similar to: How to set same UID and GID for ADDC server and all Member server

On Thu, 22 Nov 2018 13:55:08 +0100 Dario Lesca via samba <samba at lists.samba.org> wrote: > I have setup a ADDC Samba server and a winbind member server > > I have see that same user have UID/GID different from ADDC and > member server > > # Addc (Fedora 29)[root at s-addc ~]# id d.lescauid=3000023(DOM\d.lesca) > gid=100(users) >

I have setup a new Samba Active Directory DC on Fedora 25 and samba- 4.5.8-1.fc25.x86_64, rebuild from src.rpm with dc option enable. This system (fedora-addc) is only an AD-DC. In the next days I will deploy another Centos 7 samba member server with standard samba-4.4.4 rpm (without dc enabled) and join it to Fedora AD-DC for manage data users. After install bind dns and samba new rebuild

Il giorno mar, 25/04/2017 alle 13.26 +0100, Rowland Penny via samba ha scritto: > On Tue, 25 Apr 2017 14:07:05 +0200 > Dario Lesca via samba <samba at lists.samba.org> wrote: > > > I have setup a new Samba Active Directory DC on Fedora 25 and > > samba- > > 4.5.8-1.fc25.x86_64, rebuild from src.rpm with dc option enable. > > > > This system

Il giorno mar, 25/04/2017 alle 14.36 +0100, Rowland Penny via samba ha scritto: > On Tue, 25 Apr 2017 15:09:55 +0200 > Dario Lesca via samba <samba at lists.samba.org> wrote: > > > > Thanks Rowland, then the AD-DC is ok. > > This little virtual server (3Gb of disk) must do only the DNS and > > AD-DC for my network. > > > > However I would like to

Hello, I recently set up a new software to backup samba share. This software ( https://github.com/borgbackup/borg ) run on file server as root cron script during the night and save file on external NAS. The problem I have is that for each file copied from samba share to external NAS, winbindd log an error such this to samba.log.winbindd and /var/log/messages [2017/11/06 11:05:16.747449, 0]

Have you seen : ( centos/redhat ) https://outsideit.net/realmd-sssd-ad-authentication/ ( debian/ubuntu ) http://www.alandmoore.com/blog/2015/05/06/joining-debian-8-to-active-directory/ but i must say, i havent tested/tried these, i dont use sssd. But i think these are usefull for you to read at least. If you use the debian variant, you may need to install also : One or more of these :

Il giorno mer, 15/02/2017 alle 09.45 +0100, Dario Lesca via samba ha scritto: > Then Yesterday in 5 minutes I installed, configured and activated > winbind and now all work fine. Ok, ACLs now work, but I now it's appeared another problem. I can only access to my samba+winbind server from Windows Server AD DC and from itself (smbclient -Uadministrator -L server-dati). If I try to

Il giorno mer, 26/04/2017 alle 07.27 +0100, Rowland Penny via samba ha scritto: > On Wed, 26 Apr 2017 01:55:16 +0200 > Dario Lesca via samba <samba at lists.samba.org> wrote: > > Your problem is that you need to find out just who dhcpd runs as on > fedora. On Devuan it is root and everything just works. Yes, on Debian work. And with this patch: [root at fedora-addc ~]#

Samba file server (Server role: ROLE_DOMAIN_MEMBER) joined to Win2008 ADDC I have a strange problem with ACLs and "vfs object = recycle" enabled This is my share entry > [dati] >         comment = Cartella Dati x tutti >         path = /u/samba/dati/ >         read only = no > >         Veto files = /*.pst/*.ost/ > >         inherit acls = yes >

On Tue, 25 Apr 2017 14:07:05 +0200 Dario Lesca via samba <samba at lists.samba.org> wrote: > I have setup a new Samba Active Directory DC on Fedora 25 and samba- > 4.5.8-1.fc25.x86_64, rebuild from src.rpm with dc option enable. > > This system (fedora-addc) is only an AD-DC. In the next days I will > deploy another Centos 7 samba member server with standard samba-4.4.4 >

In my DC, without setting explicitly a 'winbind default domain', i can check logins domainless: root at vdcsv1:~# id gaio uid=10000(LNFFVG\gaio) gid=10513(LNFFVG\domain users) gruppi=10513(LNFFVG\domain users),11001(LNFFVG\sir),10999(LNFFVG\unixadm),3000008(LNFFVG\domain admins),3000005(LNFFVG\denied rodc password replication group),3000005(LNFFVG\denied rodc password replication

On a Centos 7 minimal fresh install and samba 4.4.4 I have follow this howto: http://www.hexblot.com/blog/centos-7-active-directory-and-samba and I have Joining to an Active Directory server and login to it with domain user without problem. My problem occur when I try from windows to modify some new rights (ACL's) to new folder on samba share. The folder is created correctly but if I add

Il giorno lun, 04/12/2017 alle 13.17 +0100, Christian Naumer via samba ha scritto: > Is > > /var/lib/samba/bind-dns/ > > accessible by bind? Yes, and selinux is disable [ root at server-addc ~]# find /var/lib/samba/bind-dns/ -ls 3149158 0 drwxrwx--- 3 root named 95 dic 4 14:03 /var/lib/samba/bind-dns/ 111 0 drwxrwx--- 3

On a Centos 7 minimal fresh install I have follow this howto: http://www.hexblot.com/blog/centos-7-active-directory-and-samba and I have Joining to an Active Directory server without problem. The command "id administrator" work great, the home directory (/home/us er at srl) is successfully created if I run "su - user" or "ssh user at localhost" from a shell

Il giorno gio, 22/11/2018 alle 13.46 +0000, Rowland Penny via samba ha scritto: > I do hope this is a test domain, using the standard fedora packages > fora DC is considered experimental Yes, for now is a test domain, but, if it works great, why do not used it in a production environment? Why the DC Fedora Package is considered experimental? The last samba version is 4.9.2, Fedora Team

Il giorno mar, 14/02/2017 alle 16.13 +0000, Rowland Penny via samba ha scritto: > Have you modified /etc/nsswitch.conf ? No: > passwd:     files sss > shadow:     files sss > group:      files sss for default nsswitch.conf is configure to use sssd > If you haven't, then you are not using winbind, you are using sssd. Yes. I use sssd, If this is not a problem for samba. >

Il giorno dom, 19/02/2017 alle 21.17 -0700, Jeff Sadowski via samba ha scritto: > I was never able to build it in a way I have rebuild samba from rpm source on Centos 7 (samba 4.4.4) and Fedora (samba 4.5.5) with this procedure: > > [lesca at dodo rpmbuild]$ cat rebuild.txt > # > > # Install Development ... > sudo yum -y groupinstall 'Development Tools' > # sudo

Il giorno sab, 18/02/2017 alle 07.53 +1300, Andrew Bartlett via samba ha scritto: >  - If so, would an upgrade to RHEL7 be likely before you deploy Samba > 4.7 in late 2017? RHEL/Centos 7.3 (last today update) already has python 2.7.x, RHEL/Centos 6 not. > [lesca at server-dati ~]$ cat /etc/redhat-release > CentOS Linux release 7.3.1611 (Core)  > [lesca at server-dati ~]$ python

I have setup on Fedora 27 server a AD-DC samba server + bind + dhcp. All seem work fine: I can join to domain, add/remove dns records with samba-tools, access to shared folder, use MS Management Console on Win7, ecc But when I join a new machine Samba winbind Member server to domain [ root at server-dati ~]# net ads join DOGMA-TO -U administrator Using short domain name --

Il giorno mar, 25/04/2017 alle 14.36 +0100, Rowland Penny via samba ha scritto: > > However I would like to enable also the DHCP service, and think > > it's right to activate it on this server. > > > > What is the best way to do so? > > Well you could always do it the way I have been doing it for the last > 5 years, see here: > >