similar to: AD and firewalls

Displaying 20 results from an estimated 2000 matches similar to: "AD and firewalls"

2019 Jul 29
2
Upgrading your Samba AD-DC from Stretch to Buster, used samba 4.10.6.
Hai guys, After a few messages on the list on Buster, i decided to upgrade one of my production AD-DC's and see what happens. If noticed a few things here, so here are the steps and changes i made to upgrade and have a correct working AD-DC after the upgrade. Setup is as followed: Debian Stretch AD-DC with Bind9 DLZ and ntp time. This is still the base i used for my AD-DC
2019 Jun 14
5
Spring Cleanup / Migrating Samba 4.5 to 4.10
With some slight delay, we did actually manage to get all our old wonky compatibility solutions nuked (turned out there were a few more lurking in the shadows than expected?). Mail servers are no longer domain joined, and unencrypted LDAP is finally gone, together with the terrible PHP scripts that needed it. Which allowed me to finally cleanup all the samba setups:
2019 May 21
2
Debugging Samba is a total PITA and this needs to improve
Sven, Fist fix the smb.conf as i suggested, cap and non caps where it should be. Resolving settings based on the script output looks ok. Fix krb5.conf Then how many DC's are you having? > So, could somebody maybe help with the NT_STATUS_INTERNAL_DB_CORRUPTION > / DRS replication issue? Or will it be easier to just demote > the DC and provision a new one? Are all DC's
2019 Apr 23
2
How to get users last Login time
On Tue, 23 Apr 2019 17:12:37 +0200 Sven Schwedas via samba <samba at lists.samba.org> wrote: > https://docs.microsoft.com/en-us/windows/desktop/adschema/a-lastlogontimestamp > > Works on Samba AD as on Windows and can be queried by any LDAP client > and used in Bash/Powershell scripts. There's probably finished scripts > somewhere you can use. > Yes, you could use
2019 Aug 26
2
CPU and Memory requirements for host OS ( CentOS 7.6) on Dell Poweredge R630 server
Hi, I am running Dell R630 Poweredge 1U with 32 cores vCPU's and 96 GB RAM. What should be the minimum numbers of CPU cores and memory that should be reserved for host OS (CentOS 7.6) and the remaining CPU cores and memory resources to be allocated for Guest OS? I look forward to hearing from you and thanks in advance. Best Regards, Kaushal
2019 Apr 24
1
How to get users last Login time
On Wed, 24 Apr 2019 11:00:39 +0200 Sven Schwedas via samba <samba at lists.samba.org> wrote: > > https://blogs.technet.microsoft.com/askds/2009/04/15/the-lastlogontimestamp-attribute-what-it-was-designed-for-and-how-it-works/ > > It was literally designed for *this exact use case*. > Yes, but not very well ;-) It actually says 'the lastLogontimeStamp will be 9-14
2019 Jul 16
1
Syncing Sysvol
>> Yes, but that still uses rsync ;-) >Is this problematic? I have been using this solution for years, with >very good results. Rsync without ssh is insecure. I?d definitely urge to discourage rsync without ssh on wiki.samba.org. And with ssh, rsync is imho a lot more cumbersome to configure across a dynamic landscape. I appreciate the interest. I definitely would like
2018 Jan 23
2
a word of warning
Hi, I'd like to report something here, so it will not happen to others. We moved all disabled users in our samba AD to a dedicated folder in ADUC, which we called 'disabled'. A little while after we did that, our network started 'falling apart'. Some things still worked, others did not. I could for example no longer start ADUC, some users could not logon or map drives, etc,
2019 Apr 23
4
How to get users last Login time
Hi We are using SAMBA4 As Active Directory We have a requirement to a) find out which user did not logging for more then 90 days and Delete those user by using script I am just wondering, is there any command to check in Samba4 to get user Last login time ? Thanks-- Regards -- Regards Fosiul Alam
2019 Jan 04
3
My 1973 VW Karmann Ghia
I wonder if it's the same part as used on the VW Samba! J On 04/01/2019 21:55, Steven Hirsch via samba wrote: > On Fri, 4 Jan 2019, Susan Slayter King via samba wrote: > >> I crashed my car and need the entire turn indicator assembly. Drivers >> side. >> Can anybody help. No local retailers have it. I did get a wiring tube >> but >> still need the seal,
2019 May 21
2
Debugging Samba is a total PITA and this needs to improve
The smb.conf hasn't changed since the last three or four times I've posted here asking for help: https://up.tao.at/u/samba/villach-file.txt Top level error I'm seeing is that since today *some* Windows users are denied SMB access to this one member server ("Network password is invalid"), but not all users. Worked fine before today. wbinfo -p/-P work, wbinfo -a shows the
2019 Jul 04
2
`samba-tool dbcheck --cross-ncs --fix` fails: governsID already exists as an attributeId or governsId
On 03.07.19 18:04, Rowland penny via samba wrote: >>>> How do I get rid of these bogus Schema entries, and how do I fix the >>>> user account? >>> I do not think you can remove anything from the schema, but I believe >>> you can deactivate schema objects, try reading this: >>> >>>
2019 Jan 09
1
AD DC in a container: NTP
On Wed, 9 Jan 2019 at 10:51, Rowland Penny via samba <samba at lists.samba.org> wrote: > On Wed, 9 Jan 2019 10:24:40 +0100 > "L.P.H. van Belle via samba" <samba at lists.samba.org> wrote: > > > What Marco and Robert already did say. > > > > This is what i mean ( and Robert ). Marco's option to disable though > > kernel is also an option.
2019 Jul 03
2
`samba-tool dbcheck --cross-ncs --fix` fails: governsID already exists as an attributeId or governsId
On 03.07.19 17:19, Rowland penny via samba wrote: >> All these object classes were tests we did? years ago, and which have >> been "deleted" (I don't even remember by what mechanism) for almost as >> long. No object should still be using any of these, and on graz-dc-sem >> that's true. > I would love to know how you deleted something from the schema, it
2019 Jul 02
5
Container setup?
Hello, I am trying to figure out, whether there are any best practices how to run a Samba AD DC in a container. First of all: why a container? Because obviously containers require less resources and are easier to update than multiple linux systems ? and I want to spend some of the savings into redundancy (multiple DCs, also distributed to serve different locations). Googling around I found
2019 May 22
2
Various AD issues; summary
On 22.05.19 15:31, L.P.H. van Belle wrote: > Hai, > > Well, good that your more relax and releaved in pressure.. > Apoligies accepted. ;-), i know the fealing but do understand, we are trying to help out.. > > As you know, it very frustration to ask the same things again, and you showing them again > But now as you showed with all the configs. It is needed.. (sorry)
2019 May 21
11
Debugging Samba is a total PITA and this needs to improve
Once again, something with Samba thirty bazillion components broke. Once again, my choices for logging are "nothing" or "15 MB/s spread of ten different files, because 'client authentication failed' totally needs to be lower priority than malloc debug info". Once again, none of these messages is actually able to convey what broke, where, why. Why is it impossible for
2019 May 21
4
Debugging Samba is a total PITA and this needs to improve
Hai Sven, And still i see/think you should change some things to get a better base setup. And no its not bike shedding.... It is making a standard setup, work from there. [libdefaults] default_realm = AD.TAO.AT dns_lookup_realm = true < if you have multple REALM, else false. (default_realm = AD.TAO.AT) dns_lookup_kdc = true Checking file: /etc/nsswitch.conf passwd: files
2019 May 21
3
Debugging Samba is a total PITA and this needs to improve
On 21.05.19 14:16, Rowland penny via samba wrote:> You need to investigate your DB problems Great, but how? > I see no reason to have different smb.conf files for different Unix > domain members, just don't have 'netbios name' in any smb.conf. There's also share definitions in the files which I omitted, which are the actual meat of the config files. > You will also
2019 Sep 18
2
Windows10+samba share: The remote computer isn’t responding to connections on port 445
Hello everyone I am having an issue with one particular windows 10 PC not being able to map a samba share. When I map the network drive:*\\hostname\share* the window prompt to login pops up. I enter the correct username and password and after a minute I get this error: *The network path was not found. 0x80070035*. Looking at the windows 10 logs, I can see this message: *file and print