Displaying 20 results from an estimated 7000 matches similar to: "LDAP + Samba4(AD) + SSH"
2015 Aug 24
2
LDAP + Samba4(AD) + SSH
Hey,
By "through LDAP" I meant that our linux servers would look for the users
using pam_ldap.
Anyway, I was able to "fix" this by mapping gidNumber to gidNumber instead
of primaryGroupID on nslcd.conf.
$ id
uid=10000(Guilherme) gid=10001(it) grupos=10001(it)
On Fri, Aug 21, 2015 at 4:28 PM, Rowland Penny <rowlandpenny241155 at gmail.com
> wrote:
> On 21/08/15
2015 Aug 24
0
LDAP + Samba4(AD) + SSH
On 24/08/15 15:09, Guilherme Boing wrote:
> Hey,
>
> By "through LDAP" I meant that our linux servers would look for the
> users using pam_ldap.
>
> Anyway, I was able to "fix" this by mapping gidNumber to gidNumber
> instead of primaryGroupID on nslcd.conf.
>
> $ id
> uid=10000(Guilherme) gid=10001(it) grupos=10001(it)
>
>
> On Fri, Aug
2015 Oct 08
3
Changing User password from ssh member server
Hi,
I am authenticating users on our linux servers using nslcd/pam_ldap.
Authentication is fine, however, it is not possible for the user to change
the password from the server.
Is there a way to make it work ?
[Guilherme at server ~]$ passwd
Changing password for user Guilherme.
passwd: Authentication token manipulation error
Oct 8 14:37:53 server passwd: pam_unix(passwd:chauthtok): user
2015 Aug 21
0
LDAP + Samba4(AD) + SSH
On 21/08/15 20:08, Guilherme Boing wrote:
> Hello,
>
> I want my domain users to be able to connect to our linux servers using
> their AD username through LDAP.
What do you mean 'through LDAP' ?
>
> I am using nslcd and pam_ldap to do so, but I am having some hard time
> trying to figure out why the GID is not working properly.
>
> # getent passwd Guilherme
2015 Oct 08
2
Changing User password from ssh member server
Hi Rowland,
This is a CentOS 6.7 server.
I was able to make some progress. I have edited /etc/pam.d/system-auth, and
now it looks like:
auth required pam_env.so
auth sufficient pam_unix.so nullok try_first_pass
auth requisite pam_succeed_if.so uid >= 500 quiet
auth sufficient pam_ldap.so use_first_pass
auth required pam_deny.so
account
2015 Oct 08
2
Changing User password from ssh member server
I have removed use_auhtok from /etc/pam.d/system-auth and now passwd is
"kind of" working...
I am still able to login with my old password and the new one also. But
only on the linux servers that are authenticating through LDAP.
On my workstation only the old password (the one I was trying to change
through passwd(ssh)) works.
I have noticed that my user now has a userPassword
2015 Oct 08
1
Changing User password from ssh member server
Yes, it is an AD DC.
The thing is, the only way I know to change the user password is from a
Windows workstation (CTRL+ALT+DEL and go to Change password).
I was trying to achieve the same thing through another Linux server that is
not the AD DC. So I thought that it would be possible for them to change
their AD passwords through "passwd", but it didn't seem to work properly,
because
2014 Nov 19
1
Cannot bind to AD using nslcd
Hi Again - following on from my last request for help, I'm now attempting to
setup LDAP auth against my working samba4 AD.
Simplistically, I'm trying initially to SSH into my AD server (working)
using nslcd.
I've tried method #1 from
https://wiki.samba.org/index.php/Local_user_management_and_authentication/ns
lcd
My simple config is:
uid nslcd
gid nslcd
uri
2012 May 23
2
multi home dir locations
Hi all,
i've got samba 3.6 joined to a ad domain (s4 in this case)
running winbind
all looks ok, but i ran into a problem (for us that is)
i've got 2 groups (students and employes)
who have there home dirs in 2 different places.
/home/students/<user>
/home/employ/<user>
so far so good, but i can't make the [homes] work for both of them (just
1 group)
in winbind
2017 Apr 17
2
doubt
Hi Luiz...
I think you just misunderstood the concept of Samba...
You can indeed you samba to make both task... Just join your samba box to
AD and be happy.
2017-04-17 13:26 GMT-03:00 Luiz Guilherme Nunes Fernandes via samba <
samba at lists.samba.org>:
> Well, i need join 1 server Linux in Active Directory, i need too, create
> one domain in samba for shared printers with cups.
2015 Oct 13
3
Second DC doesn't recognize users/groups on getent
Hello Rowland,
I should also mention that Samba 4.3.0 was installed from tarball, I
compiled it myself.
DC2 does not have the /var/lib/samba/private/sam.ldb file. Also it did not
return any result on DC1.
However, using /usr/local/samba/private/sam.ldb, both DCs returned the same
thing:
# returned 4 records
# 1 entries
# 3 referrals
I wonder why DC1 has the /var/lib/samba/private/sam.ldb file
2015 Aug 21
1
getent does not show domain user/groups
Hello,
I am running Samba 4.2.3 as a ADDC on CentOS 7.
getent passwd/group does not show the domain users and groups.
However, if I try 'getent passwd domainuser' it returns the user.
# getent passwd|grep -i guilherme
# getent passwd guilherme
guilherme:*:3000022:100:Guilherme:/home/ABC/guilherme:/bin/bash
smb.conf:
[global]
workgroup = ABC
realm = ABC.ONLINE
2015 Oct 08
0
Changing User password from ssh member server
On 08/10/15 18:59, Guilherme Boing wrote:
> Hi Rowland,
>
> This is a CentOS 6.7 server.
> I was able to make some progress. I have edited
> /etc/pam.d/system-auth, and now it looks like:
>
> auth required pam_env.so
> auth sufficient pam_unix.so nullok try_first_pass
> auth requisite pam_succeed_if.so uid >= 500 quiet
> auth
2013 Aug 25
3
OpenSSH auth in SAMBA4 LDAP
Hi,
I have some Ubuntu LTS servers running openssh server authenticating to
external openldap. I installed a new Ubuntu LTS server with Samba4 to
create a domain and is working very well. I managed to make a pfsense
firewall authenticate users in this Samba4 ldap. How to make openssh in
Ubuntu authenticate users in Samba4 ldap?
2015 Oct 08
0
Changing User password from ssh member server
On 08/10/15 19:16, Guilherme Boing wrote:
> I have removed use_auhtok from /etc/pam.d/system-auth and now passwd
> is "kind of" working...
> I am still able to login with my old password and the new one also.
> But only on the linux servers that are authenticating through LDAP.
>
> On my workstation only the old password (the one I was trying to
> change through
2014 Oct 05
1
What is wrong with my nslcd configuration?
I can't get my domain users presented to my local machine with getent
passwd and the wiki
https://wiki.samba.org/index.php/Local_user_management_and_authentication/nslcd
doesn't give me any steps troubleshoot this issue. My best guess it that
I configured the user account incorrectly or I configured nslcd
incorrectly. I can't exactly see what is the problem.
I get these messages from
2018 Sep 06
2
Authenticating against Samba 4 AD LDAP service
Rowland Penny via samba wrote 2018-09-06 14:50:
> On Thu, 06 Sep 2018 12:47:02 +0700
> Konstantin Boyandin via samba <samba at lists.samba.org> wrote:
>
>> Rowland Penny via samba писал 2018-09-05 16:10:
>> > However, are you sure you cannot use kerberos ?
>> > What are your existing services ?
>>
>> to name most important ones:
>>
2016 Jan 18
3
Samba Hylafax PAM
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Hi,
I posted this also on hylafax list - maybe here is someone with a hint.
System: Debian Jessie, Hylafax-Server 6.0.6, pam 1.1.8, libpam-ldapd
0.9.4, nslcd 0.9.4 (all actual debian packets from stable),
sernet-samba-*-4.2.7-8
After a switch from OpenLDAP to a Samba 4.2 based LDAP Server, I cannot
auth users anymore in Hylafax, everything else
2016 Jan 26
2
Samba Hylafax PAM
O, try the following.
Test this first.
ldd /usr/sbin/hfaxd
if you getting libpam.so.. something, then hylafax is compiled with pam support.
Next,
apt-get install libpam-ldap ( just to be sure, i do believe you have installed it already )
create the file :
/etc/pam.d/hylafax
Add :
auth required pam_ldap.so
account required pam_ldap.so
2020 Jun 22
2
Winbind help - with domain migration.
Hello guys
I need some lights to migrate a Winbind/Samba share to a new AD.
My scenario is:
I have an old AD running on a Debian 9 and Samba 4.5.16 with many
replication issues.
Then I decided to create a new one from the scratch using Debian 10 and
Samba 4.12.2 (and everything is working perfectly). I have migrated all the
accounts/machines/etc from old to new domain without any problem.
Both the