[Samba] Samba 3.0.10 and ADS

Phil Foxton pfoxton at ebuyer.com
Wed Mar 16 08:03:42 GMT 2005 

I am having a bit of a problem and hope someone on here can help (if it
has been covered already please feel free to point me in the right
direction - I have searched and searched but found nothing!)

Setup:
Linux box : Debian Sarge using Samba 3.0.10-Debian
windows Box : Windows 2003 SBS acting as ADS master.

I ran through the setup instruction and can connect from the linux box
to the windows box (using smbclient -k)

Problems

Using wbinfo -u I get a list of the windows users (but no domain
prepended)
Using wbinfo -g I get a list of the windows groups (again no domain
prepended)
If I try to connect to a samba share (or browse the linux box) from the
windows box I get the authentication dialogue and it won't let me go any
further.
I am unable to assign windows users and groups permissions to files on
the linux box.

Configs:

/etc/krb5.conf
[logging]
 default = FILE:/var/log/krb5libs.log
 kdc = FILE:/var/log/krb5kdc.log
 admin_server = FILE:/var/log/kadmind.log

[libdefaults]
 default_realm = EBUYER.SHE 
 dns_lookup_realm = true 
 dns_lookup_kdc = true 

[realms]
 EBUYER.SHE = {
  kdc = srv2003.ebuyer.she:88
  admin_server = srv2003.ebuyer.she:749
  default_domain = ebuyer.she
 }

[domain_realm]
 .ebuyer.she = EBUYER.SHE
 ebuyer.she = EBUYER.SHE

[kdc]
 profile = /var/kerberos/krb5kdc/kdc.conf

[appdefaults]
 pam = {
   debug = false
   ticket_lifetime = 36000
   renew_lifetime = 36000
   forwardable = true
   krb4_convert = false
 }


/etc/samba/smb.conf

security = ADS
realm = ebuyer.she
workgroup = EBUYER
server string = Samba Server
encrypt passwords = yes
winbind separator = +
winbind use default domain = yes
password server = 172.16.0.10
printcap name = /etc/printcap
load printers = yes
printing = cups
cups options = raw
log file = /var/log/samba/%m.log
max log size = 5000
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
remote browse sync = 172.16.0.10
remote announce = 172.16.0.10
local master = no
os level = 33
domain master = no
preferred master = no
wins support = no
wins server = 172.16.0.10
dns proxy = yes
preserve case = no
short preserve case = no
default case = lower
case sensitive = no
winbind uid = 10000 - 20000
winbind gid = 10000 - 20000
winbind enum groups = yes
winbind enum users = yes
map to guest = bad user
[homes]
   comment = Home Directories
   browseable = no
   writable = yes
[netlogon]
   comment = Network Logon Service
   path = /home/netlogon
   guest ok = yes
   writable = no
   share modes = no
[Profiles]
    path = /home/profiles
    browseable = no
    guest ok = yes
[printers]
   comment = All Printers
   path = /var/spool/samba
   browseable = no
   public = yes
   guest ok = no
   writable = no
   printable = yes
[public]
   comment = Public Stuff
   path = /home/samba
   public = yes
   read only = yes

Regards

Phil


-- 
Phil Foxton
Systems Administrator
Ebuyer (UK) Ltd
201 Woodbourn Road, Sheffield, S9 3LR
Today I am a Sad Fish :-(

More information about the samba mailing list