[Samba] No machine account possible?
rruegner
robowarp at gmx.de
Mon Nov 3 19:41:03 GMT 2003
Hi, normal sollte es wenn es einmal geklappt hat auch weiter funktionieren
ansonsten hatte ich in div betas von samba 3 mit winxp
manchmal probleme mit oplocks
hier ist eine test conf die funktioniert hat , aber selbstverstaendlich noch
tuning brauch schau dir das mal durch
# Samba config file created using SWAT
# from 192.168.1.1 (192.168.1.1)
# Date: 2003/06/21 14:41:58
# Global parameters
[global]
workgroup = MIDEARTH
server string = Samba3
interfaces = eth0, lo
bind interfaces only = Yes
server schannel = Yes
passdb backend = tdbsam, guest
pam password change = Yes
passwd chat = *New*Password* %n\n *Re-enter*new*password* %n\n
*Password*changed*
username map = /etc/samba/smbusers
password level = 8
username level = 8
unix password sync = Yes
log level = 1
syslog = 0
log file = /var/log/samba/%m
smb ports = 139 445
name resolve order = wins bcast hosts
time server = Yes
socket options = TCP_NODELAY SO_KEEPALIVE SO_SNDBUF=8192 SO_RCVBUF=8192
printcap name = CUPS
disable spoolss = Yes
add user script = /usr/sbin/useradd -m %u
delete user script = /usr/sbin/userdel -r %u
add group script = /usr/sbin/groupadd %g
delete group script = /usr/sbin/groupadd %g
add user to group script = /usr/sbin/usermod -G %g %u
add machine script = /usr/sbin/useradd -s /bin/false -d /dev/null %u
shutdown script = /var/lib/samba/scripts/shutdown.sh
abort shutdown script = /sbin/shutdown -c
logon script = scripts\logon.bat
logon path = \\%L\Profiles\%U
logon drive = H:
logon home = \\%L\%U
domain logons = Yes
os level = 35
preferred master = Yes
domain master = Yes
wins support = Yes
ldap ssl = no
utmp = Yes
panic action = export DISPLAY=localhost:0; /usr/bin/X11/xterm -e gdb
/proc/%d/exe %d || /bin/sleep
idmap uid = 15000-20000
idmap gid = 15000-20000
winbind separator = +
comment = Samba 3.0.0
hosts allow = 127., 192.168.1.
use sendfile = Yes
printing = cups
veto files = /*.eml/*.nws/riched20.dll/*.{*}/
veto oplock files = /*.doc/*.xls/*.mdb/
include = /etc/samba/machine.
[homes]
comment = Home Directories
valid users = %S
read only = No
browseable = No
[print$]
comment = Printer Drivers Share
path = /var/lib/samba/drivers
write list = jht, root
printer admin = jht, root
create mask = 0664
directory mask = 0775
[netlogon]
comment = Network Logon Service
path = /var/lib/samba/netlogon
admin users = root, jht
guest ok = Yes
nt acl support = No
browseable = No
blocking locks = No
csc policy = disable
locking = No
oplocks = No
level2 oplocks = No
posix locking = No
strict locking = No
share modes = No
[Profiles]
comment = Roaming Profile Share
path = /var/lib/samba/profiles
read only = No
profile acls = Yes
[printers]
comment = All Printers
path = /var/spool/samba
printer admin = root, jht
create mask = 0600
guest ok = Yes
printable = Yes
use client driver = Yes
default devmode = Yes
browseable = No
[media]
comment = Public Stuff
path = /export2
read list = @users
write list = jht
read only = No
blocking locks = No
csc policy = disable
locking = No
oplocks = No
level2 oplocks = No
posix locking = No
strict locking = No
share modes = No
[data]
comment = Data Stuff
path = /export/data
write list = @ntadmin
read only = No
blocking locks = No
csc policy = disable
locking = No
oplocks = No
level2 oplocks = No
posix locking = No
strict locking = No
share modes = No
[cdr]
comment = CDR Production Files
path = /export/CDR
force user = root
read only = No
case sensitive = Yes
----- Original Message -----
From: "Christian H. Kuhn" <official at qno.de>
To: <samba at lists.samba.org>
Sent: Monday, November 03, 2003 8:05 PM
Subject: [Samba] No machine account possible?
> Hi all,
>
> Yesterday, i changed from samba 2.2.3 to samba 3.0, and also i changed
> the machines which samba is running on. Samba worked and should work
> as a PDC. It runs on a Debian sid, the test client is a notebook with
> XP Professional.
>
> Yesterday, immediately after migrating, everything worked fine. Even
> after several reboots, i could logon as a domain user, and i could use
> the shares. Today, i can't.
>
> To find the error, i followed the diagnosis on
> http://samba.sernet.de/diagnosis.html#toc9. For it is in german, i
> will shortly name the successful tests: testparm, ping (both
> directions), smbclient -L, nmblookup __SAMBA__, nmblookup -d 2 '*',
> nmblookup -B client '*', local smbclient '\\server\share'. What not
> worked is a net view \\pdchome from the client.
>
> If i try to change name and domain on the client, i use \\pdchome\root
> as user, and i get "wrong parameter" and no entry in the server
> logs. If i try a smbpasswd -a -m unterwegs on the server, i get
> home:/etc/samba# smbpasswd -a -m unterwegs
> Failed initialise SAM_ACCOUNT for user unterwegs$.
> Failed to modify password entry for user unterwegs$.
>
> This is my smb.conf:
> [global]
> workgroup = QNOWOHNUNG
> netbios name = PDCHOME
> server string = %h (Samba %v)
> obey pam restrictions = Yes
> password server =
> passwd program = /usr/bin/passwd %u
> passwd chat = *Enter\snew\sUNIX\spassword:* %n\n
*Retype\snew\sUNIX\spassword:* %n\n .
> unix password sync = Yes
> log level = 4
> syslog = 0
> log file = /var/log/samba/log.%m
> max log size = 1000
> time server = Yes
> socket options = IPTOS_LOWDELAY TCP_NODELAY SO_SNDBUF=4096 SO_RCVBUF=4096
> printcap name =
> domain logons = Yes
> os level = 34
> preferred master = Yes
> domain master = Yes
> wins support = Yes
> ldap ssl = no
> panic action = /usr/share/samba/panic-action %d
> printing = cups
>
> [homes]
> comment = Heimatverzeichnis von %u
> read only = No
> browseable = No
>
> [public]
> comment = Oeffentliches Verzeichnis
> path = /usr/export/public
> read only = No
> guest ok = Yes
>
> [netlogon]
> comment = Anmeldedienst für die Domäne
> path = /usr/export/netlogon
> browseable = No
>
> Any hints?
>
> TIA
> Chris
> --
> | .-. | Diese Nachricht wurde erstellt mit | .-. |
> | /v\ | Hilfe eines freilaufenden Pinguins | /v\ |
> | /( )\ | aus artgerechter Freiland Haltung ! | /( )\ |
> | ^^ ^^ | <= Tux the penguin => | ^^ ^^ |
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: http://lists.samba.org/mailman/listinfo/samba
>
More information about the samba
mailing list