[Samba] Re: net rpc group members timeout

Matt Proud matt.proud.list at gmail.com
Fri Jan 12 16:01:17 GMT 2007 

I set up an NIS slave on the Samba server, and this appears to fix the problem.

On 1/5/07, Matt Proud <matt.proud.list at gmail.com> wrote:
> Hello,
>
> Occasionally when I perform "net rpc group members (group a)," I get a
> timeout. When I do "net rpc group members (group b)," I always get a
> timeout.
>
> I get the following error:
>
> [2007/01/05 16:36:18, 0] rpc_client/cli_pipe.c:rpc_api_pipe(790)
>   rpc_api_pipe: Remote machine 127.0.0.1 pipe \samr fnum
> 0x72cdreturned critical error. Error was Call timed out: server did
> not respond after 10000 milliseconds
> [2007/01/05 16:36:18, 0] libsmb/clientgen.c:cli_rpc_pipe_close(375)
>   cli_rpc_pipe_close: cli_close failed on pipe \samr, fnum 0x72cd to
> machine 127.0.0.1.  Error was Call timed out: server did not respond
> after 10000 milliseconds
>
> Everything looks appropriate when looking at "net groupmap list."
>
> We are using NIS (I have begun a phased transition to LDAP and
> Kerberos), and NIS sometimes times out. Still, I overrode nsswitch and
> PAM to use LDAP and Kerberos respectively and no NIS, but this only
> marginally helps things.
>
> Can this timeout be raised? Is there some other underlying problem? We
> are using NSCD. There are a lot of user accounts.
>
> I have seen this problem discussed elsewhere, but nobody has proffered
> any solutions.
>
> Version: 3.0.22-1ubuntu3.1
>
> Here's a copy of the Samba configuration:
>
> [global]
>    netbios name = COPPER
>    workgroup = blah
>    server string = %h via SAMBA
>
> #   passdb backend = smbpasswd
>    passdb backend = tdbsam:/var/lib/samba/passdb.tdb
>    security = user
>    username map = /etc/samba/smbusers
>
>    name resolve order = wins bcast hosts lmhosts
>    wins support = yes
>
>    domain master = yes
>    local master = yes
>    domain logons = yes
>    preferred master = yes
>    os level = 255
>
>    printcap = cups
>    printing = cups
>    load printers = yes
>
>    #logon drive = H:
>    logon script = logon.bat
>    logon path = ""
>    #logon path = \\%N\profile\%U
>    #logon home = \\%L\
>
>    #log level = 0 printdrivers:10 rpc_srv:10 rpc_cli:10 smb:10
>    #log level = 0 smb:10 passdb:10 tbd:10 lanman:10 acls:10
>    log level = 10
>    log file = /var/log/samba/log.%m
>    debug timestamp = yes
>
>    socket options = TCP_NODELAY IPTOS_LOWDELAY SO_SNDBUF=8192 SO_RCVBUF=8192
>    deadtime = 120
>
>    time server = yes
>
>    hide dot files = yes
>    hide unreadable = yes
>
>    guest ok = no
>    guest account = nobody
>
>    admin users = @newadm
>    #domain admin group = @newadm
>    #domain admin users = root
>
>    encrypt passwords = yes
>    null passwords = yes
>    #unix password sync = yes
>    #passwd program = /usr/bin/yppasswd %u
>    #passwd chat = *old\spassword:* %o\n *new\spassword:** %n\n
> *new\spassword:** %n *changed* .
>    #obey pam restrictions = yes
>
>    unix charset = ISO8859-1
>
>    add machine script = /var/lib/samba/scripts/smb-add-machine %u
>
>    map to guest = nobody
>
>    preserve case = yes
>    short preserve case = yes
>    #All blah subnets should be enumerated here.
>    #remote announce = 128.101.10.252/NT_blah 192.168.116.192/NT_blah
>
>    enable privileges = yes
>
>    printer admin = "blah\Domain Admins"
>
> # Experimental
> # These settings should either be inverted to the formerly noted defaults
> # or removed entirely.
>    strict locking = no
> # Was no
>    kernel oplocks = no
> # Was no
>    oplocks = no
> # Was unset
>    locking = no
>
>
> [printers]
>    comment = All Printers
>    browseable = no
>    path = /tmp
>    printable = yes
>    public = yes
>    writeable = no
>    create mode = 0700
>
> [print$]
>    comment = Printer Drivers
>    path = /var/lib/samba/printers
>    browseable = yes
>    writeable = no
>    public = yes
>    write list = root, @newadm
>
> [netlogon]
>    comment = Remote Login
>    path = /var/lib/samba/netlogon
>    writeable = no
>    browseable = no
>    admin users = root, @newadm
>    write list = root, @newadm
>
> #[profile]
> #   comment = Roaming Profiles
> #   path = /var/lib/samba/profiles
> #   create mode = 0600
> #   directory mode = 0700
> #   writable = yes
> #   default case = lower
> #   preserve case = no
> #   short preserve case = no
> #   case sensitive = no
> #   #write list = root @blah
> #   csc policy = disable
> #   browseable = no
> #   force user = %U
> #   #profile acls = yes
> #   #valid users = %U@"Domain Admins"
>
> [homes]
>    comment = UNIX Home Directory
>    volume = %u
>    browseable = no
>    writeable = yes
>    guest ok = no
>    inherit permissions = yes
>    #valid users = root @blah
>    valid users = %S
>    invalid users = guest nobody
>    create mask = 0644
>    directory mask = 0755
>    public = no
>    locking = no
>
> [staff]
>    comment = blah Staff Files --- Privileged
>    volume = Staff
>    browseable = no
>    path = /srv/staff
>    public = no
>    writeable = yes
>    create mask = 0770
>    directory mask = 2770
>    force group = +newstaff
>    valid users = @newstaff
>
> [accounting]
>    comment = blah Accounting Files --- Privileged
>    volume = Accounting
>    browseable = no
>    path = /srv/accounting
>    public = no
>    writeable = yes
>    create mask = 0770
>    directory mask = 2770
>    force group = +blah_acct
>    valid users = @blah_acct
>
> [software]
>    comment = Shared Software --- Privileged
>    volume = Software
>    browseable = no
>    path = /srv/software
>    public = no
>    writeable = yes
>    create mask = 0770
>    directory mask = 2770
>    force group = +blah_main
>    valid users = root administrator @blah_main
>
> [public]
>    comment = Public Placement
>    volume = Public
>    browseable = yes
>    path = /srv/public
>    public = yes
>    guest ok = yes
>    writeable = yes
>    create mask = 0770
>    directory mask = 2770
>    force group = +blah
>    valid users = @blah
>

More information about the samba mailing list