similar to: Replace AD DC FS with 2 new servers

Displaying 20 results from an estimated 40000 matches similar to: "Replace AD DC FS with 2 new servers"

2018 Nov 26
2
Replace AD DC FS with 2 new servers
Hi So I added a second DC with the rfc2307 option. It replicates and I auth works. yay. >> Does this also mean that the member server that will act as a file >> server should have idmap config = ad? > Only if you have manually added uidNumber & gidNumber attributes to AD I belive the microsoft admin tools have always been used to add users and groups Is 'idmap
2018 Nov 26
0
Replace AD DC FS with 2 new servers
On Mon, 26 Nov 2018 15:27:28 +0100 Mark Amundsen via samba <samba at lists.samba.org> wrote: > Hi > > So I added a second DC with the rfc2307 option. It replicates and I > auth works. yay. > >> Does this also mean that the member server that will act as a file > >> server should have idmap config = ad? > > > Only if you have manually added uidNumber
2018 Nov 26
2
Replace AD DC FS with 2 new servers
> > > > Is 'idmap rid' a better choice than ad? Can I still copy files with > > rsync in that case or will file ownership be mangled? > > Quantify better ? > One isn't really better than the other, they are both usable, but in > different ways and reasons. > It might help if you read this: > >
2020 Feb 15
4
winbind question
I could use some input to point out the error in my configuration, which eludes me. Previously I operated a 225-node cluster with samba 4.3 and sssd on the Linux boxes. Everything worked OK. Now I am using samba 4.11.6 on CentOS 7.7, patched up to date. The DC, on a KVM VM, is the only node configured so far. I am using winbind in place of sssd (my first experience with winbind). BIND9_DLZ
2016 Apr 04
3
chgrp "Domain Admins" on folder return invalid group "Domain Admins"
Dear Samba users and admins, I am trying to deploy Samba4 as a domain controller and a file server and having some issues.* The domain have been well provisioned with option --use-rfc2307 I am then trying to create share by following this samba wiki https://wiki.samba.org/index.php/Shares_with_Windows_ACLs The problem is that i cannot succeed to change the group owner of the folder I want to
2016 Jun 14
3
Two DC but Different UID
On 14/06/16 17:31, Carlos A. P. Cunha wrote: > Understood, I leave dess form, or may have problems > As for examples, with fileserver (separately)? > But I already was using the RFC2307, because in both I am with the > option: > idmap_ldb: use RFC2307 = yes > ??? > > Thank you > > Just because you have 'idmap_ldb: use RFC2307 = yes' in smb.conf, doesn't
2016 Oct 14
2
Unable to set up home share correctly
Hello Rowland, Am 13.10.2016 um 18:25 schrieb Rowland Penny via samba: > It sounds like you don't have IDMU installed, not sure if you can > install it on 2012. are you trying to say that I should install "Identity Management for Unix" on a Windows Server 2012? If yes, I am afraid we have a misunderstanding here: I don't use any Windows Server in my set-up. I use a
2018 Nov 26
0
Replace AD DC FS with 2 new servers
On Mon, 26 Nov 2018 17:27:29 +0100 Mark Amundsen via samba <samba at lists.samba.org> wrote: > > > > > > Is 'idmap rid' a better choice than ad? Can I still copy files > > > with rsync in that case or will file ownership be mangled? > > > > Quantify better ? > > One isn't really better than the other, they are both usable, but in
2016 Oct 14
2
Unable to set up home share correctly
Am 14.10.2016 um 15:04 schrieb Rowland Penny via samba: > On Fri, 14 Oct 2016 14:32:52 +0200 > Udo Willke via samba <samba at lists.samba.org> wrote: > >> Hello Rowland, >> >> Am 13.10.2016 um 18:25 schrieb Rowland Penny via samba: >>> It sounds like you don't have IDMU installed, not sure if you can >>> install it on 2012. >> are you
2016 Aug 10
1
File Server member DC ACL permissions
I will choose to use the winbind. Based on the link that Rowland said: https://wiki.samba.org /index.php/Setup_Samba_as_an_AD_Domain_Member I followed the steps as described in the tutorial. I created symlinks. In the main DC I added this line in smb.conf: idmap_ldb: use RFC2307 = yes Changed /etc/nsswitch.conf passwd: files winbind shadow: files group: files winbind hosts:
2016 Feb 01
2
Validate Ids Multiple DC
Hello! And my DCs now the station Ids equal, in my Fileserver this way: DC01: wbinfo -i userteste01 SERVERAD \ userteste01: *: 3000367: 100: userteste01: / home / SERVERAD / userteste01: / bin / false DC02: wbinfo -i userteste01 SERVERAD \ userteste01: *: 3000367: 100: userteste01: / home / SERVERAD / userteste01: / bin / false My Fileserver: wbinfo -i userteste01 userteste01: *: 13121: 5513:
2016 Jun 22
3
Rights issue on GPO
On 22/06/16 10:13, mj wrote: > > > On 06/21/2016 04:48 PM, lingpanda101 at gmail.com wrote: >> >> I found my issue. On one of my DC's I had misspelled 'idmap_ldb:use >> rfc2307 = Yes'. I had it 'idmap_lbd:'. Ran 'net cache flush' and wbinfo >> gave correct mappings. I find it odd that 'samba-tool testparm' never >> threw
2016 Aug 11
3
File Server member DC ACL permissions
> Hmm, the numbers seem extremely large, did you set this number in the > users 'uidnumber' attribute in AD ? How do I do this uidNumber configuration? I'm running all services: smbd, nmbd and winbind It's hard to run the file server as a domain member. When was a file server with DC was much more easy.
2016 Jun 14
4
Two DC but Different UID
On 14/06/16 17:00, Carlos A. P. Cunha wrote: > Correcting previous email > > > Hello! > Own two Dcs Samba 4.4, this all OK, but ids are different: > > > Example DC1: > id tr005 > uid = 3000039 (TESTELOCAL \ tr005) gid = 100 (users) groups = 100 > (users), 3000039 (TESTELOCAL \ tr005), 3,000,009 (BUILTIN \ users) > > Example DC2: > id tr005 > uid =
2015 Jul 01
2
winbindd hangs and makes the system unuseable when DC is offline
Hello, I am using winbindd to map users via the idmap_ad backend from a Samba 4.2.2 AD to another machine in the network. Everything works fine unless I shutdown the DC. I would expect winbindd to realize the DC is offline and shutdown or something, however instead of realizing something is wrong It goes into some kind of reconnection loop and makes the whole system unuseable. As soon as I kill
2023 Nov 25
2
Switching to a RFC2307 Schema
Hello, after stumbling in almost every thread, that it makes sense to have RFC2307 enabled, I wanted to switch an AD DC to it and follwed this wiki page https://wiki.samba.org/index.php/Setting_up_RFC2307_in_AD When I try to import the modified ldif file, I get an error message: ERR: (Entry already exists) "Entry CN=ypServ30,CN=RpcServices,CN=System,DC=ad,DC=url,DC=de already exists"
2018 Jun 18
2
Questions about adding a DC
Hi, In reading https://wiki.samba.org/index.php/Joining_a_Samba_DC_to_an_Existing_Active_Directory#Joining_the_Active_Directory_as_a_Domain_Controller it says "If the other DCs are Samba DCs and were provisioned with --use-rfc2307, you Should add --option='idmap_ldb:use rfc2307 = yes' to the join command" So does this mean that rfc2307 should not be used if the other DCs are MS
2016 Jun 22
4
Rights issue on GPO
On 22/06/16 13:44, lingpanda101 at gmail.com wrote: > On 6/22/2016 8:19 AM, L.P.H. van Belle wrote: >> And dont forget : >> https://wiki.samba.org/index.php/Idmap_config_ad >> >> I also noticed and incorrect mapping, which "looks" like rights >> issues like in the thead here. ( it is imo not a right issue.. ) read >> on.. >> >>
2018 Jun 18
2
Questions about adding a DC
On Mon, 18 Jun 2018, Rowland Penny via samba wrote: > On Mon, 18 Jun 2018 11:42:05 -0400 (EDT) > Tom Diehl via samba <samba at lists.samba.org> wrote: > >> Hi, >> >> In reading >> https://wiki.samba.org/index.php/Joining_a_Samba_DC_to_an_Existing_Active_Directory#Joining_the_Active_Directory_as_a_Domain_Controller >> it says "If the other DCs are
2019 Aug 19
3
Problems with NIS Server on Samba 4
Hi, >How are you trying to create the Unix (RFC2307) attributes ? I am following the article: https://wiki.samba.org/index.php/Maintaining_Unix_Attributes_in_AD_using_ADUC Open ADUC. Right-click to a user account and choose properties. Navigate to the "UNIX Attributes" tab. >Also, what do you mean by 'it doesn't bother any NIS server' ? Sorry, Google translated it