similar to: Replication of permissions on AD Directory not automatic

Displaying 20 results from an estimated 11000 matches similar to: "Replication of permissions on AD Directory not automatic"

2016 Nov 30
0
Replication of permissions on AD Directory not automatic
On 16/11/16 14:17, Alex Crow via samba wrote: > Hi All, > > I've been testing Samba 4.5.1 extensively as an AD DC. We have 3 DC > set up, and replication of users, groups, OUs, DNS etc has been > working fine. > > However we wanted to add some custom attributes and a class to the > schema (an assortment of string and numericalString) for our own > purposes. This
2017 Feb 07
4
gpupdate use wrong url
There's nothing wrong with that path. If your DNS is working, you should be able to connect to \\foo, which is your AD domain. It will just pick one of your DCs instead of a static one. Alex On 06/02/17 14:36, basti via samba wrote: > > samba-tool gpo listall > showes also wrong path in gpo > > > On 06.02.2017 15:21, basti via samba wrote: >> When I do an gpupdate
2016 Jun 22
2
CTDB/Kernel BUG
Hi List, We're currently seeing a kernel BUG in conjunction with CTDB. This is on hosts running latest Centos 7.2 with Samba/CTDB from standard repos. Underlying FS is MooseFS backed by ZFS. Every so often, especially when CIFS activity is high (eg 100+ users loading or saving Windows profiles, we see a BUG in our logs: Jun 20 16:31:13 metamora kernel: BUG: Bad page state in process
2016 Mar 16
1
Showstopper problem: Winbindd no longer starting
Hi, I'm running a samba CTDB setup using default Centos 7.2 repos, fully up-to-date. This is in pre-production so this is quite a nasty problem. Everything was running fine, including after a package update 1-2 days ago. However, this morning I can't get winbind started, CTDB times it out. I've taken the clustering=yes line out of smb.conf, and run winbind at dedug level from the
2016 Aug 12
2
Horrible BIND9_DLZ DNS breakage after DC replaced and samba-tool domain demote --remove-other-dead-server
Hi List, We are running through testing our migration to Samba4/AD domain and hit an odd issue. We set up one new VM as a legacy PDC and performed a migration on this machine. All went fine. We added a second DC with no issues. We then simulated the first DC going away by unplugging the VM NIC and did an FSMO seize. The next step was to reinstall the original VM from scratch as a new DC on
2016 Dec 19
3
GPO Security Filtering "Access Denied"
Are you replacing or merging the policies? > -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens Alex Crow via > samba > Verzonden: maandag 19 december 2016 15:29 > Aan: samba at lists.samba.org > Onderwerp: Re: [Samba] GPO Security Filtering "Access Denied" > > > > On 19/12/16 14:18, L.P.H. van Belle via
2016 Dec 19
5
GPO Security Filtering "Access Denied"
Hi list, Very strange problem here on Samba 4.5.2 DCs. We have set up some GPOs and they seem to work fine, however we need to apply some Security Filtering to a couple of them. We can add groups and users until we reach 6 groups/users/computers in the list box in GPO management. As soon as we try to add a 7th entry, GPO Management throws an "Access Denied" error. Even odder is
2016 Jul 01
4
Winbind process stuck at 100% after changing use_mmap to no
Hi, We've had a strange issue after following the recommendations at https://wiki.samba.org/index.php/Ping_pong, particularly the part about mmap coherence. We are running CTDB/Samba over a MooseFS clustered FS, and we'd not done the ping-pong before. After finding that the mmap coherence test did not pass, we changed "use mmap" to "no" in smb.conf. This morning
2016 Sep 22
3
ntlmssp_server_postauth: invalid NTLMSSP_MIC on CTDB fileserver (NT-style domain)
Hi List, As the subject states, I'm running a CTDB cluster. Samba is Sernet 4.4.5 in an NT-Style Samba domain (DCs are Centos 6 packaged samba, 3.6.22) Every so often, users are unable to connect to network shares. Most of the problems seem to happen on Windows 7 domain members, but smbclient will also fail to connect. I see these lines in the logs for every attempted connection:
2016 Aug 14
4
Horrible BIND9_DLZ DNS breakage after DC replaced and samba-tool domain demote --remove-other-dead-server
On Sun, 14 Aug 2016 21:52:43 +0100 Alex Crow via samba <samba at lists.samba.org> wrote: > > > I am fairly sure this is your problem, it should be able to find the > > KDC on its own DC. Have you checked /etc/krb5.conf, /etc/hosts > > and /etc/resolv.conf ? > > With the BIND server not running, and this krb5.conf: > > [libdefaults] >
2018 Apr 09
2
JBOD / ZFS / Flash backed
On 09/04/18 16:49, Vincent Royer wrote: > > > Is a flash-backed Raid required for JBOD, and should it be 1gb, 2, > or 4gb flash? > > RAID and JBOD are completely different things. JBODs are just that, bunches of disks, and they don't have any cache above them in hardware. If you're going to use ZFS under Gluster, look at the ZFS docs first. Short answer is no.
2016 Oct 21
2
CTDB and locking issues in 4.4.6 (Classic domain)
On 21/10/16 10:52, Ralph Böhme wrote: > On Fri, Oct 21, 2016 at 10:30:46AM +0100, Alex Crow via samba wrote: >> Interestingly I have a setup here for testing for rollout of S4 AD. The file >> servers are in an AD domain and are running Sernet 4.4.5, so one version >> older than production. > maybe it's related to bug 12005 that was fixed in 4.4.6? Can you test > with
2016 Oct 21
6
CTDB and locking issues in 4.4.6 (Classic domain)
>> You don't have smbd/smbstatus installed from a package in /usr/ and the >> other left over in /usr/local/, or similar? In that case, they could >> be getting their configurations from different places... >> >> peace & happiness, >> martin > Hi Martin, > > No, nothing like that. Installing the Sernet packages obsoletes the > distro ones.
2016 Jul 03
4
Winbind process stuck at 100% after changing use_mmap to no
On 03/07/16 13:06, Volker Lendecke wrote: > On Fri, Jul 01, 2016 at 10:00:21AM +0100, Alex Crow wrote: >> We've had a strange issue after following the recommendations at >> https://wiki.samba.org/index.php/Ping_pong, particularly the part >> about mmap coherence. We are running CTDB/Samba over a MooseFS >> clustered FS, and we'd not done the ping-pong before.
2016 Dec 19
3
GPO Security Filtering "Access Denied"
On 19/12/16 17:57, Miguel medalha wrote: >>> No, I don't, because this is a loopback and I only want certain >>> users on these computers to have the screensaver and lock disabled. If I did that it would apply to everyone. > No, it wouldn't apply to everyone. As of April this year, according to Microsoft, all policies must have "Authenticated Users" with
2018 Apr 09
2
JBOD / ZFS / Flash backed
On 09/04/18 19:02, Vincent Royer wrote: > Thanks, > > I suppose what I'm trying to gain is some clarity on what choice is > best for a given application.? How do I know if it's better for me to > use a raid card or not, to include flash-cache on it or not, to use > ZFS or not, when combined with a small number of SSDs in Replica 3. > > How few is "small
2017 Feb 07
1
gpupdate use wrong url
Ok that looks good. Ont to try on the pc your testing. Disable ipv6 ( just remove the checkmark dont remove it. ) from the network adapter. *( optional : http://www.bvanleeuwen.nl/faq/?p=1142 ipv6 admx template. ) I have a setup with this admx, i completely disabled ipv6 in my lan. And as Rowland also is telling.. Dns domain = foo Realm = FOO Workgroup = FOO
2016 Sep 30
2
ntlmssp_server_postauth: invalid NTLMSSP_MIC on CTDB fileserver (NT-style domain)
We actrually have the same problem. However, we are running a normal fileserver (also Sernet 4.4.5) no cluster in an NT-Style domain with Centos 5 (Samba 3.6.23) as the DC. IT works OK for some days then just stops. Any idea how to debug? Regards Christian --
2016 Dec 08
1
Reverse zones fail with secure updates
On 12/8/2016 5:16 AM, Alex Crow via samba wrote: > > > On 07/12/16 16:23, L.P.H. van Belle via samba wrote: >> Just check, yes all my pc's ( dhcp and static ) are owner of the DNS >> records. >> >> NTDOM\COMPUTERNAME$ is set on the record and every pc its own record. >> >> ! one thing, i do use Bind9_dlz with samba and not internal DNS. >> I
2013 May 20
1
Linking mdbox directories
Hi Timo/list, We have a scenario in which some email accounts on dovecot (stored in mdbox, separate paths for indexes, email, ALT storage and also using SIS for attachments, LDAP directory) need their names changed. I know we could just change the mail LDAP attribute (and leave mailMessageStore alone) so they keep the same directories on disk, but this would throw a spanner in the works for