[Samba] (no subject)
Woodward, Chris
chris.woodward at targacept.com
Thu Nov 20 13:13:21 GMT 2003
Hi All,
I'm trying to migrate from an NT4 domain to samba-3...
sorry this is so long...
when I run the "net rpc vampire" I get errors for users and machines
in uppercase or contain uppercase chars.
I'm in a test env before I go live!
I'm on a gentoo distro w/ shadow.
useradd FOO errors, this might be the culprit...
I set up some dummy accts and made them members of groups.
3 machines
testpdc = nt4 pdc
station1 = w2k workstation
lynxpdc = gentoo linux w/ samba3.0.0
I run winbind and do some net groupbind modify before I do the rpc net
vampire.
here is the output of net vampire:
Fetching DOMAIN database
SAM_DELTA_DOMAIN_INFO not handled
Creating unix group: 'Domain Admins'
Creating unix group: 'Domain Users'
Creating unix group: 'Dwarfs'
Creating unix group: 'Looneytunes'
Creating unix group: 'Rockers'
Creating unix group: 'Speedsters'
Creating account: Administrator
useradd: invalid user name 'Administrator'
Could not create posix account info for 'Administrator'
Creating account: Guest
[2003/11/19 13:40:50, 0] passdb/pdb_tdb.c:tdbsam_getsampwrid(255)
pdb_getsampwrid: Unable to open TDB rid database!
usermod: user Guest does not exist
Creating account: TESTPDC$
usermod: user TESTPDC$ does not exist
Creating account: IUSR_TESTPDC
useradd: invalid user name 'IUSR_TESTPDC'
Could not create posix account info for 'IUSR_TESTPDC'
Creating account: STATION1$
useradd: invalid user name 'STATION1$'
Could not create posix account info for 'STATION1$'
Creating account: grumpy
Creating account: sleepy
Creating account: sneezy
Creating account: bashfull
Creating account: bugs
Creating account: cadmin
Creating account: daffy
Creating account: sammy
Creating account: eddie
Creating account: porsche
Creating account: jeep
Creating account: LYNXPDC$
useradd: invalid user name 'LYNXPDC$'
Could not create posix account info for 'LYNXPDC$'
Group members of Domain Admins: cadmin,
Adding user cadmin to group Domain Admins
Group members of Domain Users:
TESTPDC$(primary),grumpy(primary),sleepy(primary),sneezy(primary),bashfull(p
rimary),bugs(primary),cadmin(primary),daffy(primary),sammy(primary),eddie(pr
imary),porsche(primary),jeep(primary),
Group members of nobody: Guest(primary),
Group members of Dwarfs: grumpy,sleepy,sneezy,bashfull,
Adding user grumpy to group Dwarfs
Adding user sleepy to group Dwarfs
Adding user sneezy to group Dwarfs
Adding user bashfull to group Dwarfs
Group members of Looneytunes: bugs,daffy,
Adding user bugs to group Looneytunes
Adding user daffy to group Looneytunes
Group members of Rockers: sammy,eddie,
Adding user sammy to group Rockers
Adding user eddie to group Rockers
Group members of Speedsters: porsche,jeep,
Adding user porsche to group Speedsters
Adding user jeep to group Speedsters
Fetching BUILTIN database
SAM_DELTA_DOMAIN_INFO not handled
here is my snb.conf
[global]
workgroup = LINUX
netbios name = lynxpdc
passdb backend = tdbsam
os level = 33
preferred master = yes
; domain master = yes
domain master = No
local master = yes
security = user
encrypt passwords = yes
domain logons = yes
logon path = \\%L\profiles\%U
logon drive = H:
logon home = \\%L\%U\.profile
logon script = %m.bat
add user script = /usr/sbin/useradd -s /bin/false '%u'
delete user script = /usr/sbin/userdel '%s'
add user to group script = /usr/bin/gpasswd -a '%u' '%g'
delete user from group script = /usr/bin/gpasswd -d '%u' '%g'
set primary group script = /usr/sbin/usermod -g '%g' '%u'
;add group script = /usr/sbin/groupadd %g && getent group
'%g'|awk -F: '{print $3}'
add machine script = /usr/sbin/useradd -d /dev/null -g
machines -c 'Machine Account' -s /bin/false -M %u
delete group script = /usr/sbin/groupdel '%g'
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
idmap uid = 15000-20000
idmap gid = 15000-20000
winbind separator = +
wins support = yes
; log level = 10
[netlogon]
path = /var/lib/samba/netlogon
read only = yes
write list = ntadmin
[profiles]
path = /var/lib/samba/profiles
read only = no
create mask = 0600
directory mask = 0700
I commented out the addgroup line but the groups DO get created and
the users are added to /etc/group
Domain Admins:!:15000:cadmin
Dwarfs:!:15002:grumpy,sleepy,sneezy,bashfull
Looneytunes:!:15003:bugs,daffy
Rockers:!:15004:sammy,eddie
Speedsters:!:15005:porsche,jeep
the users are added to /etc/passwd
grumpy:x:1008:15001::/home/grumpy:/bin/false
sleepy:x:1009:15001::/home/sleepy:/bin/false
sneezy:x:1010:15001::/home/sneezy:/bin/false
bashfull:x:1011:15001::/home/bashfull:/bin/false
bugs:x:1012:15001::/home/bugs:/bin/false
cadmin:x:1013:15001::/home/cadmin:/bin/false
daffy:x:1014:15001::/home/daffy:/bin/false
sammy:x:1015:15001::/home/sammy:/bin/false
eddie:x:1016:15001::/home/eddie:/bin/false
porsche:x:1017:15001::/home/porsche:/bin/false
jeep:x:1018:15001::/home/jeep:/bin/false
If I add the machines manually (in uppercase w/$) to /etc/passwd and
try to run as a PDC the clients wont authenticate.
Can anyone shed some light?
thx,
-chris
More information about the samba
mailing list