similar to: bind DLZ deny/allow list

Am 16.01.23 um 20:35 schrieb Ingo Asche via samba: > Hi Stefan, > > I have exact that running: Samba 4.17.4 and bind 9.18 from the > bullseye-backports. > > I my case "samba_dnsupdate --verbose --all-names" runs without any errors. > On the first DC it's running like I expacted, but on the second one I'm having the provlem. > As like 9.16 I use the

Am 18.12.24 um 19:42 schrieb Ralph Boehme: > On 12/18/24 7:16 PM, Stefan Kania via samba wrote: >> I would say that's fine :-) > > hm... can you > > kania$ cd /glusterfs/admin-share/daten1/ > > ? Yes :-) skania at cluster01:~$ cd /glusterfs/admin-share/daten1/ skania at cluster01:/glusterfs/admin-share/daten1$ ls -l insgesamt 1 -rwxrwx---+ 1 skania domain users

Am 04.01.25 um 18:59 schrieb Stefan Kania via samba: > Hi > > I try to user the offline domain join. As the manpage of net told me in > an example I tried it with: > > root at cluster01:~#? net offlinejoin provision -U administrator > domain=example.net machine_name=WINCLIENT11a dcname=dc01 > savefile=winclient11a.txt > > But all I got was: > >

Hi Ralph, Am 18.12.24 um 18:59 schrieb Ralph Boehme via samba: > Hi Stefan > > On 12/18/24 5:40 PM, Stefan Kania via samba wrote: >> skania at cluster01:~$ ls -ld /glusterfs/admin-share/daten1/.snaps >> drwxr-xr-x 2 root root 4096? 1. Jan 1970 /glusterfs/admin-share/ >> daten1/.snaps > > what are the permissions of *each* path component > > # ls -ld /

Hi Martin, Am 26.01.23 um 22:57 schrieb Martin Schwenke: > winbindd and smbd are only started during the CTDB startup event, so > you have to enable the event scripts before you start CTDB. > That's what I did and that's where the problem starts ;-) As soon as I enable one of the two events the cluster chrashes :-( Stefan > That hasn't changed... ? > > peace

sorry for the delay https://bugzilla.samba.org/show_bug.cgi?id=14982 Am 24.07.23 um 16:44 schrieb Marco Gaiarin via samba: > Mandi! Stefan Kania via samba > In chel di` si favelave... > >> I already wrote a bug-report. (For me it's a bug) > > Can you provide the bugnumber/URL? Thanks. > -------------- next part -------------- A non-text attachment was

Do you know wich of the RSAT I need to use to manage auth-policies and silos. With samba-tool I can't assign users and hosts to the policies. I can only create, delete, list and view policies and silos Am 19.10.23 um 09:03 schrieb Daniel M?ller via samba: > Hello, > > You cannot use Active Directory Administrativ Center because samba has no ADWS implented. > There where

Hi I try to user the offline domain join. As the manpage of net told me in an example I tried it with: root at cluster01:~# net offlinejoin provision -U administrator domain=example.net machine_name=WINCLIENT11a dcname=dc01 savefile=winclient11a.txt But all I got was: ads_print_error: AD LDAP ERROR: 19 (Constraint violation): 0000202F: samldb: spn[HOST/cluster.example.net] would cause a

Am 18.10.23 um 23:27 schrieb Matti Kaupenjohann via samba: > Yes I've red this section and the docu is saying no FL above 2008. Might > be caused by incompleted docu? So far I understand if we don't use >4.19 > we will not be able to use FL 2016 which is necessary since our DC WIN22 > is configured as FL2016? Yes you MUST usee 4.19 ;-) > > On 18.10.23 19:10,

Hi Stefan, Am 20.06.23 um 13:33 schrieb Sabolowitsch, Stefan via samba: > Hi there, > i hope someone can help me with this question. > > we successfully got Samba 4.11 up and running with Winbind on our SLES 15.2. First thing 4.11 is far far out of service you should not use it in a production environment. Use 4.17 or better 4.18 > the Linux server is a member of the Windows

Hi, I can search for deleted Objects in Samba-AD with: ldbsearch -H ldap://dc01 -U administrator --show-deleted cn=*\\0ADEL:* sAMAccountName does anyone know a solution to search for deleted Objects with ldapsearch? Not only to search for but also find all deleted objects ;-) Stefan -------------- next part -------------- A non-text attachment was scrubbed... Name: OpenPGP_signature.asc

hi to all Can someone explain to me how to set up "Group Managed service account" ? What's in the release notes doesn't tell me much, and NO, I don't want to have to read the source code. A good description of how to set up and use a new function would be helpful. Stefan -------------- next part -------------- A non-text attachment was scrubbed... Name:

Hi Stefan, I have exact that running: Samba 4.17.4 and bind 9.18 from the bullseye-backports. I my case "samba_dnsupdate --verbose --all-names" runs without any errors. As like 9.16 I use the "dlz_bind9_18.so" entry in named.conf. If you need further information to compare just ask. Regards Ingo https://github.com/WAdama Rowland Penny via samba schrieb am 16.01.2023 um

Hi Stefan On 12/18/24 5:40 PM, Stefan Kania via samba wrote: > skania at cluster01:~$ ls -ld /glusterfs/admin-share/daten1/.snaps > drwxr-xr-x 2 root root 4096? 1. Jan 1970 /glusterfs/admin-share/ > daten1/.snaps what are the permissions of *each* path component # ls -ld / # ls -ld /glusterfs # ls -ld /glusterfs/admin-share/ # ls -ld /glusterfs/admin-share/daten1/ -- SerNet Samba

As I said, both DC are installed via Vagrent, starting the setup with 9.18 I have the problem, starting with 9.16 everything is running. The configuration is always the same. Am 16.01.23 um 21:36 schrieb Rowland Penny via samba: > > > On 16/01/2023 19:55, Ingo Asche via samba wrote: >> Ah, ok, just saw it. Sorry, I missed that. >> >> I can only add then, all three

Hi to all, I''m just writing the next version of the german Samba-book and I'm just testing smbclient so when I'm do: --------------------- root at dc01:~# smbclient -L cluster Password for [EXAMPLE\root]: Anonymous login successful Sharename Type Comment --------- ---- ------- IPC$ IPC IPC Service (Samba

Hello, I'm lost :-( I got a share: ------------------------ [global] workgroup = example netbios name = cluster security = ads realm = EXAMPLE.NET idmap config *:range = 10000-19999 idmap config example:backend = rid idmap config example:range = 1000000-1999999 map acl inherit = yes winbind use default domain =

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello everybody, I have written a little Howto, to set up to ADDCa together with bind9 as DNS-Backend. You will find all commands in the right order. I have tested it with debian jessie and Ubuntu-Server. It's in english ;-) https://www.kania-online.de/wp-content/uploads/2016/10/samba-bind-dlz.tx t Stefan -----BEGIN PGP SIGNATURE-----

It doesn't work for me. I put allow-transfer {"none";}; in named.conf.options. Reload the bind9 service.  but I can not avoid the zone transfer to the Active Directory Integrated Zone ! I use Samba 4.7.4 (From Source) and BIND 9.10.3-P4-Debian (Debian 9) This configuration works well on standard zones but not on DLZ (Samba) Zones. El 13/02/18 a las 08:52, L.P.H. van Belle via

Hi: How can I either deny zone transfer or restrict it to some DNS servers when using DLZ ?