similar to: Setting Win ACLs via Comp Managment, connection to Member Server warning

I have given the SeDiskOperatorPrivilege on the domain member but it did not help. The connection warning persists when I click on the "Shared Folders" + shared. It says to check network path, firewall rules. dismissing the window takes me to the domain member and shared folder can be selected and viewed. An attempt to modify and pressing "apply" results in another warning that

Thank you for your guidance. I must have something seriously wrong in the settings. Here is the eACL share: root at ubuntu-dm1:~# ls -l /srv/samba/eACLshare/ -d drwxr-xr-x 2 root domain admins 4096 Feb 21 09:00 /srv/samba/eACLshare/ >From Windows as an administrator of the domain, Comp Management - Connect to another computer -> System Tools I get UBUNTU-DM1 cannot be connected.... But

On Tue, 21 Feb 2017 16:25:24 -0600 Lin Pro <linforpros at gmail.com> wrote: > I made the changes you proposed but still my system must be messed up. > Please have a look at the screenshots below... may be you or some > other guru would know how to come out of this mess. > > > http://pasteboard.co/Ba9Ex0NQD.png > http://pasteboard.co/3Iq39El98.png It looks fairly

I made the changes you proposed but still my system must be messed up. Please have a look at the screenshots below... may be you or some other guru would know how to come out of this mess. http://pasteboard.co/Ba9Ex0NQD.png http://pasteboard.co/3Iq39El98.png By the way, is there a clean way to reset ADDC and DM so that I could start fresh? those two virt machines are just lab machines. I can do

On Tue, 21 Feb 2017 14:58:34 -0600 Lin Pro <linforpros at gmail.com> wrote: > Here are ADDC files you requested to help me out: OK, make /etc/krb5.conf on both machines look like this: [libdefaults] default_realm = SIOUXFALLS.SAMDOM.ORG dns_lookup_realm = false dns_lookup_kdc = true On the domain member smb.conf, move: vfs objects = acl_xattr map acl inherit = yes store dos

Here are ADDC files you requested to help me out: ++++++++++ /etc/hostname:dc1 /etc/hosts:127.0.0.1 localhost /etc/hosts:192.168.0.31 dc1.siouxfalls.samdom.org dc1 /etc/hosts: /etc/krb5.conf:[libdefaults] /etc/krb5.conf: default_realm = ${REALM} /etc/krb5.conf: dns_lookup_realm = false /etc/krb5.conf: dns_lookup_kdc = true /etc/resolv.conf:nameserver 192.168.0.31 /etc/resolv.conf:search

Hai, Becarefull with "apt-get remove apparmor". If you remove apparmor and mysql-server is installed on the same server, beware the you remove mysql-server also and re-installing mysql-server also installs apparmor. I experienced that multiple times with Ubuntu 16.04 and maybe there are more like this. The preffered way: Use the /etc/apparmor.d/disable directory along with the

When checking on the UNIX attributes of the Domain Admins group I get the warning "Unwilling to perform" Is this something I should resolve first? Lin

On Tue, 21 Feb 2017 04:11:52 -0600 Lin Pro via samba <samba at lists.samba.org> wrote: > Hi, > SeDiskOperatorPrivilege on ADDC is granted to BUILTIN\Administrators > and Domain Admins > > But the Member Server has that permission granted only to > BUILTIN\Administrators. > Why? > Is this normal? Should the permissions be set on the member server > instead, not on

Both ubuntu machines have iptables -L: Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination And the windows server firewall off How can that happen to me... I am speechless Lin

root at ubuntu-dm1:~# getent group Domain\ Admins domain admins:x:10004:

Hello, ldbsearch -H .... fails with a message that samba_dsdb is not found and LDB_MODULES_PATH needs to be set. Fixing it temporarily with: export LDB_MODULES_PATH=/usr/lib64/samba/ldb allows ldbseach command to work. Is it critical for ADDC operation though? [root at feddc ~]# rpm -q samba libldb ldb-tools samba-dc samba-4.7.0-12.fc27.x86_64 libldb-1.2.2-1.fc27.x86_64

I suggest he runs : rpm -q samba samba-* lib?db* And post that, looks to me he is missing the samba-dsdb-modules and maybe samba-vfs-modules also. But i dont know much about Fedora.. Greetz. Louis > -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Rowland Penny via samba > Verzonden: donderdag 28 september 2017 9:59 > Aan:

On Fri, 17 Feb 2017 07:02:23 -0600 Lin Pro <linforpros at gmail.com> wrote: > Hi, thank for the reply. Here is the smb.conf on the Domain Member > [global] > > idmap uid = 10000-20000 > idmap gid = 10000-20000 Remove the above lines, they are replaced by the 'idmap config' lines and you shouldn't have both. > client use spnego = yes > client ntlmv2 auth

On Fri, 17 Feb 2017 12:04:43 -0600 Lin Pro <linforpros at gmail.com> wrote: > >>> You are using the winbind 'ad' backend, do your users have a > 'uidNumber' attribute containing a unique number inside the range > '10000-999999' ? > Does 'Domain Users' have a 'gidNumber' attribute inside the same > range ? <<< >

On Fri, 17 Feb 2017 15:37:27 -0600 Lin Pro <linforpros at gmail.com> wrote: > ////ldbsearch does though, or ADUC on a windows version less than > 10//// > > Are you saying then that the problem would be in the group ID numbers > and user ID numbers in the case that I'm describing? What I am saying is that it looks like your users in AD do not have a uidNumber attribute

There are two ubuntu 16.04 samba 4.5 servers. Ubuntu ADDC and a Member (ubuntu-dm1) >From Member "wbinfo -u" shows shows users of ADDC >From Member "net ads join -U administrator" was successfull with no errors. The dns A record was added in ADDC. But getent passwd <user> shows no results. DMember's /etc/nsswitch.conf passwd: compat winbind group:

On Sun, 18 Feb 2018 14:05:38 +1300, Andrew Bartlett via samba wrote: > On Sat, 2018-02-17 at 20:44 -0300, Guido Lorenzutti via samba wrote: > >> Hi there! I have one domain, shared between several samba3+openldap on different geographical locations. I want to migrate them to samba4. The domain has aprox 4000 users accounts, 4000 workstations, and several groups. I was able to

Hy Guys, I am trying to migrate to samba 4 and I need some help. So, I have a samba running with samba 3 and LDAP. Today I use my samba for auth of my e-mail, file server and several other applications. I use a WEB based LDAP administration program called goSA. I have Installed samba 4.8.4 on a test machine and create some users, the problem is, to keep my email and all functionality that I

Hi List, I have a table that contains several fields that must be initialized when first created, but may not be altered afterwards (when updating the other fields) because they can be changed by external processes. I noticed that the ActiveRecord update commands (even update_attribute) only seem to work by loading the complete record, changing fields that need to be changed and doing a full