 21, 2015 at 3:08 PM, Rowland Penny <rowlandpenny at
2017 Jun 07
2
sysvolreset command result in "Undetermined error"
Hello,
I deleted some GPOs via ADUC. After that I also deleted the folder for each
GPO. I do not know if that was correct to do! :(
Now when I run the samba-tool command ntacl sysvolreset, the following
error occurs.
root at DC1:~# samba-tool ntacl sysvolreset
*open: error=2 (No such file or directory)*
ERROR(runtime): uncaught exception - (-1073741823, 'Undetermined error')
File
2017 Dec 02
2
idamp ad/rid
On Sat, 2 Dec 2017 10:21:07 -0200
Elias Pereira <empbilly at gmail.com> wrote:
> Correcting! :)
>
> #!/bin/bash
> #
> GROUP=ADM
> GUID=10000 # Domain Users
> UID=10000 # get the next ID ?
>
> for USER in $(samba-tool group listmembers $GROUP)
> do
> samba-tool user edit $USER --nis-domain=samdom \
> --unix-home=/home/$USER \
>
2015 May 21
2
Import idmap database error on classicupgrade process
>
> Is ldap running on the computer you are trying to run the classicupgrade
> on?
Yes.
I need to modify other files too?
On Thu, May 21, 2015 at 2:39 PM, Rowland Penny <rowlandpenny at googlemail.com>
wrote:
> On 21/05/15 18:22, Elias Pereira wrote:
>
>> Ok. I uncomment that line and put:
>>
>> passdb backend = ldapsam:ldap://127.0.0.1
>>
>
2015 May 21
2
Import idmap database error on classicupgrade process
Ok. I uncomment that line and put:
passdb backend = ldapsam:ldap://127.0.0.1
Error message:
Provisioning
> smbldap_search_domain_info: Searching
> for:[(&(objectClass=sambaDomain)(sambaDomainName=EMPRESA))]
> smbldap_open_connection: connection opened
> failed to bind to server ldap://127.0.0.1 with
> dn="cn=Manager,dc=empresa,dc=com" Error: Invalid credentials
2005 Mar 10
4
struggling with smbldap_tools
Trying to net rpc vampire an NT4 server
Think I am good to go but I keep getting errors - obviously problem with
NextFreeUnixId attribute - which is created...
dn: cn=NextFreeUnixId,dc=myhomelenders,dc=net
objectClass: inetOrgPerson
objectClass: sambaUnixIdPool
uidNumber: 1000
gidNumber: 1000
cn: NextFreeUnixId
sn: NextFreeUnixId
structuralObjectClass: inetOrgPerson
Every item gets this
2017 May 09
1
samba4 AD - some doubts and concerns
Thanks Adam for your answer!! "not enter the domain" means that the machine
not found our domain (samba3 pdc/nt4) for auth.
-------------------------
What is the best way to put a new samba4 AD server on the "air"?
*Note*: *Today I have samba3 nt4 and at the moment I can not just turn it
off and start another. I need to do this side by side.*
On Tue, May 9, 2017 at 5:28 PM,
2016 Aug 05
2
Samba4 with external bind - best practices?
You do what you want!
The point is the clients must resolve everything.
You have two options:
A - client resolver is non-DC DNS server: here the non-DC DNS server must
be configured to forward DNS requests about AD to AD DNS servers (to DCs)
B - client resolver is AD DNS server: here AD DNS server(s) used as
resolver(s) must be configured to forward any non-AD DNS request to non-DC
DNS server.
2015 May 21
2
Import idmap database error on classicupgrade process
You're right, man! Sorry! My mistake!
I put that file because I read in somewhere about the persistent and
temporary files regarding .tdb files. The winbindd_idamp.tbm was on that
list, and I think that's why I left it in the folder. :D
Another doubt. For the provisioning starts, I had to comment out the line
referring to the ldap backend in the smb.conf of samba3.
# passdb backend =
2017 Dec 02
1
idamp ad/rid
On Sat, 2 Dec 2017 12:13:08 -0200
Elias Pereira via samba <samba at lists.samba.org> wrote:
> >
> > Sorry, but that isn't going to work with 'samba-tool user edit'
> > You would need to write an 'editor' script to do what you would
> > need to do.
>
>
> Ok.
>
> Bit busy, just now, give me some time, I have a script somewhere that
2018 Jan 09
3
Deploy software in fileserver folder
Hello list,
I tried to set up a folder on our fileserver domain member, so I can deploy
software for users' machines, but is not working.
If I put the software inside "netlogon" it installs correctly.
\\172.16.1.7\storage\programs
Auth Users - read & execute, list folder contents, read and write
Do I need other permissions?
--
Elias Pereira
2018 Jan 11
2
Deploy software in fileserver folder
Hey Luke, thanks for the help!!! It's working now!!!
God bless you and your family!! :D
Remember that GPOs need to run as the context of either the computer or the
> user. Computers typically do not have access to many folders on a file
> server, even as "Everyone". That is why the NETLOGON folder works.
>
> If you're deploying as a USER configuration, then it
2018 Jan 10
2
Deploy software in fileserver folder
Which GPO? Computer or User Configuration?
Remember that GPOs need to run as the context of either the computer or the
user. Computers typically do not have access to many folders on a file
server, even as "Everyone". That is why the NETLOGON folder works.
If you're deploying as a USER configuration, then it should run as the
context of the user, meaning the Everyone permission
2015 Oct 09
4
Migrate directories and files
hello guys,
In my tests lab did the migration ldap base of the old samba3 to Samba4
ADCD.
It's possible to migrate directories and files from users of the old samba3
to Samba4 ADDC?
--
Elias Pereira