Displaying 20 results from an estimated 8000 matches similar to: "kerberos + winbind + AD authentication for samba 4 domain member"
2017 Nov 01
5
kerberos + winbind + AD authentication for samba 4 domain member
Hello,
Thank You for fast response. I'm glad that it's a mistake somewhere on
my side, it means it will work when I fix it :)
Ok, first of all:
Everything is on centos 7.4
All config files will be below, but to start off: behaviour is stranger
than I thought, but there is a pattern:
when doing
[DOMAIN\kacper_wirski at vs-files ~]$ kinit -V
Using default cache: /tmp/krb5cc_101003
2017 Oct 31
0
kerberos + winbind + AD authentication for samba 4 domain member
On Tue, 31 Oct 2017 22:46:53 +0100
Kacper Wirski via samba <samba at lists.samba.org> wrote:
> Hello,
>
> I'm setting up AD user logins for centos 7.4 box. I've almost managed
> to do everything the way I want and the way I think it should be, but
> I'm missing last piece:
>
> For ssh access I read parts of the
>
2017 Nov 01
4
kerberos + winbind + AD authentication for samba 4 domain member
On Wed, 1 Nov 2017 19:49:32 +0000
Rowland Penny via samba <samba at lists.samba.org> wrote:
> On Wed, 1 Nov 2017 20:28:05 +0100
> Kacper Wirski <kacper.wirski at gmail.com> wrote:
>
> > I'm going to start with clean centos install, so I might as well use
> > some additional guidelines, thank You.
> >
> > When You run kinit, does Your user have
2017 Mar 18
2
kerberos issue (SPN not found) with windows Hyper-V ( samba 4.5.3 AD)
I made some progress with the issue, but didn't solve it completely
It's basically a kind of bug (i'm not sure if it's on kerberos side or
samba, I think samba is the culprit here (?).
Microsoft uses kind of weird SPN for Hyper-V. Weird as there are
"spaces" in the string - which is kind of unique as far as SPN's go,
usually SPN form a complete string.
So I kind
2017 Nov 01
2
kerberos + winbind + AD authentication for samba 4 domain member
I'm going to start with clean centos install, so I might as well use some
additional guidelines, thank You.
When You run kinit, does Your user have ticket already? What I noticed is
that when user has a ticket already, kinit works fine, uses as default
principal the one from ticket.
Can you do kdestroy - then kinit?
Also, on Fedora, did You install samba from source or from repo's RPM?
2018 Apr 17
2
Bug: Dovecot index loosing sync with FTS despite "fts_autoindex = yes"
dovecot 2.2.34
solr 7.2
I only see new messages after typing on the server "doveadm fts rescan
-u username" though I've followed the wiki and added "fts_autoindex =
yes" in 90-plugin.conf . Subsequent search for the same pattern always
gives the same result, ignoring new emails with that particular pattern.
Solr is working correctly and the correct search results comes
2009 Aug 13
4
Quota question.
Hi,
I am trying to get quota working properly on dovecot 1.2.3 with postfix admin,
amavisd-new, mysql, and postfix.
So far I can see the db getting updated when messages are added and deleted
from the mailbox. The problem I am having is that I have imported a bunch of
messages from the old mail server that was running uw-imap and mbox to the
doevcot machine using maildir++. As a result the
2019 Jul 01
2
Issue with DHCP Updating DNS Records on AD DC
Greetings,
I am in the process of replacing my MicroFocus (Novell) eDirectory system
with a Samba-based Active Directory system. I've got three domain
controllers built, and they seem to be humming along nicely. Server OS is
Ubuntu 18.04 patched current. I started off with the Samba 4.7 packages
included in the default Ubuntu repository, but have since upgraded to Samba
4.10 using packages
2005 Apr 05
1
Can't mount samba share, Access denied
Hello,
I have samba configured with the following smb.conf file:
[global]
workgroup = mydomain
netbios name = servername
security = domain
printcap name = cups
disable spoolss = yes
show add printer wizard = no
idmap uid = 15000-20000
idmap gid = 15000-20000
winbind use default domain = yes
use sendfile = yes
printing = cups
[myshare]
comment = My new share
path = /export/myshare
valid users =
2020 Jul 03
3
Kerberos ticket maximum renewable lifetime
Am 03.07.20 um 13:05 schrieb Rowland penny via samba:
> On 03/07/2020 11:33, Stefan Just via samba wrote:
>> We are using tmux, screen and x2go to run long-running jobs on our
>> compute servers. $HOME and other data should be mounted via CIFS or
>> NFS4. Because such a job can run for more than a week, I would like to
>> increase the Kerberos ticket lifetime or better
2018 Apr 03
5
issue with sieve forwarding after upgrade to 0.5.1
Hello,
After I upgrade dovecot 2.2.35 to 2.3.1 and pigeonhole 0.4.23 to 0.5.1 when I use sieve to forward a message to other address using "redirect :copy" I get this:
(host server1.myserver.com <http://server1.myserver.com/>[private/dovecot-lmtp] said: 451 4.2.0 <chris at mydomain.com <mailto:chris at mydomain.com>> Execution of Sieve filters was aborted due to
2016 Sep 16
2
Exporting keytab for SPN failure
On Fri, 16 Sep 2016 13:00:52 -0700
Robert Moulton via samba <samba at lists.samba.org> wrote:
> Achim Gottinger via samba wrote on 9/15/16 1:20 AM:
> >
> >
> > Am 15.09.2016 um 09:35 schrieb Rowland Penny via samba:
> >> On Wed, 14 Sep 2016 16:23:27 -0500
> >> Michael A Weber via samba <samba at lists.samba.org> wrote:
> >>
>
2017 Feb 03
7
How to get password expiration?
This seems to work for maxPwdAge
ldapsearch -LLL -Q -s base -h ad.mydomain.tld -b dc=ad,dc=mydomain,dc=tld
maxPwdAge
now I just need to query a users pwdLastSetq
I tried the commands above but am not getting anything. I tried looking at
the ungrepped output but I don't see how to link the pwdLastSet with any
user. I get a long list.
I think I'm looking for dn: and a matching pwdLastSet?
2016 Sep 16
2
Exporting keytab for SPN failure
Am 16.09.2016 um 23:00 schrieb Robert Moulton via samba:
> Rowland Penny via samba wrote on 9/16/16 1:43 PM:
>> On Fri, 16 Sep 2016 13:00:52 -0700
>> Robert Moulton via samba <samba at lists.samba.org> wrote:
>>
>>> Achim Gottinger via samba wrote on 9/15/16 1:20 AM:
>>>>
>>>>
>>>> Am 15.09.2016 um 09:35 schrieb Rowland Penny
2019 Aug 04
5
problems with authentication
Hi,
I set up a samba 4 in Debian 9.9 as a Domain member server, but
authentication is not working as follows:
root at srv-proxy:/etc/samba# wbinfo -a marcio at EMPRESA.COM.BR
Enter marcio at EMPRESA.COM.BR's password:
plaintext password authentication succeeded
Enter marcio at EMPRESA.COM.BR's password:
challenge/response password authentication failed
wbcAuthenticateUserEx(+marcio at
2016 Sep 16
2
Exporting keytab for SPN failure
Am 17.09.2016 um 00:29 schrieb Robert Moulton via samba:
> Achim Gottinger via samba wrote on 9/16/16 3:05 PM:
>>
>>
>> Am 16.09.2016 um 23:00 schrieb Robert Moulton via samba:
>>> Rowland Penny via samba wrote on 9/16/16 1:43 PM:
>>>> On Fri, 16 Sep 2016 13:00:52 -0700
>>>> Robert Moulton via samba <samba at lists.samba.org> wrote:
2016 Sep 16
2
Exporting keytab for SPN failure
Achim Gottinger via samba wrote on 9/16/16 4:14 PM:
>
>
> Am 17.09.2016 um 00:54 schrieb Achim Gottinger via samba:
>>
>>
>> Am 17.09.2016 um 00:29 schrieb Robert Moulton via samba:
>>> Achim Gottinger via samba wrote on 9/16/16 3:05 PM:
>>>>
>>>>
>>>> Am 16.09.2016 um 23:00 schrieb Robert Moulton via samba:
2010 Jan 18
2
Samba/winbind with Active Directory auth
Hi List,
I'm installing a Samba server with the intended purpose of serving files to
Windows users with seamless authentication on the smb server.
For that, I've been reading and following every single google search result
regarding the subject, but it seems I'm stuck at some point where other
people are not blocked ...
To summarize, I have these commands OK:
# kinit admin_user at
2016 Sep 17
2
Exporting keytab for SPN failure
Am 17.09.2016 um 02:19 schrieb Achim Gottinger via samba:
>
>
> Am 17.09.2016 um 01:23 schrieb Robert Moulton:
>> Achim Gottinger via samba wrote on 9/16/16 4:14 PM:
>>>
>>>
>>> Am 17.09.2016 um 00:54 schrieb Achim Gottinger via samba:
>>>>
>>>>
>>>> Am 17.09.2016 um 00:29 schrieb Robert Moulton via samba:
2007 May 13
2
SAMBA on AIX --> nsswitch.conf?
Hi
I am still trying to run SAMBA on AIX with "security = ads" and I have
a few questions:
- on AIX is no such file as /etc/nsswitch.conf --> Do I have to add
the configuration somewhere else?
- I allways get this "User xy is invalid on this system" if try to map
a share from Windows. What does this mean? Is the user invalid on the
Domain? on AIX? on SAMBA? Is the User