Displaying 20 results from an estimated 1000 matches similar to: "How to set same UID and GID for ADDC server and all Member server"
2018 Nov 22
0
How to set same UID and GID for ADDC server and all Member server
On Thu, 22 Nov 2018 13:55:08 +0100
Dario Lesca via samba <samba at lists.samba.org> wrote:
> I have setup a ADDC Samba server and a winbind member server
>
> I have see that same user have UID/GID different from ADDC and
> member server
>
> # Addc (Fedora 29)[root at s-addc ~]# id d.lescauid=3000023(DOM\d.lesca)
> gid=100(users)
>
2017 Apr 25
2
Setup a new samba AD DC
I have setup a new Samba Active Directory DC on Fedora 25 and samba-
4.5.8-1.fc25.x86_64, rebuild from src.rpm with dc option enable.
This system (fedora-addc) is only an AD-DC. In the next days I will
deploy another Centos 7 samba member server with standard samba-4.4.4
rpm (without dc enabled) and join it to Fedora AD-DC for manage data
users.
After install bind dns and samba new rebuild
2017 Apr 25
3
Setup a new samba AD DC
Il giorno mar, 25/04/2017 alle 13.26 +0100, Rowland Penny via samba ha
scritto:
> On Tue, 25 Apr 2017 14:07:05 +0200
> Dario Lesca via samba <samba at lists.samba.org> wrote:
>
> > I have setup a new Samba Active Directory DC on Fedora 25 and
> > samba-
> > 4.5.8-1.fc25.x86_64, rebuild from src.rpm with dc option enable.
> >
> > This system
2017 Apr 25
3
Setup a new samba AD DC
Il giorno mar, 25/04/2017 alle 14.36 +0100, Rowland Penny via samba ha
scritto:
> On Tue, 25 Apr 2017 15:09:55 +0200
> Dario Lesca via samba <samba at lists.samba.org> wrote:
>
>
> > Thanks Rowland, then the AD-DC is ok.
> > This little virtual server (3Gb of disk) must do only the DNS and
> > AD-DC for my network.
> >
> > However I would like to
2017 Nov 06
5
Failed to find domain 'NT AUTHORITY'
Hello,
I recently set up a new software to backup samba share.
This software ( https://github.com/borgbackup/borg ) run on file server as
root cron script during the night and save file on external NAS.
The problem I have is that for each file copied from
samba share to external NAS, winbindd log an error
such this to samba.log.winbindd and /var/log/messages
[2017/11/06 11:05:16.747449, 0]
2017 Feb 15
3
Samba AD domain member with SSSD: ACL not work
Have you seen :
( centos/redhat )
https://outsideit.net/realmd-sssd-ad-authentication/
( debian/ubuntu )
http://www.alandmoore.com/blog/2015/05/06/joining-debian-8-to-active-directory/
but i must say, i havent tested/tried these, i dont use sssd.
But i think these are usefull for you to read at least.
If you use the debian variant, you may need to install also :
One or more of these :
2017 Feb 15
2
Samba AD domain member with SSSD: ACL not work
Il giorno mer, 15/02/2017 alle 09.45 +0100, Dario Lesca via samba ha
scritto:
> Then Yesterday in 5 minutes I installed, configured and activated
> winbind and now all work fine.
Ok, ACLs now work, but I now it's appeared another problem.
I can only access to my samba+winbind server from Windows Server AD DC
and from itself (smbclient -Uadministrator -L server-dati).
If I try to
2017 Apr 26
2
Setup a new samba AD DC
Il giorno mer, 26/04/2017 alle 07.27 +0100, Rowland Penny via samba ha
scritto:
> On Wed, 26 Apr 2017 01:55:16 +0200
> Dario Lesca via samba <samba at lists.samba.org> wrote:
>
> Your problem is that you need to find out just who dhcpd runs as on
> fedora. On Devuan it is root and everything just works.
Yes, on Debian work.
And with this patch:
[root at fedora-addc ~]#
2017 Mar 07
2
Samba 4.4.4: ACLs not work property with recycle vfs object enable
Samba file server (Server role: ROLE_DOMAIN_MEMBER) joined to Win2008
ADDC
I have a strange problem with ACLs and "vfs object = recycle" enabled
This is my share entry
> [dati]
> comment = Cartella Dati x tutti
> path = /u/samba/dati/
> read only = no
>
> Veto files = /*.pst/*.ost/
>
> inherit acls = yes
>
2017 Apr 25
0
Setup a new samba AD DC
On Tue, 25 Apr 2017 14:07:05 +0200
Dario Lesca via samba <samba at lists.samba.org> wrote:
> I have setup a new Samba Active Directory DC on Fedora 25 and samba-
> 4.5.8-1.fc25.x86_64, rebuild from src.rpm with dc option enable.
>
> This system (fedora-addc) is only an AD-DC. In the next days I will
> deploy another Centos 7 samba member server with standard samba-4.4.4
>
2017 Nov 10
1
[Curiosity] Default domain, DC and DM...
In my DC, without setting explicitly a 'winbind default domain', i can
check logins domainless:
root at vdcsv1:~# id gaio
uid=10000(LNFFVG\gaio) gid=10513(LNFFVG\domain users) gruppi=10513(LNFFVG\domain users),11001(LNFFVG\sir),10999(LNFFVG\unixadm),3000008(LNFFVG\domain admins),3000005(LNFFVG\denied rodc password replication group),3000005(LNFFVG\denied rodc password replication
2017 Feb 14
3
Samba AD domain member with SSSD: ACL not work
On a Centos 7 minimal fresh install and samba 4.4.4 I have follow this
howto:
http://www.hexblot.com/blog/centos-7-active-directory-and-samba
and I have Joining to an Active Directory server and login to it with
domain user without problem.
My problem occur when I try from windows to modify some new rights
(ACL's) to new folder on samba share.
The folder is created correctly but if I add
2017 Dec 04
2
Samba 4.7.2 + bind on Fedora 27: samba_dlz: spnego update failed
Il giorno lun, 04/12/2017 alle 13.17 +0100, Christian Naumer via samba
ha scritto:
> Is
>
> /var/lib/samba/bind-dns/
>
> accessible by bind?
Yes, and selinux is disable
[ root at server-addc ~]# find /var/lib/samba/bind-dns/ -ls
3149158 0 drwxrwx--- 3 root named 95 dic 4 14:03 /var/lib/samba/bind-dns/
111 0 drwxrwx--- 3
2017 Feb 09
3
Samba AD domain member and home directory creation
On a Centos 7 minimal fresh install I have follow this howto:
http://www.hexblot.com/blog/centos-7-active-directory-and-samba
and I have Joining to an Active Directory server without problem.
The command "id administrator" work great, the home directory (/home/us
er at srl) is successfully created if I run "su - user" or "ssh
user at localhost" from a shell
2018 Nov 22
1
How to set same UID and GID for ADDC server and all Member server
Il giorno gio, 22/11/2018 alle 13.46 +0000, Rowland Penny via samba ha
scritto:
> I do hope this is a test domain, using the standard fedora packages
> fora DC is considered experimental
Yes, for now is a test domain, but, if it works great, why do not used
it in a production environment?
Why the DC Fedora Package is considered experimental?
The last samba version is 4.9.2, Fedora Team
2017 Feb 14
1
Samba AD domain member with SSSD: ACL not work
Il giorno mar, 14/02/2017 alle 16.13 +0000, Rowland Penny via samba ha
scritto:
> Have you modified /etc/nsswitch.conf ?
No:
> passwd: files sss
> shadow: files sss
> group: files sss
for default nsswitch.conf is configure to use sssd
> If you haven't, then you are not using winbind, you are using sssd.
Yes. I use sssd, If this is not a problem for samba.
>
2017 Feb 20
2
Offical RHEL AD DC on RHEL
Il giorno dom, 19/02/2017 alle 21.17 -0700, Jeff Sadowski via samba ha
scritto:
> I was never able to build it in a way
I have rebuild samba from rpm source on Centos 7 (samba 4.4.4) and
Fedora (samba 4.5.5) with this procedure:
> > [lesca at dodo rpmbuild]$ cat rebuild.txt
> #
>
> # Install Development ...
> sudo yum -y groupinstall 'Development Tools'
> # sudo
2017 Feb 18
0
Minimum python 2.7 (not on RHEL6) for Samba 4.7 AD DC?
Il giorno sab, 18/02/2017 alle 07.53 +1300, Andrew Bartlett via samba
ha scritto:
> - If so, would an upgrade to RHEL7 be likely before you deploy Samba
> 4.7 in late 2017?
RHEL/Centos 7.3 (last today update) already has python 2.7.x,
RHEL/Centos 6 not.
> [lesca at server-dati ~]$ cat /etc/redhat-release
> CentOS Linux release 7.3.1611 (Core)
> [lesca at server-dati ~]$ python
2017 Dec 04
4
Samba 4.7.2 + bind on Fedora 27: samba_dlz: spnego update failed
I have setup on Fedora 27 server a AD-DC samba server + bind + dhcp.
All seem work fine: I can join to domain, add/remove dns records with
samba-tools, access to shared folder, use MS Management Console on
Win7, ecc
But when I join a new machine Samba winbind Member server to domain
[ root at server-dati ~]# net ads join DOGMA-TO -U administrator
Using short domain name --
2017 Apr 25
2
Setup a new samba AD DC
Il giorno mar, 25/04/2017 alle 14.36 +0100, Rowland Penny via samba ha
scritto:
> > However I would like to enable also the DHCP service, and think
> > it's right to activate it on this server.
> >
> > What is the best way to do so?
>
> Well you could always do it the way I have been doing it for the last
> 5 years, see here:
>
>