similar to: kerberos + winbind + AD authentication for samba 4 domain member

Hello, Thank You for fast response. I'm glad that it's a mistake somewhere on my side, it means it will work when I fix it :) Ok, first of all: Everything is on centos 7.4 All config files will be below, but to start off: behaviour is stranger than I thought, but there is a pattern: when doing [DOMAIN\kacper_wirski at vs-files ~]$ kinit -V Using default cache: /tmp/krb5cc_101003

On Tue, 31 Oct 2017 22:46:53 +0100 Kacper Wirski via samba <samba at lists.samba.org> wrote: > Hello, > > I'm setting up AD user logins for centos 7.4 box. I've almost managed > to do everything the way I want and the way I think it should be, but > I'm missing last piece: > >   For ssh access I read parts of the >

On Wed, 1 Nov 2017 19:49:32 +0000 Rowland Penny via samba <samba at lists.samba.org> wrote: > On Wed, 1 Nov 2017 20:28:05 +0100 > Kacper Wirski <kacper.wirski at gmail.com> wrote: > > > I'm going to start with clean centos install, so I might as well use > > some additional guidelines, thank You. > > > > When You run kinit, does Your user have

I made some progress with the issue, but didn't solve it completely It's basically a kind of bug (i'm not sure if it's on kerberos side or samba, I think samba is the culprit here (?). Microsoft uses kind of weird SPN for Hyper-V. Weird as there are "spaces" in the string - which is kind of unique as far as SPN's go, usually SPN form a complete string. So I kind

I'm going to start with clean centos install, so I might as well use some additional guidelines, thank You. When You run kinit, does Your user have ticket already? What I noticed is that when user has a ticket already, kinit works fine, uses as default principal the one from ticket. Can you do kdestroy - then kinit? Also, on Fedora, did You install samba from source or from repo's RPM?

dovecot 2.2.34 solr 7.2 I only see new messages after typing on the server "doveadm fts rescan -u username" though I've followed the wiki and added "fts_autoindex = yes" in 90-plugin.conf . Subsequent search for the same pattern always gives the same result, ignoring new emails with that particular pattern. Solr is working correctly and the correct search results comes

Hi, I am trying to get quota working properly on dovecot 1.2.3 with postfix admin, amavisd-new, mysql, and postfix. So far I can see the db getting updated when messages are added and deleted from the mailbox. The problem I am having is that I have imported a bunch of messages from the old mail server that was running uw-imap and mbox to the doevcot machine using maildir++. As a result the

Hello, I have samba configured with the following smb.conf file: [global] workgroup = mydomain netbios name = servername security = domain printcap name = cups disable spoolss = yes show add printer wizard = no idmap uid = 15000-20000 idmap gid = 15000-20000 winbind use default domain = yes use sendfile = yes printing = cups [myshare] comment = My new share path = /export/myshare valid users =

Hello, After I upgrade dovecot 2.2.35 to 2.3.1 and pigeonhole 0.4.23 to 0.5.1 when I use sieve to forward a message to other address using "redirect :copy" I get this: (host server1.myserver.com <http://server1.myserver.com/>[private/dovecot-lmtp] said: 451 4.2.0 <chris at mydomain.com <mailto:chris at mydomain.com>> Execution of Sieve filters was aborted due to

This seems to work for maxPwdAge ldapsearch -LLL -Q -s base -h ad.mydomain.tld -b dc=ad,dc=mydomain,dc=tld maxPwdAge now I just need to query a users pwdLastSetq I tried the commands above but am not getting anything. I tried looking at the ungrepped output but I don't see how to link the pwdLastSet with any user. I get a long list. I think I'm looking for dn: and a matching pwdLastSet?

Hi List, I'm installing a Samba server with the intended purpose of serving files to Windows users with seamless authentication on the smb server. For that, I've been reading and following every single google search result regarding the subject, but it seems I'm stuck at some point where other people are not blocked ... To summarize, I have these commands OK: # kinit admin_user at

Hi I am still trying to run SAMBA on AIX with "security = ads" and I have a few questions: - on AIX is no such file as /etc/nsswitch.conf --> Do I have to add the configuration somewhere else? - I allways get this "User xy is invalid on this system" if try to map a share from Windows. What does this mean? Is the user invalid on the Domain? on AIX? on SAMBA? Is the User

Greetings, I am in the process of replacing my MicroFocus (Novell) eDirectory system with a Samba-based Active Directory system. I've got three domain controllers built, and they seem to be humming along nicely. Server OS is Ubuntu 18.04 patched current. I started off with the Samba 4.7 packages included in the default Ubuntu repository, but have since upgraded to Samba 4.10 using packages

Am 03.07.20 um 13:05 schrieb Rowland penny via samba: > On 03/07/2020 11:33, Stefan Just via samba wrote: >> We are using tmux, screen and x2go to run long-running jobs on our >> compute servers. $HOME and other data should be mounted via CIFS or >> NFS4. Because such a job can run for more than a week, I would like to >> increase the Kerberos ticket lifetime or better

Hi all. I'm getting the following error when using rsync: nice -n 20 rsync -e "ssh -p30000" --recursive --verbose --verbose --checksum --times --modify-window 2 --port=31000 --dry-run /cygdrive/f/bkp/Doc/Builds/Buildsheets/ MYUSERNAME@MY.SERV.ER.IP:TESTDIR opening connection using ssh -p30000 -l MYUSERNAME MY.SERV.ER.IP rsync --server -vvntrc --modify-window=2 . TESTDIR

Hi I set up a samba 4.1.4 server on the latest FreeBSD RELEASE 10. Unfortunately it doesn't seem to consider the option force group. After hours ofresearch I couldn't figure out what I'm still missing. unix extensions is set to no. Setting the debug level up to 10 also didn't help ;( Is this a bug or is there simply a mistake in my setup? When *valid users = @Groupname* is

Actually is there a way to show it more like a timestamp. It is hard to compute days left with a date format like that. I guess I could use date to do the conversion but I was wondering if there is a cleaner way On Fri, Feb 3, 2017 at 8:51 AM, Rowland Penny via samba < samba at lists.samba.org> wrote: > On Fri, 3 Feb 2017 07:44:39 -0700 > Jeff Sadowski via samba <samba at

I am clearly doing something ridiculously wrong. Running Asterisk 0.7.2 on FreeBSD 5.1, I have SIP soft phones which are unable to register. They keep trying and then time out. With the sip debug on in Asterisk nothing is logged. Here is the trace from one of the phones (kphone): (192.168.100.13 is kphone, 192.168.100.3 is Asterisk) sipclient: sending: 21:47:45.454

I created an account at IAXTEL.com to route 1-700-XXX-XXXX calls through. IAXTEL.com gave me a number (example) of 700-555-6226. I have made the following changes to my: /etc/asterisk/extensions.conf: [iaxtel700] exten => _81700XXXXXXX,1,Dial(IAX2/myusername:mypassword@iaxtel.com/${EXTEN:1}) exten => _81800NXXXXXX,1,Dial(IAX2/myusername:mypassword@iaxtel.com/${EXTEN:1})

Hello I try to run SAMBA with security = ads on AIX 5.3 with SAMBA 3.0.23d. "net ads join" was successful and the machine is now visible in the Domain with the netbios name. When I try to access the shares on the machine the log.smbd files says: (...) [2007/05/10 08:58:16, 1] smbd/sesssetup.c:reply_spnego_kerberos(310) Username MYDOMAIN/MYUSERNAME is invalid on this system