No subject
Tue Dec 2 02:23:37 GMT 2003
server on each subnet and getting them to periodically replicate through
WINS manager (this is on an NT network.)
If you want to do this using Samba's WINS support, I'm unsure whether this
method will work. Probably your best bet is to either:
A. have your wins server on one of the subnets (preferably the one with
the most machines, to save on inter-site traffic,) and get the DHCP server
on the other subnet to serve out this wins server's IP address to its
clients. This will generate quite a large amount of traffic. One way to
reduce this to an extent is to get the said DHCP server to tell each of the
Windows nodes that they're netbios-node-type 0x8 (I think...), which is
'hybrid'; that is, that the windows clients will first attempt to use
broadcast queries to resolve names, and then resort to the wins server if
this doesn't work.
B. probably a slightly better way to do this is to have one side of the
network (again, preferably the one with more hosts than the other,) run the
WINS server, and then play with the 'wins proxy' option in SMB.conf. I'm
not sure how well this would work, or whether the wins proxy code caches
wins responses or not.
Cheers,
Chris
> -----Original Message-----
> From: NITIN PANDE [mailto:npande at bajajauto.co.in]
> Sent: Monday, June 25, 2001 3:46 PM
> To: samba-ntdom at lists.samba.org; grupis at via-rs.ne
> Subject: Re: remote samba servers
>
>
> Put a Samba box on one of the subnet. Make it a wins server
> for both the subnets. Then you'll have to have relay agent on
> the other subnet so Windows clients can find the other subnet
> guys. The relay agent can again be a Samba box (just for
> fun). IMHO, that's the best you can do... Ciao, Nitin :)
>
> > Date: Sat, 23 Jun 2001 22:58:31 -0300 (BRT)
> > From: Rodrigo Gruppelli <grupis at via-rs.net>
> > To: <samba-ntdom at lists.samba.org>
> > Subject: remote samba servers
> >
> > Greetings..
> >
> > This is my first e-mail in this mailing list.
> > My graduation project is about VPN and I'm trying to setup
> a FreeS/WAN
> > vpn to connect 2 windows networks. I already made frees/wan
> work.. I
> > would like to know if is it possible to have 2 distinct
> windows LAN's,
> > each one with a Samba server and then interconnect this 2
> samba server
> > over the internet to connect these 2 windows LAN's and act
> like if it
> > was just one.
> >
> > Can samba do that?
> >
> > Thank you all.
>
CAUTION - This message may contain privileged and confidential information
intended only for the use of the addressee named above. If you are not the
intended recipient of this message you are hereby notified that any use,
dissemination, distribution or reproduction of this message is prohibited.
If you have received this message in error, please notify the sender
immediately.
Return-Path: <maillist at devilsplayground.net>
Delivered-To: samba-ntdom at lists.samba.org
Received: from devilsplayground.net (h24-64-40-253.sbm.shawcable.net
[24.64.40.253]) by lists.samba.org (Postfix) with ESMTP id AC85B4557
for <samba-ntdom at lists.samba.org>; Sun, 24 Jun 2001 23:57:31 -0700
(PDT)
Received: from cs155341z [192.168.0.1] by devilsplayground.net
[24.64.40.253] with SMTP (MDaemon.PRO.v4.0.3.R) for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 01:00:54 -0600
Message-ID: <032901c0fd44$92b47f80$fd284018 at devilsplayground.net>
Reply-To: "Dave Warren" <maillist at devilsplayground.net>
From: "Dave Warren" <maillist at devilsplayground.net>
To: "Chris Odgers" <Chris.Odgers at sausage.com>, "'NITIN PANDE'"
<npande at bajajauto.co.in>
Cc: <samba-ntdom at lists.samba.org>
References: <9A0F63A07282D4119C4100D0B72017AA7E2CA8 at fatboy.sausage.com.a
u>
Subject: Re: remote samba servers
Date: Mon, 25 Jun 2001 01:00:07 -0600
MIME-Version: 1.0
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 5.50.4133.2400
X-MDRemoteIP: 192.168.0.1
X-Return-Path: maillist at devilsplayground.net
X-MDaemon-Deliver-To: samba-ntdom at lists.samba.org
X-Sig: YES
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
> From what I can recall, the 'official' way to do this is by having a WINS
> server on each subnet and getting them to periodically replicate through
> WINS manager (this is on an NT network.)
Install one WINS server. Doesn't matter where, really, although wherever it
will get the most hits is a good idea.
Next, set all the machines to use it in their TCP/IP config, and everything
will work properly. If you use DHCP acrosss the board, just set it from
there and have everybody renew (Or reboot, depending on the IQ of your
users)
WINS replication is pointless, unless you need redundancy, or have machines
seperated on an extremely high latency WAN, or you just want to reduce WAN
traffic. WINS requests are extremely small (Think DNS), you won't see much
in terms of bandwidth, but latency is an issue.
> A. have your wins server on one of the subnets (preferably the one with
> the most machines, to save on inter-site traffic,) and get the DHCP server
> on the other subnet to serve out this wins server's IP address to its
> clients. This will generate quite a large amount of traffic. One way to
> reduce this to an extent is to get the said DHCP server to tell each of
the
> Windows nodes that they're netbios-node-type 0x8 (I think...), which is
> 'hybrid'; that is, that the windows clients will first attempt to use
> broadcast queries to resolve names, and then resort to the wins server if
> this doesn't work.
WINS will generate almost no traffic in a real world environment.
Significantly less then broadcasts, that's been my own experiance, anyway.
IIRC, all the books I've read (My own real world experiance agrees, btw)
suggest that you should use WINS first, because it's the same traffic as a
broadcast, but it doesn't need every machine to "think" about the request,
just the WINS server. If your network is switched, then WINS will seroiusly
inprove performance (If you care about the 200 or so byte requests going
out)
> B. probably a slightly better way to do this is to have one side of the
> network (again, preferably the one with more hosts than the other,) run
the
> WINS server, and then play with the 'wins proxy' option in SMB.conf. I'm
> not sure how well this would work, or whether the wins proxy code caches
> wins responses or not.
This will likely generate even more traffic then the above.
========================================================
Dave Warren,
Email: dave.warren at devilsplayground.net
Priority: dave.pager at devilsplayground.net
========================================================
Return-Path: <npande at bajajauto.co.in>
Delivered-To: samba-ntdom at lists.samba.org
Received: from balwall.bajajauto.co.in (unknown [203.197.92.195]) by
lists.samba.org (Postfix) with SMTP id D6EFC4AD1 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 01:05:31 -0700 (PDT)
Received: from balwall.bajajauto.co.in [203.197.92.195] (HELO localhost)
by balwall.bajajauto.co.in (AltaVista Mail V2.0q/2.0q BL25q listener)
id 0000_0054_3b37_9efe_8f7d; Mon, 25 Jun 2001 13:28:46 -0700
Received: from somewhere by smtpxd
Message-ID: <3B36E228.8915A833 at bajajauto.co.in>
Date: Mon, 25 Jun 2001 12:33:04 +0530
From: "NITIN PANDE" <npande at bajajauto.co.in>
Organization: Bajaj Auto Ltd.
X-Mailer: Mozilla 4.5 [en] (WinNT; I)
X-Accept-Language: en
MIME-Version: 1.0
To: Chris Odgers <Chris.Odgers at sausage.com>, samba-ntdom at lists.samba.org
Subject: Re: remote samba servers
References: <9A0F63A07282D4119C4100D0B72017AA7E2CA8 at fatboy.sausage.com.a
u>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
I like the plan B better. Thanx Chris
-Nitin
And it came to pass that Chris Odgers wrote:
> From what I can recall, the 'official' way to do this is by having a WINS
> server on each subnet and getting them to periodically replicate through
> WINS manager (this is on an NT network.)
>
> If you want to do this using Samba's WINS support, I'm unsure whether this
> method will work. Probably your best bet is to either:
>
> A. have your wins server on one of the subnets (preferably the one with
> the most machines, to save on inter-site traffic,) and get the DHCP server
> on the other subnet to serve out this wins server's IP address to its
> clients. This will generate quite a large amount of traffic. One way to
> reduce this to an extent is to get the said DHCP server to tell each of the
> Windows nodes that they're netbios-node-type 0x8 (I think...), which is
> 'hybrid'; that is, that the windows clients will first attempt to use
> broadcast queries to resolve names, and then resort to the wins server if
> this doesn't work.
>
> B. probably a slightly better way to do this is to have one side of the
> network (again, preferably the one with more hosts than the other,) run the
> WINS server, and then play with the 'wins proxy' option in SMB.conf. I'm
> not sure how well this would work, or whether the wins proxy code caches
> wins responses or not.
>
> Cheers,
>
> Chris
>
> > -----Original Message-----
> > From: NITIN PANDE [mailto:npande at bajajauto.co.in]
> > Sent: Monday, June 25, 2001 3:46 PM
> > To: samba-ntdom at lists.samba.org; grupis at via-rs.ne
> > Subject: Re: remote samba servers
> >
> >
> > Put a Samba box on one of the subnet. Make it a wins server
> > for both the subnets. Then you'll have to have relay agent on
> > the other subnet so Windows clients can find the other subnet
> > guys. The relay agent can again be a Samba box (just for
> > fun). IMHO, that's the best you can do... Ciao, Nitin :)
> >
> > > Date: Sat, 23 Jun 2001 22:58:31 -0300 (BRT)
> > > From: Rodrigo Gruppelli <grupis at via-rs.net>
> > > To: <samba-ntdom at lists.samba.org>
> > > Subject: remote samba servers
> > >
> > > Greetings..
> > >
> > > This is my first e-mail in this mailing list.
> > > My graduation project is about VPN and I'm trying to setup
> > a FreeS/WAN
> > > vpn to connect 2 windows networks. I already made frees/wan
> > work.. I
> > > would like to know if is it possible to have 2 distinct
> > windows LAN's,
> > > each one with a Samba server and then interconnect this 2
> > samba server
> > > over the internet to connect these 2 windows LAN's and act
> > like if it
> > > was just one.
> > >
> > > Can samba do that?
> > >
> > > Thank you all.
> >
>
> CAUTION - This message may contain privileged and confidential information
> intended only for the use of the addressee named above. If you are not the
> intended recipient of this message you are hereby notified that any use,
> dissemination, distribution or reproduction of this message is prohibited.
> If you have received this message in error, please notify the sender
> immediately.
Return-Path: <idra at samba.org>
Delivered-To: samba-ntdom at lists.samba.org
Received: by lists.samba.org (Postfix, from userid 1120) id 9687C4433;
Mon, 25 Jun 2001 01:06:34 -0700 (PDT)
Date: Mon, 25 Jun 2001 01:06:34 -0700
To: "Marshall, Joshua" <marshallj at switch.aust.com>
Cc: "Samba-Ntdom (E-mail)" <samba-ntdom at lists.samba.org>
Subject: Re: LDAP with 2.2.0
Message-ID: <20010625010634.A8839 at va.samba.org>
References: <3B36AE95.3362AFE7 at switch.aust.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <3B36AE95.3362AFE7 at switch.aust.com>; from
marshallj at switch.aust.com on Mon, Jun 25, 2001 at 01:23:01PM +1000
From: idra at samba.org (Simo Sorce)
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
LDAP is not supported in 2.2.x just now, support for LDAP is under
rewrite and maybe reintroduced in a later version of 2.2 series.
On Mon, Jun 25, 2001 at 01:23:01PM +1000, Marshall, Joshua wrote:
> I'm wondering how much support for LDAP samba 2.2.0 has? I'm wanting to
> store the smbpasswd information in an LDAP server so I can transfer the
> information easily.
>
> I have seen some documentation on LDAP in samba, there are old howtos
> but I haven't seen anything on the release. Can anyone inform me?
>
> Regards,
> Josh Marshall.
--
Simo Sorce idra at samba.org
-------------------------------
Samba Team http://www.samba.org
Return-Path: <karypid at inf.uth.gr>
Delivered-To: samba-ntdom at lists.samba.org
Received: from friday.inf.uth.gr (friday.inf.uth.gr [194.177.204.111])
by lists.samba.org (Postfix) with ESMTP id C9FED4BB1 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 01:46:07 -0700 (PDT)
Received: from localhost (localhost [[UNIX: localhost]]) by
friday.inf.uth.gr (8.11.2/8.11.2/SuSE Linux 8.11.1-0.5) id
f5P7iZp24161; Mon, 25 Jun 2001 10:44:35 +0300
Content-Type: text/plain; charset="iso-8859-7"
From: Alexandros Karypidis <karypid at inf.uth.gr>
Organization: University of Thessaly
To: "Samba-Ntdom (E-mail)" <samba-ntdom at lists.samba.org>
Subject: Re: LDAP with 2.2.0 - Same Unix/Win Passwords?
Date: Mon, 25 Jun 2001 10:44:34 +0300
X-Mailer: KMail [version 1.2]
References: <3B36AE95.3362AFE7 at switch.aust.com>
In-Reply-To: <3B36AE95.3362AFE7 at switch.aust.com>
Cc: "Marshall, Joshua" <marshallj at switch.aust.com>
MIME-Version: 1.0
Message-Id: <01062510443400.24152 at friday>
Content-Transfer-Encoding: 7bit
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
On Monday 25 June 2001 06:23, you wrote:
Hello everybody,
I was just following this thread and would like to ask: is this another way
to have unified unix/nt passwords? I mean, if you are looking into putting
smbpasswd information on an LDAP server, I suppose you can direct your
windows NT/2k/ME/samba/... clients to retrieve passwords from there. If
there is also a way to direct you unix boxes to an LDAP server, then this
should be possible. Can anyone comment on this?
> I'm wondering how much support for LDAP samba 2.2.0 has? I'm wanting to
> store the smbpasswd information in an LDAP server so I can transfer the
> information easily.
>
> I have seen some documentation on LDAP in samba, there are old howtos
> but I haven't seen anything on the release. Can anyone inform me?
>
> Regards,
> Josh Marshall.
Return-Path: <roman.orth at educators.de>
Delivered-To: samba-ntdom at lists.samba.org
Received: from moutvdom01.kundenserver.de (moutvdom01.kundenserver.de
[195.20.224.200]) by lists.samba.org (Postfix) with ESMTP id AEDCF47D3
for <samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 02:11:21 -0700
(PDT)
Received: from [195.20.224.208] (helo=mrvdom01.schlund.de) by
moutvdom01.kundenserver.de with esmtp (Exim 2.12 #2) id
15ESSv-0002LH-00 for samba-ntdom at lists.samba.org; Mon, 25 Jun 2001
11:15:29 +0200
Received: from pd9e38cb8.dip.t-dialin.net ([217.227.140.184] helo=uziel)
by mrvdom01.schlund.de with smtp (Exim 2.12 #2) id 15ESQ6-000614-00
for samba-ntdom at lists.samba.org; Mon, 25 Jun 2001 11:12:34 +0200
From: "Roman Orth" <roman.orth at educators.de>
To: <samba-ntdom at lists.samba.org>
Subject: RE: Microsoft Exchange and Samba 2.2.0 as a PDC
Date: Mon, 25 Jun 2001 11:05:31 +0200
Message-ID: <000701c0fd56$ead77f20$960aa8c0 at educators.de>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0)
In-Reply-To: <3.0.5.32.20010622160350.00b147b0 at web.sight-n-sound.com>
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
Hi,
i think the most painless solution is to use Win2000 Server a PDC only and
to use your Samba box as file- and printserver. If Win2k is only to
authenticate users, it is fairly stable. If you are forced to install a
windowsbased server anyway, this could be the solution. In order to work
properly, Exchange 2000 needs active directory, and I doubt that it work
with ldap together, but I haven't the time to prove it yet.
I hope this helped.
Regards Roman Orth
------
Original message follows:
> Hi,
>
> I am running into a problem that a few of you have ran into.
>
> I am running samba 2.2.0 as a PDC and am being made(against
> my will) to
> configure an MS Exchange Server
> to replace our perfectly functional Postfix server.
>
> I am getting the good old "The Computer must belong to an NT
> Domain before
> MS Exchange can be installed"
>
> I know a few of you have ran into this one already. I
> haven't seen any
> specific solutions except mention of TNG.
>
> Assuming that my company will not use anything but MS
> Exchange for email,
> are there any workarounds for this?
>
> Is TNG the only way to go here? Or can I make use of what I
> have now? If
> I need to go to TNG, which version?
>
>
>
> Thanks,
>
>
>
> Rich
>
Return-Path: <icoupeau at unav.es>
Delivered-To: samba-ntdom at lists.samba.org
Received: from legolas.cti.unav.es (legolas.cti.unav.es [159.237.12.23])
by lists.samba.org (Postfix) with ESMTP id 285834CBC for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 02:32:40 -0700 (PDT)
Received: from unav.es (icb.cti.unav.es [159.237.12.187]) by
legolas.cti.unav.es (8.10.0/8.10.0) with ESMTP id f5P9aKp06316; Mon,
25 Jun 2001 11:36:20 +0200
Message-ID: <3B370591.C5526CB2 at unav.es>
Date: Mon, 25 Jun 2001 11:34:09 +0200
From: Ignacio Coupeau <icoupeau at unav.es>
X-Mailer: Mozilla 4.76 [en] (WinNT; U)
X-Accept-Language: es-ES,en
MIME-Version: 1.0
To: Alexandros Karypidis <karypid at inf.uth.gr>
Cc: "Samba-Ntdom (E-mail)" <samba-ntdom at lists.samba.org>
Subject: Re: LDAP with 2.2.0 - Same Unix/Win Passwords?
References: <3B36AE95.3362AFE7 at switch.aust.com>
<01062510443400.24152 at friday>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
Alexandros Karypidis wrote:
>
> On Monday 25 June 2001 06:23, you wrote:
>
> Hello everybody,
>
> I was just following this thread and would like to ask: is this another way
> to have unified unix/nt passwords? I mean, if you are looking into putting
> smbpasswd information on an LDAP server, I suppose you can direct your
> windows NT/2k/ME/samba/... clients to retrieve passwords from there. If
> there is also a way to direct you unix boxes to an LDAP server, then this
> should be possible. Can anyone comment on this?
>
I hope this may help. I think (my opinion) the only mechanism is the
PDC-LDAP; the winbind/pam/nsswitch are for validating unix
users/accounts against a PDC (NT or Samba server).
For now, you can:
1. use the old samba HEAD
http://www.unav.es/cti/ldap-smb/ldap-smb-HEAD-howto.html
I changed the old schema a for ldap v3 and a patch for the code
(member-->sambaMember attribute). But with the old Samba HEAD, the
interoperability requires security=server.
2. wait until the new ldap stuff will released
http://us4.samba.org/samba/development.html
3. perhaps a mix Samba+TNG, but I don't tested it. The TNG may provide
the LDAP-PDC functions (ldap v3, old schema) and the Samba 2.2.0/1 the
rest... so you can use security=domain in the Samba servers for validate
in a TNG server.
I'm waiting. For now, the #1 runs for our 700 NT4 ws and the 15.000
users, but here we are also waiting for W2K last flavor (XP?), and don't
have any hurry ;-) The only question is the "security=server" and the
2.2.x interop. handicap.
Ignacio
--
____________________________________________________
Ignacio Coupeau, Ph.D. e-mail: icoupeau at unav.es
CTI, Director fax: 948 425619
University of Navarra voice: 948 425600
Pamplona, SPAIN http://www.unav.es/cti/
Return-Path: <npande at bajajauto.co.in>
Delivered-To: samba-ntdom at lists.samba.org
Received: from balwall.bajajauto.co.in (unknown [203.197.92.195]) by
lists.samba.org (Postfix) with SMTP id 244484CEB for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 02:47:37 -0700 (PDT)
Received: from balwall.bajajauto.co.in [203.197.92.195] (HELO localhost)
by balwall.bajajauto.co.in (AltaVista Mail V2.0q/2.0q BL25q listener)
id 0000_0054_3b37_b9ba_ffda; Mon, 25 Jun 2001 15:22:50 -0700
Received: from somewhere by smtpxd
Message-ID: <3B3708F2.F0D3CDC7 at bajajauto.co.in>
Date: Mon, 25 Jun 2001 15:18:34 +0530
From: "NITIN PANDE" <npande at bajajauto.co.in>
Organization: Bajaj Auto Ltd.
X-Mailer: Mozilla 4.5 [en] (WinNT; I)
X-Accept-Language: en
MIME-Version: 1.0
To: Dave Warren <maillist at devilsplayground.net>,
samba-ntdom at lists.samba.org
Cc: Chris Odgers <Chris.Odgers at sausage.com>
Subject: Re: remote samba servers
References: <9A0F63A07282D4119C4100D0B72017AA7E2CA8 at fatboy.sausage.com.a
u> <032901c0fd44$92b47f80$fd284018 at devilsplayground.net>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
Ok... I'm sure u need Wins proxy on the other subnet for cross-talk. Try
without it, and MS Clients will never know that other subnet exists. I know coz
I have three Locations here at work. Only local Wins. All 3 locations can't
see each others Windows Network.
Also, I looked around on how to reduce the traffic. U need one of those Wins
Pull partner. BTW, this will takes matters to MS world.
I'm more interested in what Samba can do. Surely, Samba can't be that "Wins
Pull Partner" thingy (let me know if I'm wrong). So we'll have to settle with
the Samba Wins Proxy idea as suggested by Chris.
Ciao,
Nitin :)
Dave Warren wrote:
> > From what I can recall, the 'official' way to do this is by having a WINS
> > server on each subnet and getting them to periodically replicate through
> > WINS manager (this is on an NT network.)
>
> Install one WINS server. Doesn't matter where, really, although wherever it
> will get the most hits is a good idea.
>
> Next, set all the machines to use it in their TCP/IP config, and everything
> will work properly. If you use DHCP acrosss the board, just set it from
> there and have everybody renew (Or reboot, depending on the IQ of your
> users)
>
> WINS replication is pointless, unless you need redundancy, or have machines
> seperated on an extremely high latency WAN, or you just want to reduce WAN
> traffic. WINS requests are extremely small (Think DNS), you won't see much
> in terms of bandwidth, but latency is an issue.
>
> > A. have your wins server on one of the subnets (preferably the one with
> > the most machines, to save on inter-site traffic,) and get the DHCP server
> > on the other subnet to serve out this wins server's IP address to its
> > clients. This will generate quite a large amount of traffic. One way to
> > reduce this to an extent is to get the said DHCP server to tell each of
> the
> > Windows nodes that they're netbios-node-type 0x8 (I think...), which is
> > 'hybrid'; that is, that the windows clients will first attempt to use
> > broadcast queries to resolve names, and then resort to the wins server if
> > this doesn't work.
>
> WINS will generate almost no traffic in a real world environment.
> Significantly less then broadcasts, that's been my own experiance, anyway.
>
> IIRC, all the books I've read (My own real world experiance agrees, btw)
> suggest that you should use WINS first, because it's the same traffic as a
> broadcast, but it doesn't need every machine to "think" about the request,
> just the WINS server. If your network is switched, then WINS will seroiusly
> inprove performance (If you care about the 200 or so byte requests going
> out)
>
> > B. probably a slightly better way to do this is to have one side of the
> > network (again, preferably the one with more hosts than the other,) run
> the
> > WINS server, and then play with the 'wins proxy' option in SMB.conf. I'm
> > not sure how well this would work, or whether the wins proxy code caches
> > wins responses or not.
>
> This will likely generate even more traffic then the above.
>
> ========================================================
> Dave Warren,
> Email: dave.warren at devilsplayground.net
> Priority: dave.pager at devilsplayground.net
> ========================================================
Return-Path: <barth at cck.uni-kl.de>
Delivered-To: samba-ntdom at lists.samba.org
Received: from mail.uni-kl.de (mail.uni-kl.de [131.246.137.52]) by
lists.samba.org (Postfix) with ESMTP id C91E24B10 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 03:46:20 -0700 (PDT)
Received: from enterprise.cck.uni-kl.de (enterprise.cck.uni-kl.de
[131.246.239.10]) by mail.uni-kl.de (8.11.0/8.11.0) with ESMTP id
f5PAoJ507611; Mon, 25 Jun 2001 12:50:19 +0200 (MET DST)
Received: from fbk.mv.uni-kl.de (fbk.mv.uni-kl.de [131.246.201.62]) by
enterprise.cck.uni-kl.de (8.9.2/8.9.2) with ESMTP id MAA00733; Mon, 25
Jun 2001 12:50:19 +0200 (MET DST)
Received: from fbk42-7 (fbk42-7.mv.uni-kl.de [131.246.201.77]) by
fbk.mv.uni-kl.de (8.9.1/8.9.1) with ESMTP id MAA02112; Mon, 25 Jun
2001 12:50:22 +0200
From: "Christian Barth" <barth at cck.uni-kl.de>
To: Dave Warren <maillist at devilsplayground.net>,
samba-ntdom at lists.samba.org, "NITIN PANDE" <npande at bajajauto.co.in>
Date: Mon, 25 Jun 2001 12:50:14 +0200
MIME-Version: 1.0
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7bit
Subject: Re: remote samba servers
Cc: Chris Odgers <Chris.Odgers at sausage.com>
Message-ID: <3B373386.12017.13928AC at localhost>
Priority: normal
In-reply-to: <3B3708F2.F0D3CDC7 at bajajauto.co.in>
X-mailer: Pegasus Mail for Win32 (v3.12c)
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
We solved the problem with multiple subnets spread around the
university lan with the "remote announce" parameter in smb.conf. And
with the samba server it self being WINS server
Christian
> Ok... I'm sure u need Wins proxy on the other subnet for cross-talk. Try
> without it, and MS Clients will never know that other subnet exists. I know coz
> I have three Locations here at work. Only local Wins. All 3 locations can't
> see each others Windows Network.
> Also, I looked around on how to reduce the traffic. U need one of those Wins
> Pull partner. BTW, this will takes matters to MS world.
> I'm more interested in what Samba can do. Surely, Samba can't be that "Wins
> Pull Partner" thingy (let me know if I'm wrong). So we'll have to settle with
> the Samba Wins Proxy idea as suggested by Chris.
> Ciao,
> Nitin :)
>
> Dave Warren wrote:
>
> > > From what I can recall, the 'official' way to do this is by having a WINS
> > > server on each subnet and getting them to periodically replicate through
> > > WINS manager (this is on an NT network.)
> >
> > Install one WINS server. Doesn't matter where, really, although wherever it
> > will get the most hits is a good idea.
> >
> > Next, set all the machines to use it in their TCP/IP config, and everything
> > will work properly. If you use DHCP acrosss the board, just set it from
> > there and have everybody renew (Or reboot, depending on the IQ of your
> > users)
> >
> > WINS replication is pointless, unless you need redundancy, or have machines
> > seperated on an extremely high latency WAN, or you just want to reduce WAN
> > traffic. WINS requests are extremely small (Think DNS), you won't see much
> > in terms of bandwidth, but latency is an issue.
> >
> > > A. have your wins server on one of the subnets (preferably the one with
> > > the most machines, to save on inter-site traffic,) and get the DHCP server
> > > on the other subnet to serve out this wins server's IP address to its
> > > clients. This will generate quite a large amount of traffic. One way to
> > > reduce this to an extent is to get the said DHCP server to tell each of
> > the
> > > Windows nodes that they're netbios-node-type 0x8 (I think...), which is
> > > 'hybrid'; that is, that the windows clients will first attempt to use
> > > broadcast queries to resolve names, and then resort to the wins server if
> > > this doesn't work.
> >
> > WINS will generate almost no traffic in a real world environment.
> > Significantly less then broadcasts, that's been my own experiance, anyway.
> >
> > IIRC, all the books I've read (My own real world experiance agrees, btw)
> > suggest that you should use WINS first, because it's the same traffic as a
> > broadcast, but it doesn't need every machine to "think" about the request,
> > just the WINS server. If your network is switched, then WINS will seroiusly
> > inprove performance (If you care about the 200 or so byte requests going
> > out)
> >
> > > B. probably a slightly better way to do this is to have one side of the
> > > network (again, preferably the one with more hosts than the other,) run
> > the
> > > WINS server, and then play with the 'wins proxy' option in SMB.conf. I'm
> > > not sure how well this would work, or whether the wins proxy code caches
> > > wins responses or not.
> >
> > This will likely generate even more traffic then the above.
> >
> > ========================================================
> > Dave Warren,
> > Email: dave.warren at devilsplayground.net
> > Priority: dave.pager at devilsplayground.net
> > ========================================================
>
_______________________________________________________________________
In a world without walls and fences, who needs windows and gates? (SUN)
Return-Path: <karypid at inf.uth.gr>
Delivered-To: samba-ntdom at lists.samba.org
Received: from friday.inf.uth.gr (friday.inf.uth.gr [194.177.204.111])
by lists.samba.org (Postfix) with ESMTP id ECDDF4CCD for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 06:10:32 -0700 (PDT)
Received: from localhost (localhost [[UNIX: localhost]]) by
friday.inf.uth.gr (8.11.2/8.11.2/SuSE Linux 8.11.1-0.5) id
f5PC98p02693 for samba-ntdom at lists.samba.org; Mon, 25 Jun 2001
15:09:08 +0300
Content-Type: text/plain; charset="iso-8859-7"
From: Alexandros Karypidis <karypid at inf.uth.gr>
Organization: University of Thessaly
To: "Samba-Ntdom (E-mail)" <samba-ntdom at lists.samba.org>
Subject: World writeable profiles on Samba DCs
Date: Mon, 25 Jun 2001 15:09:08 +0300
X-Mailer: KMail [version 1.2]
MIME-Version: 1.0
Message-Id: <01062515090804.24152 at friday>
Content-Transfer-Encoding: 7bit
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
Hello everyone,
In order for a Win client to create a profile on a Samba domain controller,
it is necessary for the profiles directory to be world writeable. Is there a
way around this?
My profiles are in /export/smb/ntprofiles which is mode 777.
I set /export/smb mode to 711 but a user logged in to linux can still do sth
like "mkdir /export/smb/ntprofiles/mydir".
Return-Path: <steve at maths.ed.ac.uk>
Delivered-To: samba-ntdom at lists.samba.org
Received: from ms-mailserver.maths.ed.ac.uk
(ms-mailserver.maths.ed.ac.uk [129.215.104.183]) by lists.samba.org
(Postfix) with ESMTP id 44FA34232 for <samba-ntdom at lists.samba.org>;
Mon, 25 Jun 2001 06:58:22 -0700 (PDT)
Received: from babbage.mathsyp (babbage [129.215.104.6]) by
ms-mailserver.maths.ed.ac.uk (8.9.3/8.9.3) with ESMTP id PAA11753 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 15:02:28 +0100 (BST)
Received: from localhost (steve at localhost) by babbage.mathsyp
(8.9.3+Sun/8.9.3) with ESMTP id PAA07488 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 15:02:28 +0100 (BST)
X-Authentication-Warning: babbage.mathsyp: steve owned process doing -bs
Date: Mon, 25 Jun 2001 15:02:28 +0100 (BST)
From: Steven Law <steve at maths.ed.ac.uk>
X-Sender: steve at babbage
To: samba-ntdom at lists.samba.org
Subject: UID & Add User Script
Message-ID: <Pine.SOL.4.21.0106251459110.7342-100000 at babbage>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
I'm considering setting samba up so that it will automatically add
machines to the domain. In order to do this, I need to add a script for
entering the host into the local password file. My question is how do
you get it to use a unique uid number which I presume is required in
order that a proper entry in smbpasswd can be created ?
Regards
Steve Law
--
Computing Officer
Department of Mathematics and Statistics, Edinburgh University.
Phone: 0131 650 5037 , Email: steve at maths.ed.ac.uk
Home Page: http://www.maths.ed.ac.uk/~steve
Return-Path: <nobody at mail.unimo.it>
Delivered-To: samba-ntdom at lists.samba.org
Received: from mail.unimo.it (mail.unimo.it [155.185.1.1]) by
lists.samba.org (Postfix) with ESMTP id 434494D43 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 07:08:16 -0700 (PDT)
Received: (from nobody at localhost) by mail.unimo.it (2.1.2/8.9.1/Execmail
2.1) id QAA3281679; Mon, 25 Jun 2001 16:10:19 +0200 (CETDST)
To: samba-ntdom at lists.samba.org
Subject: Trust account deleted
Message-ID: <993478219.3b37464bb6f26 at mail.unimo.it>
Date: Mon, 25 Jun 2001 16:10:19 +0200 (CETDST)
From: malvezzi at mail.unimo.it
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
User-Agent: IMP/PHP IMAP webmail program 2.2.4
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
I deleted by mistake the trust account of a w2k machine, let's say lulliton$,
from /etc/passwd. Not surprisingly the w2k machine is not able any more to join
the samba domain.
I added again the trust account, which now exists both in passwd and in
smbpasswd. The uid of the account match (but it's different from the old one; I
had to deled and re-add the smbpasswd account too).
But it doesn't work.
Every time I try to join it issues the error: "the credential set are
conflicting with an existing set."
Which small little file I forgot to update? For istance, what is for the
MACHINE.SID file in /etc/samba?
Thank you, really: I'm not very good and I don't see how to solve my problem.
Francesco
Return-Path: <robyx at corgi.it>
Delivered-To: samba-ntdom at lists.samba.org
Received: from web-04.stt.it (web-04.stt.it [212.25.165.1]) by
lists.samba.org (Postfix) with ESMTP id 4CD544D61 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 07:12:41 -0700 (PDT)
Received: from portrobyx (a-ve13-50.tin.it [212.216.39.241]) by
web-04.stt.it (8.9.3/8.9.3) with SMTP id QAA14742 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 16:16:47 +0200
Message-ID: <000e01c0fd81$798f3210$63f9010a at portrobyx>
From: "Tardivo Roberto" <robyx at corgi.it>
To: "samba" <samba-ntdom at lists.samba.org>
Subject: Mount a Windows Shared Printer on Samba server
Date: Mon, 25 Jun 2001 16:16:49 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 5.00.2919.6700
X-Converted-To-Plain-Text: from multipart/alternative by demime 0.98b
X-Converted-To-Plain-Text: Alternative section used was text/plain
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
Hy,
I want to mount a printer in my Linux Samba server. The printer connect to a
remote W98 PC.
How can I do it?????????
Sorry for may poor English.
thank by by.
Return-Path: <steve at maths.ed.ac.uk>
Delivered-To: samba-ntdom at lists.samba.org
Received: from ms-mailserver.maths.ed.ac.uk
(ms-mailserver.maths.ed.ac.uk [129.215.104.183]) by lists.samba.org
(Postfix) with ESMTP id EB9154D2E for <samba-ntdom at lists.samba.org>;
Mon, 25 Jun 2001 07:23:52 -0700 (PDT)
Received: from babbage.mathsyp (babbage [129.215.104.6]) by
ms-mailserver.maths.ed.ac.uk (8.9.3/8.9.3) with ESMTP id PAA12268 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 15:27:59 +0100 (BST)
Received: from localhost (steve at localhost) by babbage.mathsyp
(8.9.3+Sun/8.9.3) with ESMTP id PAA07542 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 15:27:59 +0100 (BST)
X-Authentication-Warning: babbage.mathsyp: steve owned process doing -bs
Date: Mon, 25 Jun 2001 15:27:59 +0100 (BST)
From: Steven Law <steve at maths.ed.ac.uk>
X-Sender: steve at babbage
To: samba-ntdom at lists.samba.org
Subject: Re: UID & Add User Script - Whoops !
In-Reply-To: <Pine.SOL.4.21.0106251459110.7342-100000 at babbage>
Message-ID: <Pine.SOL.4.21.0106251527120.7342-100000 at babbage>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
On Mon, 25 Jun 2001, Steven Law wrote:
>
> I'm considering setting samba up so that it will automatically add
> machines to the domain. In order to do this, I need to add a script for
> entering the host into the local password file. My question is how do
> you get it to use a unique uid number which I presume is required in
> order that a proper entry in smbpasswd can be created ?
>
Cancel my last request as I've found the answer.
Definitely an RTFM job :-)
Steve
--
Computing Officer
Department of Mathematics and Statistics, Edinburgh University.
Phone: 0131 650 5037 , Email: steve at maths.ed.ac.uk
Home Page: http://www.maths.ed.ac.uk/~steve
Return-Path: <mekilroy at risingedge.com>
Delivered-To: samba-ntdom at lists.samba.org
Received: from mailhost.digitalselect.net (unknown [209.225.164.170]) by
lists.samba.org (Postfix) with ESMTP id C98874A8C; Mon, 25 Jun 2001
08:00:07 -0700 (PDT)
Received: from wizzard.rising-edge (risingedge.com [216.181.63.36]) by
mailhost.digitalselect.net (8.11.1/8.11.1) with SMTP id f5PF6SS77843;
Mon, 25 Jun 2001 11:06:29 -0400 (EDT)
Received: from diamondback (unverified [192.168.0.26]) by
wizzard.rising-edge (EMWAC SMTPRS 0.83) with SMTP id
<B0000085618 at wizzard.rising-edge>; Mon, 25 Jun 2001 11:03:56 -0400
Message-ID: <020701c0fd88$0de51370$1a00a8c0 at diamondback>
From: "M. Kilroy" <mekilroy at risingedge.com>
To: <samba at lists.samba.org>, <samba-ntdom at lists.samba.org>
Subject: _get_trust_account_password( )
Date: Mon, 25 Jun 2001 11:03:55 -0400
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Mailer: Microsoft Outlook Express 5.50.4133.2400
X-Antirelay: Good relay from local net2 192.168.0.0/24
X-Converted-To-Plain-Text: from multipart/alternative by demime 0.98b
X-Converted-To-Plain-Text: Alternative section used was text/plain
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
_get_trust_account_password( ) //called from winbindd_misc.c
Where can I find this function implementation? I wanna see where in the code
i'm dying....
THANKS!
Return-Path: <tcpdump at techcellent.com>
Delivered-To: samba-ntdom at lists.samba.org
Received: from techcellent.com (unknown [207.176.39.66]) by
lists.samba.org (Postfix) with ESMTP id 541F24D6A for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 08:05:39 -0700 (PDT)
Received: from localhost (tcpdump at localhost) by techcellent.com
(8.11.2/8.9.3) with ESMTP id f5PGAI919314; Mon, 25 Jun 2001 11:10:18
-0500
Date: Mon, 25 Jun 2001 11:10:18 -0500 (EST)
From: tcpdump <tcpdump at techcellent.com>
To: <malvezzi at mail.unimo.it>
Cc: <samba-ntdom at lists.samba.org>
Subject: Re: Trust account deleted
In-Reply-To: <993478219.3b37464bb6f26 at mail.unimo.it>
Message-ID: <Pine.LNX.4.30.0106251108210.19136-100000 at techcellent.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
what I think you did is that when the w2k first joined the domain it
didn't have sp2 installed.
you will have to pull the current cvs. I tried it and it does accept
w2k+sp2 joining.
instructons about using cvs is on the samba homepage.
~tcpdump
On Mon, 25 Jun 2001 malvezzi at mail.unimo.it wrote:
> I deleted by mistake the trust account of a w2k machine, let's say lulliton$,
> from /etc/passwd. Not surprisingly the w2k machine is not able any more to join
> the samba domain.
>
> I added again the trust account, which now exists both in passwd and in
> smbpasswd. The uid of the account match (but it's different from the old one; I
> had to deled and re-add the smbpasswd account too).
>
> But it doesn't work.
>
> Every time I try to join it issues the error: "the credential set are
> conflicting with an existing set."
>
> Which small little file I forgot to update? For istance, what is for the
> MACHINE.SID file in /etc/samba?
>
> Thank you, really: I'm not very good and I don't see how to solve my problem.
>
> Francesco
>
Return-Path: <idra at samba.org>
Delivered-To: samba-ntdom at lists.samba.org
Received: by lists.samba.org (Postfix, from userid 1120) id DEECD4D9A;
Mon, 25 Jun 2001 08:42:42 -0700 (PDT)
Date: Mon, 25 Jun 2001 08:42:41 -0700
To: malvezzi at mail.unimo.it
Cc: samba-ntdom at lists.samba.org
Subject: Re: Trust account deleted
Message-ID: <20010625084241.A13785 at va.samba.org>
References: <993478219.3b37464bb6f26 at mail.unimo.it>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <993478219.3b37464bb6f26 at mail.unimo.it>; from
malvezzi at mail.unimo.it on Mon, Jun 25, 2001 at 04:10:19PM +0200
From: idra at samba.org (Simo Sorce)
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
simply delete the machine account from smbpasswd,
then move the w2k machine to a workgroup with a name different from the domain.
reboot w2k.
rejoin the domain.
On Mon, Jun 25, 2001 at 04:10:19PM +0200, malvezzi at mail.unimo.it wrote:
> I deleted by mistake the trust account of a w2k machine, let's say lulliton$,
> from /etc/passwd. Not surprisingly the w2k machine is not able any more to join
> the samba domain.
>
> I added again the trust account, which now exists both in passwd and in
> smbpasswd. The uid of the account match (but it's different from the old one; I
> had to deled and re-add the smbpasswd account too).
>
> But it doesn't work.
>
> Every time I try to join it issues the error: "the credential set are
> conflicting with an existing set."
>
> Which small little file I forgot to update? For istance, what is for the
> MACHINE.SID file in /etc/samba?
>
> Thank you, really: I'm not very good and I don't see how to solve my problem.
>
> Francesco
--
Simo Sorce idra at samba.org
-------------------------------
Samba Team http://www.samba.org
Return-Path: <abrock at georgefox.edu>
Delivered-To: samba-ntdom at lists.samba.org
Received: from smtp.georgefox.edu (unknown [198.106.64.176]) by
lists.samba.org (Postfix) with ESMTP id 49AD94DB9 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 09:21:20 -0700 (PDT)
Received: from network-laptop.georgefox.edu (dns1.georgefox.edu
[198.106.64.1]) by smtp.georgefox.edu (8.9.3+Sun/8.9.3) with ESMTP id
JAA02396 for <samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 09:24:32
-0700 (PDT)
Message-Id: <5.1.0.14.2.20010625091432.00a62ce0 at mail.georgefox.edu>
X-Sender: abrock at mail.georgefox.edu
X-Mailer: QUALCOMM Windows Eudora Version 5.1
Date: Mon, 25 Jun 2001 09:17:16 -0700
To: samba-ntdom at lists.samba.org
From: Anthony Brock <abrock at georgefox.edu>
Subject: Kerberos with 2.2.0
In-Reply-To: <fc.295149f7295149f7b07286ef3b9aca00.b0f3ff at mail.georgefox.
edu>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
This thread spawns another question. How does Microsoft implement Kerberos
for their back end in W2K, and still maintain backwards compatibility with
NT4.0? Is anyone working on this? What would be required to help with this?
We have Kerberos on campus, but every inquiry has stated that we cannot use
Kerberos with encrypted passwords. This is self-defeating, and I would like
to find out what has to happen to eliminate this problem ...
Thanks in advance!
Tony
******************************************************************************
* Anthony Brock abrock at georgefox.edu *
* Director of Network Services George Fox University *
******************************************************************************
Return-Path: <mgerdts at aur.alcatel.com>
Delivered-To: samba-ntdom at lists.samba.org
Received: from aurms0.aur.alcatel.com (hostr41.alcatel.com
[143.209.4.1]) by lists.samba.org (Postfix) with ESMTP id E639F4D93
for <samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 10:30:46 -0700
(PDT)
Received: from aursea.aur.alcatel.com (aursea [143.209.6.105]) by
aurms0.aur.alcatel.com (8.11.3/8.11.3) with ESMTP id f5PHYr514115 for
<samba-ntdom at lists.samba.org>; Mon, 25 Jun 2001 13:34:53 -0400 (EDT)
Received: (from mgerdts at localhost) by aursea.aur.alcatel.com
(8.9.3+Sun/8.9.3) id NAA17467 for samba-ntdom at lists.samba.org; Mon, 25
Jun 2001 13:34:53 -0400 (EDT)
Date: Mon, 25 Jun 2001 13:34:52 -0400
From: Michael Gerdts <Michael.Gerdts at usa.alcatel.com>
To: samba-ntdom at lists.samba.org
Subject: joining resource domain, trust account for master domain needed
Message-ID: <20010625133452.B17366 at aur.alcatel.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
Sender: samba-ntdom-admin at lists.samba.org
Errors-To: samba-ntdom-admin at lists.samba.org
X-BeenThere: samba-ntdom at lists.samba.org
X-Mailman-Version: 2.0beta6
Precedence: bulk
List-Help: <mailto:samba-ntdom-request at lists.samba.org?subject=help>
List-Post: <mailto:samba-ntdom at lists.samba.org>
List-Subscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=subscribe>
List-Id: Using Samba with Windows NT domains <samba-ntdom.lists.samba.org>
List-Unsubscribe: <http://lists.samba.org/listinfo/samba-ntdom>, <mailto:samba-ntdom-request at lists.samba.org?subject=unsubscribe>
List-Archive: http://lists.samba.org/pipermail/samba-ntdom/
I am trying to add a samba 2.2 server to a domain that uses the single
master domain model. Unfortunately, all is not going as well as the
instructions suggest it should.
I have a master domain (MASTER) that takes care of all authentication. I
have a resource domain (RES) that all file servers belong to. The PDC in
RES is PDC. The samba server has the netbios name SAMBA (Names changed to
protect the almost innocent.)
I have followed the instructions for joining an NT domain. Specifically, I
did the following:
1) had the NT admin create a machine account that matches my netbios
name.
2) smbpasswd -j RES -r PDC
secrets.tbd exists. strings(1) suggests that it has the right
information in it.
3) edited smb.conf,
security = domain
workgroup = RES
encrypt passwords = yes
password server = PDC (also tried *)
4) started smbd
More information about the samba-ntdom
mailing list