[Samba] (no subject)

Woodward, Chris chris.woodward at targacept.com
Thu Nov 20 13:13:21 GMT 2003 

Hi All,

I'm trying to migrate from an NT4 domain to samba-3...
sorry this is so long...

when I run the "net rpc vampire" I get errors for users and machines
in uppercase or contain uppercase chars.

I'm in a test env before I go live!

I'm on a gentoo distro w/ shadow.

useradd FOO errors, this might be the culprit...

I set up some dummy accts and made them members of groups.
3 machines
testpdc = nt4 pdc
station1 = w2k workstation
lynxpdc = gentoo linux w/ samba3.0.0
I run winbind and do some net groupbind modify before I do the rpc net
vampire.
here is the output of net vampire: 

Fetching DOMAIN database
 SAM_DELTA_DOMAIN_INFO not handled
 Creating unix group: 'Domain Admins'
 Creating unix group: 'Domain Users'
 Creating unix group: 'Dwarfs'
 Creating unix group: 'Looneytunes'
 Creating unix group: 'Rockers'
 Creating unix group: 'Speedsters'
 Creating account: Administrator
 useradd: invalid user name 'Administrator'
 Could not create posix account info for 'Administrator'
 Creating account: Guest
 [2003/11/19 13:40:50, 0] passdb/pdb_tdb.c:tdbsam_getsampwrid(255)
   pdb_getsampwrid: Unable to open TDB rid database!
   usermod: user Guest does not exist
   Creating account: TESTPDC$
   usermod: user TESTPDC$ does not exist
   Creating account: IUSR_TESTPDC
   useradd: invalid user name 'IUSR_TESTPDC'
   Could not create posix account info for 'IUSR_TESTPDC'
   Creating account: STATION1$
   useradd: invalid user name 'STATION1$'
   Could not create posix account info for 'STATION1$'
   Creating account: grumpy
   Creating account: sleepy
   Creating account: sneezy
   Creating account: bashfull
   Creating account: bugs
   Creating account: cadmin
   Creating account: daffy
   Creating account: sammy
   Creating account: eddie
   Creating account: porsche
   Creating account: jeep
   Creating account: LYNXPDC$
   useradd: invalid user name 'LYNXPDC$'
   Could not create posix account info for 'LYNXPDC$'
   Group members of Domain Admins: cadmin,
   Adding user cadmin to group Domain Admins
   Group members of Domain Users:
TESTPDC$(primary),grumpy(primary),sleepy(primary),sneezy(primary),bashfull(p
rimary),bugs(primary),cadmin(primary),daffy(primary),sammy(primary),eddie(pr
imary),porsche(primary),jeep(primary),
   Group members of nobody: Guest(primary),
   Group members of Dwarfs: grumpy,sleepy,sneezy,bashfull,
   Adding user grumpy to group Dwarfs
   Adding user sleepy to group Dwarfs
   Adding user sneezy to group Dwarfs
   Adding user bashfull to group Dwarfs
   Group members of Looneytunes: bugs,daffy,
   Adding user bugs to group Looneytunes
   Adding user daffy to group Looneytunes
   Group members of Rockers: sammy,eddie,
   Adding user sammy to group Rockers
   Adding user eddie to group Rockers
   Group members of Speedsters: porsche,jeep,
   Adding user porsche to group Speedsters
   Adding user jeep to group Speedsters
   Fetching BUILTIN database
   SAM_DELTA_DOMAIN_INFO not handled

here is my snb.conf
[global]
        workgroup = LINUX
        netbios name = lynxpdc
        passdb backend = tdbsam
        os level = 33
        preferred master = yes
;       domain master = yes
        domain master = No
        local master = yes
        security = user
        encrypt passwords = yes
        domain logons = yes
        logon path = \\%L\profiles\%U
        logon drive = H:
        logon home = \\%L\%U\.profile
        logon script = %m.bat
        add user script = /usr/sbin/useradd -s /bin/false '%u'
        delete user script = /usr/sbin/userdel '%s'
        add user to group script = /usr/bin/gpasswd -a '%u' '%g'
        delete user from group script = /usr/bin/gpasswd -d '%u' '%g'
        set primary group script = /usr/sbin/usermod -g '%g' '%u'
        ;add group script = /usr/sbin/groupadd %g && getent group
'%g'|awk -F: '{print $3}'
        add machine script = /usr/sbin/useradd -d /dev/null -g
machines -c 'Machine Account' -s /bin/false -M %u
        delete group script = /usr/sbin/groupdel '%g'
        socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
        idmap uid = 15000-20000
        idmap gid = 15000-20000
        winbind separator = +
        wins support = yes
;       log level = 10

[netlogon]
        path = /var/lib/samba/netlogon
        read only = yes
        write list = ntadmin

[profiles]
        path = /var/lib/samba/profiles
        read only = no
        create mask = 0600
        directory mask = 0700

I commented out the addgroup line but the groups DO get created and
the users are added to /etc/group

Domain Admins:!:15000:cadmin
Dwarfs:!:15002:grumpy,sleepy,sneezy,bashfull
Looneytunes:!:15003:bugs,daffy
Rockers:!:15004:sammy,eddie
Speedsters:!:15005:porsche,jeep

the users are added to /etc/passwd
grumpy:x:1008:15001::/home/grumpy:/bin/false
sleepy:x:1009:15001::/home/sleepy:/bin/false
sneezy:x:1010:15001::/home/sneezy:/bin/false
bashfull:x:1011:15001::/home/bashfull:/bin/false
bugs:x:1012:15001::/home/bugs:/bin/false
cadmin:x:1013:15001::/home/cadmin:/bin/false
daffy:x:1014:15001::/home/daffy:/bin/false
sammy:x:1015:15001::/home/sammy:/bin/false
eddie:x:1016:15001::/home/eddie:/bin/false
porsche:x:1017:15001::/home/porsche:/bin/false
jeep:x:1018:15001::/home/jeep:/bin/false

If I add the machines manually (in uppercase w/$) to /etc/passwd and
try to run as a PDC the clients wont authenticate.

Can anyone shed some light?
thx,
-chris

More information about the samba mailing list