similar to: Execute a user script whenever a user is added in the domain

My DC handle the authentification and some other Samba server provide shares (they're pure file servers with winbind). Users get their personal directory as a share with appropriate permissions. Up until now I used a Samba 3 server to both handle the authentification and act as a file server. I had a script to create a Samba user, create the personal directories and set some ZFS quota on it.

On Thu, 23 Nov 2017 20:31:46 +0100 Fabian Fritz via samba <samba at lists.samba.org> wrote: > Hi, > > I am using the ADUC-tool on Windows PCs to add users to the domain. > Now I also need to do some maintance work on the linux server (DC). > Is there an option that I've overlooked or any other way to execute a > shell script whenever a user is added? Ideally it would

Hi, I have a samba 4.7 DC (Red Hat) and a Solaris 10 Member (also 4.7.0). I started winbindd and can get all users in my domain via "getent passwd" except MYDOM\Administrator. I can get it via wbinfo however: # wbinfo -n "MYDOM\Administrator" S-1-5-21-.......-500 SID_USER (1) In the winbind log with log level = 10, when I do getent passwd "MYDOM\Administrator I always

I'm having some difficulty finding a method to shrink my /home to expand my /.? They both correspond to LVMs.? It is my understanding that one cannot shrink a xfs filesystem.? One must back it up (xfsdump), remove (lvremove) redefine it and then restore it back (xfsrestore). Okay, I'm running into a problem where /home? needs to be "unused".? If tried going in to

I tried mapping to root but I still get an ACCESS_DENIED when I try to mount a share from the domain member. I'd be very surprised if the samba admin account is the one and only account that is intentionally denied from accessing shares on a member. I'm pretty sure this is a bug. I tried this again with two clean installs (4.7.1) on Linux, one in a VM. Compare this on the DC: #

Yeah, I tried that but ran into a problem.? It came up fine in single-user/maintenance mode. ? The mount command shows all of the mounted file systems, but after I 'chroot /sysroot', the mount failed (with some problem with mtab, sorry don't have the exact error message).? So I couldn't mount my 32TB RAID (where the xfsdump file was). On 5/13/2020 12:48 AM, Simon Matter via

I'll try that...I was using instructions I found on the internet for single-user/maintenance mode.?? From the grub screen you enter 'e' and modify the linux16 line...etc. Okay, I'll try that next. Thanks Simon! On 5/13/2020 7:28 AM, Simon Matter via CentOS wrote: > Hi, > >> Yeah, I tried that but ran into a problem.? It came up fine in >>

Complete event id of : > But still, events log show a warning about kerberos ticket from LsaSrv > source and right after a permission denied on GPT.ini And a getfacl of the problem GPO SID please, i'll check. And a output of ipconfig /all on the problem pc. And question, dedicated IP or dhcp IP? Greetz, Louis > -----Oorspronkelijk bericht----- > Van: samba

Hello everybody, I just got the email about the enforcing of HTTPS for the CentOS Websites which I really appreciate: ?The CentOS Project infra team has decided to implement TLS wherever we can (?)? Does anybody know if and when mail.centos.org will be able to deliver its mails with STARTTLS? There seems to be no support for STARTTLS at all: $: openssl s_client -connect mail.centos.org:25

Okay, right. Is there anything that the Samba admininistrator account can do that the users in the group domain admins can't (other than direct configurations on the samba server)? Also on a kind of unrelated note: I have several Unix servers that used NIS up until now to get the users. I would prefer if they could get the username like right now, without the MYDOM\ prefix. Is it possible to

Ok, where your pc's get the DNS info from? Server : AD-DC + DNS Or Server : AD-DC + Some other server with DNS Can you give the output of dig NS your.domain.tld and tel us what what is. > -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens Sébastien Le Ray > Verzonden: dinsdag 29 maart 2016 16:31 > Aan: samba at

I found this one. Check which one works for you. http://www.eventid.net/display-eventid-40960-source-LSASRV-eventno-8508-phase-1.htm Im sure this is not a samba configuration problem. Greetz, Louis > -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens L.P.H. van Belle > Verzonden: dinsdag 29 maart 2016 16:18 > Aan: samba at

Hi, we are running Samba 4.9.2 on Solaris 10 connected to AD as a member with some share: [refb] path = /samba/refb browseable = no valid users = +"AM\refb_users" writeable = yes force user = AM\qui force group = AM\refb_users All the samba users and groups come from AD through nss_winbind. Inside /samba/refb/ I created a sub directory test_a and set the owner (in Solaris via chown)

i'm having intermittent issues with windows 10 clients (dont have win7/xp) on the network. i frequently get users being unable to login even when they put correct credentials. when that happens wbinfo --authenticate user completes successfully on the controller (just one on the network), same with authenticating webmail/intranet against PDC works. time is in sync. sometimes rebooting the PC

I hate 'me too' replies - but I have also been struggling with this for some years in my multi-DC environment. (yes, replicated sysvol via lsyncd + rsync; permissions looked identical via getfacl last time I checked). Sometimes a client machine will run gpupdate just fine; other times it will fail, seemingly randomly. My next step was going to be to run wireshark on a client machine to

Hello. I have got strange problem with tc utility (iproute2-ss001007) on linux 2.4.18. No matter what rules i am going to test, the resul of ''tc class ls/show'' is always the same : ATSLite ()# tc -s class ls dev eth1 do_page_fault() #2: sending SIGSEGV to tc for illegal read access from 00000000 (epc == 00000000, ra == 00408750) Segmentation fault tc -s qdisc ls , tc -s filter

Hello, thanks for the tips on updating packages for 1.8.0. The updating is a real problem for me, since I've to do it sort of manually using my web-browser or wget. I'm behind a firewall that requires http/ftp authentification (username and passwd) for every request it sends to a server outside our intranet. Therefore all the nice tools for automatic updating (cran, cpan ...) don't

Hi, I'm trying to set up a squid with ntlm authentification, and as I follow the instructions I read in the squid FAQ I run into this problem. When I try to do a ``wbinfo -a <domain>\\<user>%<passwd>'' the process tells me that the authentification did not succeded (both, plaintext passwords authentification and challenge/response password authentification). This

  Hi,    it there  any way how to look into samba ldap in the same way I can look into OpenLdap via LDAPAdmin, ldap tools etc, when I know OpenLDAP "root" dn and password? Is there such "root" user for Samba AD LDAP?    We have a lot of scripts based on "ldapsearch" (without authentification) and "ldapmodify" (with ldap authentification). It would be very

Hi, today we came across the idea of adding an external authentification- module for listening to icecast2. There have recently been talks with artists and music labels that they would like to receive "a small fee" per listener to e.g. a concert streamed live over the internet. What do you think of adding an external authentification-module so that the user could listen to a stream