[Samba] Can not add users to samba 3.0
lovswr1
lovswr1 at earthlink.net
Sun Nov 16 22:09:49 GMT 2003
On Sun, 2003-11-16 at 16:37, rruegner wrote:
> smbpasswd -m -a gerard will create a machine account called gerard$
> the $ means this is a machine
> smbpasswd -a gerard will create a user gerard in your smbpasswd file
> for using this passwd feature a system user has to be created before
> i.e. useradd -a gerard
> you can do this by using new smb.conf parameters, check man smb.conf
> here you have an example for a smb.conf for suse samba 3 as pdc
Yes I have the users added to the linux box itself, just whenever I do
smbpasswd -a username I always get that error about the SAM-ACCOUNT not
being initialized.
> #
>
> # Generated by
> /usr/share/doc/packages/samba3/examples/misc/modify_samba_config.pl
>
> #
>
> [global]
>
> browseable = no
>
> largereadwrite = yes
>
> passwdprogram = /usr/bin/passwd %u
>
> logonscript = login.bat
>
> logonhome = \\%L\%u
>
> bindinterfacesonly = Yes
>
> netbiosname = musi
>
> nameresolveorder = wins bcast hosts
>
> addsharecommand =
> /usr/share/doc/packages/samba3/examples/misc/modify_samba_config.pl
>
> ntaclsupport = yes
>
> deletesharecommand =
> /usr/share/doc/packages/samba3/examples/misc/modify_samba_config.pl
>
> usernamemap = /etc/samba/smbusers
>
> idmapuid = 15000-20000
>
> winshook = /usr/share/doc/packages/samba3/examples/wins_hook/dns_update
>
> addmachinescript = /usr/sbin/useradd -g Machines -c Machine -d /dev/null -s
> /bin/false %u
>
> hostmsdfs = Yes
>
> printcapname = cups
>
> deleteuserscript = /usr/sbin/userdel -r %u
>
> domainlogons = yes
>
> shutdownscript = /sbin/shutdown
>
> logfile = /var/log/samba/%m
>
> socketoptions = TCP_NODELAY SO_KEEPALIVE SO_SNDBUF
>
> winsproxy = Yes
>
> logondrive = Z:
>
> addusertogroupscript = /usr/bin/gpasswd -a %u %g
>
> workgroup = MUSI
>
> pampasswordchange = Yes
>
> idmapgid = 15000-20000
>
> domainmaster = yes
>
> adminusers = root, Administrator
>
> timeserver = yes
>
> ldapssl = no
>
> displaycharset = ISO8859-1
>
> addgroupscript = /usr/sbin/groupadd -r %g
>
> abortshutdownscript = /sbin/shutdown -c
>
> deleteuserfromgroupscript = /usr/bin/gpasswd -d %u %g
>
> vetofiles =
> /*.eml/*.nws/riched20.dll/*.{*}/.AppleDouble/.bin/.AppleDesktop/Network
> Trash Folder/.*/
>
> delete veto files = yes
>
> loglevel = 2
>
> adduserscript = /usr/sbin/useradd -m %u
>
> hidedotfiles = yes
>
> setprimarygroupscript = /usr/sbin/usermod -g '%g' '%u'
>
> usesendfile = Yes
>
> unixcharset = ISO8859-1
>
> interfaces = lo, eth1, eth2
>
> hidefiles = /.*/DesktopFolderDB/TrashFor%m/resource.frk/
>
> hostsallow = 127., 10.10.10.
>
> keepalive = 255
>
> passdbbackend = smbpasswd:/etc/samba/smbpasswd, guest
>
> deletegroupscript = /usr/sbin/groupdel %g
>
> loadprinters = No
>
> serverschannel = Yes
>
> localmaster = yes
>
> unixpasswordsync = Yes
>
> winssupport = Yes
>
> logonpath = \\%L\%U\profile
>
> passwdchat = *password* %n\n *password* %n\n *changed*
>
> changesharecommand =
> /usr/share/doc/packages/samba3/examples/misc/modify_samba_config.pl
>
> doscharset = CP850
>
> syslog = 0
>
> utmp = Yes
>
> oslevel = 255
>
> vfs object = vscan-fprotd netatalk audit recycle:repository recycle:keeptree
> recycle:versions
>
> ## Section - [files]
>
> [files]
>
> readonly = No
>
> cscpolicy = disable
>
> comment = public files
>
> browseable = yes
>
> writeable = yes
>
> path = /files/pub
>
> guestok = yes
>
> vfs object = vscan-fprotd netatalk audit recycle:repository recycle:keeptree
> recycle:versions
>
> ## Section - [homes]
>
> [homes]
>
> readonly = No
>
> comment = Home Directories
>
> browseable = No
>
> cscpolicy = disable
>
> guest ok = No
>
> vfs object = vscan-fprotd netatalk audit recycle:repository recycle:keeptree
> recycle:versions
>
> ## Section - [netlogon]
>
> [netlogon]
>
> sharemodes = No
>
> rootpreexec = /var/lib/samba/netlogon/login.pl %U %G %m %L
>
> comment = Netlogon Share
>
> browseable = No
>
> path = /var/lib/samba/netlogon
>
> guestok = Yes
>
> writelist = @ntadmin
>
> locking = no
>
> public = no
>
> cscpolicy = disable
>
> vfs object = vscan-fprotd netatalk audit recycle:repository recycle:keeptree
> recycle:versions
>
> ## Section - [smbmonitor]
>
> [smbmonitor]
>
> readonly = No
>
> cscpolicy = disable
>
> comment = security smb logs
>
> browseable = no
>
> writeable = yes
>
> path = /smbmonitor
>
> guestok = yes
>
> vfs object = vscan-fprotd netatalk audit recycle:repository recycle:keeptree
> recycle:versions
>
> ## Section - [wincd]
>
> [wincd]
>
> readonly = No
>
> cscpolicy = disable
>
> comment = security smb logs
>
> browseable = no
>
> path = /wincd/win2k/mnt
>
> writelist = @ntadmin
>
> guestok = yes
>
> vfs object = vscan-fprotd netatalk audit recycle:repository recycle:keeptree
> recycle:versions
>
>
>
> ##########################################################
>
> #use this if you want profiles in a seperate share
>
> #[profiles]
>
> # comment = Roaming Profile Share
>
> # path = /files/profiles
>
> # read only = No
>
> # browseable = No
>
>
>
>
>
>
>
>
>
> #
>
> # end of generated smb.conf
>
> #
>
> Best Regards
> ----- Original Message -----
> From: "lovswr1" <lovswr1 at earthlink.net>
> To: "samba" <samba at lists.samba.org>
> Sent: Sunday, November 16, 2003 7:14 PM
> Subject: [Samba] Can not add users to samba 3.0
>
>
> > Hello, I can not seem to get smbpsswd to add any users to samba. No
> > matter if I use the CLI, the Webmin module or SWAT I always get this
> > response when trying to add any user
> >
> > [root at matrix1 samba]# smbpasswd -m -a gerard
> > Failed initialise SAM_ACCOUNT for user gerard$.
> > Failed to modify password entry for user gerard$
> >
> >
> > I take it this has somehting to do with PAM & or shadow passwords, & I
> > have been lookig for a about a week & the best that I can find anything
> > related to this 'SAM_ACCOUNT' that resembles my problem, is that I need
> > to make sure that ./configure (I have no idea which ./confiugure it is
> > although I suspect that it is the one from a manual build of samba.
> > Since mine was installed along wtih a bunch of other stuff when I
> > upgraded from RH9 to fedore core 1, I have no idea where it might be)
> > has PAM & or shadow options enabled. Any help in this matter would be
> > greatly appreciated.
> >
> >
> > # Global parameters
> > [global]
> > encrypt passwords = yes
> > unix password sync = yes
> > security = SHARE
> > preferred master = Yes
> > log file = /var/log/samba/%m.log
> > passwd chat = *New*password* %n\n *Retype*new*password* %n\n
> > *passwd:*all*authentication*tokens*updated*successfully*
> > server string = Samba Server
> > pam password change = Yes
> > passwd program = /usr/bin/passwd %u
> > socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192
> > dns proxy = No
> > workgroup = MATRIX
> > ldap ssl = no
> > valid users = gerard, lovswr, marlene, vswr
> > max log size = 0
> > printing = cups
> > hosts allow = pc2, freebsd, matrix1
> > guest account =
> >
> > [homes]
> > comment = Home Directories
> > path = /home/public
> > read only = No
> > create mask = 0664
> > directory mask = 0775
> > guest ok = Yes
> >
> > [printers]
> > comment = All Printers
> > path = /var/spool/samba
> > printable = Yes
> > browseable = No
> >
> >
> > --
> > To unsubscribe from this list go to the following URL and read the
> > instructions: http://lists.samba.org/mailman/listinfo/samba
> >
> >
>
More information about the samba
mailing list