[Samba] AD DC eventually not browsable without restart, RPC server unavailable for user selection
Kevin Field
kev at brantaero.com
Wed Sep 25 05:18:14 MDT 2013
This (and possibly also enabling ad mode in /etc/init.d/sernet-samba)
also fixed the original problem (at least so far) of NEWDC not being
browsable! I can even look at Printers and Faxes in there, and trying
to launch Add Printer actually gives me a few options instead of an
error. Nice!
What baffles me is that this was supposedly the default way provision
would've set it up...unfortunately at that point in time I hadn't yet
been tracking my changes to smb.conf with hg, so I can't trace what I
tried and when and my rationale for bringing in various suggested
changes from mailing lists and tutorials in an effort to get a test
share working.
But anyway, I'm happy that this is working so well now, even if gpresult
is still a question.
Thanks for everyone for suggesting various things to try to diagnose.
Kev
On 2013-09-24 9:01 PM, Kevin Field wrote:
> I made this change to my smb.conf:
>
> server services = -smb +s3fs
> dcerpc endpoint servers = -winreg -srvsvc
>
> In this case, this means I deleted smb and added s3fs to that line,
> etc--from other posts I had tried putting these verbatim (including the
> plus or minus), or with commas in between, and it would cause samba to
> not load. So I had had smb, winreg, and srvsvc in use in smb.conf.
>
> With this change, the below two things (gpresult and --status-all) still
> behave the same way, but now I can right-click a samba-shared file in
> Windows, go Properties, Security, Advanced, Effective Permissions,
> Select and actually select objects rather than receive an error about
> the RPC server. So I'm not sure why gpresult still complains about the
> RPC server.
>
> Anyway, one step closer?
>
> Kev
>
> On 2013-09-24 11:29 AM, Kevin Field wrote:
>> As I mentioned in another thread where I forgot this was the same error
>> so is probably related, I get this when I run "gpresult /s NEWDC /user
>> MYDOM\Me" from a command prompt in OLDDC.
>>
>> And a new update, I was poking around and tried "sudo service
>> --status-all" on NEWDC, and it said something possibly interesting:
>>
>> /etc/init.d/sernet-samba-ad wants to status but SAMBA_START_MODE is set
>> to "none".
>> Disable /etc/init.d/sernet-samba-ad or set SAMBA_START_MODE in
>> /etc/default/sernet-samba to "ad".
>> Exiting gracefully now. [WARNING]
>> /etc/init.d/sernet-samba-nmbd wants to status but SAMBA_START_MODE is
>> set to "none".
>> Disable /etc/init.d/sernet-samba-nmbd or set SAMBA_START_MODE in
>> /etc/default/sernet-samba to "classic".
>> Exiting gracefully now. [WARNING]
>> /etc/init.d/sernet-samba-smbd wants to status but SAMBA_START_MODE is
>> set to "none".
>> Disable /etc/init.d/sernet-samba-smbd or set SAMBA_START_MODE in
>> /etc/default/sernet-samba to "classic".
>> Exiting gracefully now. [WARNING]
>> /etc/init.d/sernet-samba-winbindd wants to status but SAMBA_START_MODE
>> is set to "none".
>> Disable /etc/init.d/sernet-samba-winbindd or set SAMBA_START_MODE in
>> /etc/default/sernet-samba to "classic".
>> Exiting gracefully now. [WARNING]
>>
>> Now, the latter three groups, that's fine, because I'm on a
>> Win2000-style domain and our minimum client level is also W2K (although
>> almost all clients are XP.) But the first one I'm surprised
>> about--should I try editing /etc/default/sernet-samba to get it to run
>> as "ad"? Will that make the "RPC Server" on NEWDC become available?
>>
>> I'm not sure why it got set to "none", I just followed the HOWTO while I
>> was setting it up.
>>
>> Thanks,
>> Kev
>>
>> On 2013-09-16 9:14 AM, Kevin Field wrote:
>>> I'm now getting another error in a different spot that I hadn't tried
>>> before. If I go to a share \\newdc\\whatever, right-click a folder in
>>> it, go Properties, then the Security tab, then Advanced, then Effective
>>> Permissions, then Select, I get this:
>>>
>>> The program cannot open the required dialog box because it cannot
>>> determine whether the computer named "newdc" is joined to a domain.
>>> Close this message, and try again. [Close]
>>>
>>> And upon clicking Close:
>>>
>>> ---------------------------
>>> Security
>>> ---------------------------
>>> Unable to display the user selection dialog.
>>>
>>> The RPC server is unavailable.
>>> ---------------------------
>>> OK
>>> ---------------------------
>>>
>>> I'm using this particular share in production at the moment so I'll have
>>> to wait until after-hours to try restarting Samba to see if it goes
>>> away.
>>>
>>> Has anyone else come across either of these errors? Why does Samba's
>>> equivalent of the RPC server seem to function fine and then after some
>>> amount of time no longer seem to be available?
>>>
>>> Thanks,
>>> Kev
>>>
>>> On 2013-09-06 2:49 PM, Kevin Field wrote:
>>>> Nothing too interesting:
>>>>
>>>> $ sudo tail -n 50 /var/log/samba/log.smbd
>>>> smbd version 4.0.8-SerNet-RedHat-4.el6 started.
>>>> Copyright Andrew Tridgell and the Samba Team 1992-2012
>>>> [2013/08/15 17:56:21.535409, 0] ../source3/smbd/server.c:1253(main)
>>>> server role = 'active directory domain controller' not compatible
>>>> with running smbd standalone.
>>>> You should start 'samba' instead, and it will control starting smbd
>>>> if required
>>>> [2013/08/15 22:57:15, 0] ../source3/smbd/server.c:1201(main)
>>>> smbd version 4.0.8-SerNet-RedHat-4.el6 started.
>>>> Copyright Andrew Tridgell and the Samba Team 1992-2012
>>>> [2013/08/15 22:57:15, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 22:57:15.902304, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 22:57:15.909854, 0] ../source3/smbd/server.c:1281(main)
>>>> standard input is not a socket, assuming -D option
>>>> [2013/08/15 22:57:16.631301, 0]
>>>> ../source3/printing/print_cups.c:151(cups_connect)
>>>> Unable to connect to CUPS server localhost:631 - Connection refused
>>>> [2013/08/15 22:57:16.632045, 0]
>>>> ../source3/printing/print_cups.c:528(cups_async_callback)
>>>> failed to retrieve printer list: NT_STATUS_UNSUCCESSFUL
>>>> [2013/08/15 22:58:16.689780, 0]
>>>> ../source3/printing/print_cups.c:151(cups_connect)
>>>> Unable to connect to CUPS server localhost:631 - Connection refused
>>>> [2013/08/15 22:58:16.690368, 0]
>>>> ../source3/printing/print_cups.c:528(cups_async_callback)
>>>> failed to retrieve printer list: NT_STATUS_UNSUCCESSFUL
>>>> [2013/08/15 23:00:37.725980, 0]
>>>> ../source3/param/loadparm.c:3033(lp_set_enum_parm)
>>>> WARNING: Ignoring invalid value 'unsecure' for parameter 'allow dns
>>>> updates'
>>>> [2013/08/15 23:00:37.726249, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 23:00:37.772626, 0]
>>>> ../source3/param/loadparm.c:3033(lp_set_enum_parm)
>>>> WARNING: Ignoring invalid value 'unsecure' for parameter 'allow dns
>>>> updates'
>>>> [2013/08/15 23:00:37.772883, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 23:00:38.037790, 0]
>>>> ../source3/param/loadparm.c:3033(lp_set_enum_parm)
>>>> WARNING: Ignoring invalid value 'unsecure' for parameter 'allow dns
>>>> updates'
>>>> [2013/08/15 23:00:38.038080, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 23:02:35.872174, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 23:02:35.935461, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 23:02:36.200408, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 23:02:39.710286, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 23:02:39.792444, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 23:02:40.054341, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 23:02:55.374983, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>> [2013/08/15 23:04:13.125656, 0]
>>>> ../source3/param/loadparm.c:3121(lp_do_parameter)
>>>> Ignoring unknown parameter "dns recursive queries"
>>>>
>>>>
>>>> And:
>>>>
>>>> top - 14:47:13 up 14 days, 22:05, 1 user, load average: 0.13, 0.12,
>>>> 0.09
>>>> Tasks: 222 total, 1 running, 221 sleeping, 0 stopped, 0 zombie
>>>> Cpu(s): 0.0%us, 0.0%sy, 0.0%ni,100.0%id, 0.0%wa, 0.0%hi, 0.0%si,
>>>> 0.0%st
>>>> Mem: 12194316k total, 6204420k used, 5989896k free, 810524k
>>>> buffers
>>>> Swap: 6168568k total, 2784k used, 6165784k free, 4471196k cached
>>>>
>>>> PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
>>>> 1 root 20 0 19228 1364 1124 S 0.0 0.0 0:00.56 init
>>>> 2 root 20 0 0 0 0 S 0.0 0.0 0:00.00 kthreadd
>>>> 3 root RT 0 0 0 0 S 0.0 0.0 0:00.27
>>>> migration/0
>>>> 4 root 20 0 0 0 0 S 0.0 0.0 0:03.66
>>>> ksoftirqd/0
>>>> 5 root RT 0 0 0 0 S 0.0 0.0 0:00.00
>>>> migration/0
>>>> 6 root RT 0 0 0 0 S 0.0 0.0 0:00.57
>>>> watchdog/0
>>>> 7 root RT 0 0 0 0 S 0.0 0.0 0:00.42
>>>> migration/1
>>>> 8 root RT 0 0 0 0 S 0.0 0.0 0:00.00
>>>> migration/1
>>>> 9 root 20 0 0 0 0 S 0.0 0.0 0:03.36
>>>> ksoftirqd/1
>>>> 10 root RT 0 0 0 0 S 0.0 0.0 0:00.47
>>>> watchdog/1
>>>> 11 root RT 0 0 0 0 S 0.0 0.0 0:00.38
>>>> migration/2
>>>> 12 root RT 0 0 0 0 S 0.0 0.0 0:00.00
>>>> migration/2
>>>> 13 root 20 0 0 0 0 S 0.0 0.0 0:03.76
>>>> ksoftirqd/2
>>>> 14 root RT 0 0 0 0 S 0.0 0.0 0:00.47
>>>> watchdog/2
>>>> 15 root RT 0 0 0 0 S 0.0 0.0 0:00.81
>>>> migration/3
>>>> 16 root RT 0 0 0 0 S 0.0 0.0 0:00.00
>>>> migration/3
>>>> 17 root 20 0 0 0 0 S 0.0 0.0 0:03.78
>>>> ksoftirqd/3
>>>> 18 root RT 0 0 0 0 S 0.0 0.0 0:00.48
>>>> watchdog/3
>>>> 19 root RT 0 0 0 0 S 0.0 0.0 0:00.25
>>>> migration/4
>>>> 20 root RT 0 0 0 0 S 0.0 0.0 0:00.00
>>>> migration/4
>>>> 21 root 20 0 0 0 0 S 0.0 0.0 0:03.81
>>>> ksoftirqd/4
>>>> 22 root RT 0 0 0 0 S 0.0 0.0 0:00.46
>>>> watchdog/4
>>>> 23 root RT 0 0 0 0 S 0.0 0.0 0:00.23
>>>> migration/5
>>>> 24 root RT 0 0 0 0 S 0.0 0.0 0:00.00
>>>> migration/5
>>>> 25 root 20 0 0 0 0 S 0.0 0.0 0:03.56
>>>> ksoftirqd/5
>>>>
>>>>
>>>> On 2013-09-06 2:03 PM, Ricky Nance wrote:
>>>>> What about log.smbd ... also what does samba-tool processes output?
>>>>>
>>>>> Ricky
>>>>>
>>>>>
>>>>> On Fri, Sep 6, 2013 at 12:57 PM, Kevin Field <kev at brantaero.com
>>>>> <mailto:kev at brantaero.com>> wrote:
>>>>>
>>>>> (Just for the record, I haven't restarted samba in a couple weeks
>>>>> now.)
>>>>>
>>>>> That's very interesting: via the IP, it is browsable.
>>>>>
>>>>> As for the outputs:
>>>>>
>>>>> $ sudo netstat -anp | grep "samba\|smb"
>>>>> tcp 0 0 0.0.0.0:139 <http://0.0.0.0:139>
>>>>> 0.0.0.0:* LISTEN 5714/samba
>>>>> tcp 0 0 0.0.0.0:464 <http://0.0.0.0:464>
>>>>> 0.0.0.0:* LISTEN 19028/samba
>>>>> tcp 0 0 0.0.0.0:53 <http://0.0.0.0:53>
>>>>> 0.0.0.0:* LISTEN 19035/samba
>>>>> tcp 0 0 0.0.0.0:88 <http://0.0.0.0:88>
>>>>> 0.0.0.0:* LISTEN 19028/samba
>>>>> tcp 0 0 0.0.0.0:636 <http://0.0.0.0:636>
>>>>> 0.0.0.0:* LISTEN 19026/samba
>>>>> tcp 0 0 0.0.0.0:445 <http://0.0.0.0:445>
>>>>> 0.0.0.0:* LISTEN 19034/samba
>>>>> tcp 0 0 0.0.0.0:1024 <http://0.0.0.0:1024>
>>>>> 0.0.0.0:* LISTEN 19023/samba
>>>>> tcp 0 0 0.0.0.0:3268 <http://0.0.0.0:3268>
>>>>> 0.0.0.0:* LISTEN 19026/samba
>>>>> tcp 0 0 0.0.0.0:3269 <http://0.0.0.0:3269>
>>>>> 0.0.0.0:* LISTEN 19026/samba
>>>>> tcp 0 0 0.0.0.0:389 <http://0.0.0.0:389>
>>>>> 0.0.0.0:* LISTEN 19026/samba
>>>>> tcp 0 0 0.0.0.0:135 <http://0.0.0.0:135>
>>>>> 0.0.0.0:* LISTEN 19023/samba
>>>>> tcp 0 0 10.0.1.2:445 <http://10.0.1.2:445>
>>>>> 10.0.1.1:1777
>>>>> <http://10.0.1.1:1777> ESTABLISHED 19044/samba
>>>>> tcp 0 0 10.0.1.2:1024 <http://10.0.1.2:1024>
>>>>> 10.0.1.1:3024 <http://10.0.1.1:3024> ESTABLISHED 19023/samba
>>>>> tcp 0 0 10.0.1.2:445 <http://10.0.1.2:445>
>>>>> 10.0.1.1:2130
>>>>> <http://10.0.1.1:2130> ESTABLISHED 5714/samba
>>>>> tcp 0 0 10.0.1.2:58561 <http://10.0.1.2:58561>
>>>>> 10.0.1.1:1025 <http://10.0.1.1:1025> ESTABLISHED 19029/samba
>>>>> udp 0 0 10.0.1.2:389 <http://10.0.1.2:389>
>>>>> 0.0.0.0:* 19027/samba
>>>>> udp 0 0 0.0.0.0:389 <http://0.0.0.0:389>
>>>>> 0.0.0.0:* 19027/samba
>>>>> udp 0 0 10.0.1.2:137 <http://10.0.1.2:137>
>>>>> 0.0.0.0:* 19024/samba
>>>>> udp 0 0 10.255.255.255:137 <http://10.255.255.255:137>
>>>>> 0.0.0.0:* 19024/samba
>>>>> udp 0 0 0.0.0.0:137 <http://0.0.0.0:137>
>>>>> 0.0.0.0:* 19024/samba
>>>>> udp 0 0 10.0.1.2:138 <http://10.0.1.2:138>
>>>>> 0.0.0.0:* 19024/samba
>>>>> udp 0 0 10.255.255.255:138 <http://10.255.255.255:138>
>>>>> 0.0.0.0:* 19024/samba
>>>>> udp 0 0 0.0.0.0:138 <http://0.0.0.0:138>
>>>>> 0.0.0.0:* 19024/samba
>>>>> udp 0 0 0.0.0.0:53 <http://0.0.0.0:53>
>>>>> 0.0.0.0:* 19035/samba
>>>>> udp 0 0 10.0.1.2:464 <http://10.0.1.2:464>
>>>>> 0.0.0.0:* 19028/samba
>>>>> udp 0 0 0.0.0.0:464 <http://0.0.0.0:464>
>>>>> 0.0.0.0:* 19028/samba
>>>>> udp 0 0 10.0.1.2:88 <http://10.0.1.2:88>
>>>>> 0.0.0.0:* 19028/samba
>>>>> udp 0 0 0.0.0.0:88 <http://0.0.0.0:88>
>>>>> 0.0.0.0:* 19028/samba
>>>>> unix 2 [ ] DGRAM 1900834 5714
>>>>> <tel:1900834%205714>/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.5714
>>>>> unix 2 [ ACC ] STREAM LISTENING 413329
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__dnsserver
>>>>> unix 2 [ ACC ] STREAM LISTENING 413331
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__ntsvcs
>>>>> unix 2 [ ACC ] STREAM LISTENING 413334
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__browser
>>>>> unix 2 [ ACC ] STREAM LISTENING 413336
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__unixinfo
>>>>> unix 2 [ ACC ] STREAM LISTENING 413339
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__protected_storage
>>>>> unix 2 [ ACC ] STREAM LISTENING 413344
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__spoolss
>>>>> unix 2 [ ] DGRAM 413345
>>>>> 19025/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19025
>>>>> unix 2 [ ACC ] STREAM LISTENING 413347
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__lsass
>>>>> unix 2 [ ACC ] STREAM LISTENING 413350
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__lsarpc
>>>>> unix 2 [ ACC ] STREAM LISTENING 413352
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__netlogon
>>>>> unix 2 [ ACC ] STREAM LISTENING 413354
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/samr
>>>>> unix 2 [ ACC ] STREAM LISTENING 413356
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__rpcecho
>>>>> unix 2 [ ACC ] STREAM LISTENING 413358
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/DEFAULT
>>>>> unix 2 [ ACC ] STREAM LISTENING 413363
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__wkssvc
>>>>> unix 2 [ ACC ] STREAM LISTENING 413404
>>>>> 19031/samba
>>>>> /var/lib/samba/ntp_signd/__socket
>>>>> unix 2 [ ACC ] STREAM LISTENING 413365
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/__EPMAPPER
>>>>> unix 2 [ ] DGRAM 413367
>>>>> 19026/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19026
>>>>> unix 2 [ ACC ] STREAM LISTENING 413372
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__epmapper
>>>>> unix 2 [ ] DGRAM 413374
>>>>> 19027/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19027
>>>>> unix 2 [ ] DGRAM 413382
>>>>> 19028/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19028
>>>>> unix 2 [ ] DGRAM 413385
>>>>> 19029/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19029
>>>>> unix 2 [ ] DGRAM 413387
>>>>> 19030/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19030
>>>>> unix 2 [ ] DGRAM 413402
>>>>> 19031/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19031
>>>>> unix 2 [ ACC ] STREAM LISTENING 413406
>>>>> 19030/samba
>>>>> /var/run/samba/winbindd/pipe
>>>>> unix 2 [ ACC ] STREAM LISTENING 413410
>>>>> 19030/samba
>>>>> /var/lib/samba/winbindd___privileged/pipe
>>>>> unix 2 [ ] DGRAM 413407
>>>>> 19032/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19032
>>>>> unix 2 [ ] DGRAM 413315 5714
>>>>> <tel:413315%205714>/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.0
>>>>> unix 2 [ ] DGRAM 413412
>>>>> 19033/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19033
>>>>> unix 2 [ ] DGRAM 413414
>>>>> 19034/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19034
>>>>> unix 2 [ ] DGRAM 413421
>>>>> 19035/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19035
>>>>> unix 2 [ ] DGRAM 2454592
>>>>> 19023/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19023.43
>>>>> unix 2 [ ACC ] STREAM LISTENING 413452
>>>>> 19026/samba
>>>>> /var/lib/samba/private/ldapi
>>>>> unix 2 [ ACC ] STREAM LISTENING 413324
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__srvsvc
>>>>> unix 2 [ ] DGRAM 413319
>>>>> 19023/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19023
>>>>> unix 2 [ ] DGRAM 413321
>>>>> 19024/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19024
>>>>> unix 2 [ ACC ] STREAM LISTENING 413454
>>>>> 19026/samba
>>>>> /var/lib/samba/private/ldap___priv/ldapi
>>>>> unix 2 [ ] DGRAM 413574
>>>>> 19044/samba
>>>>> /var/lib/samba/private/smbd.__tmp/msg/msg.19044
>>>>> unix 2 [ ACC ] STREAM LISTENING 413326
>>>>> 19023/samba
>>>>> /var/run/samba/ncalrpc/np/__winreg
>>>>> unix 2 [ ] DGRAM 413309 5714
>>>>> <tel:413309%205714>/samba
>>>>> $ sudo tail -n 50 /var/log/samba/log.samba
>>>>> Exiting pid 18864 on SIGTERM
>>>>> [2013/08/24 15:35:45.472267, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> [2013/08/24 15:35:45.472118, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> [2013/08/24 15:35:45.472279, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18861 on SIGTERM
>>>>> [2013/08/24 15:35:45.472188, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18865 on SIGTERM
>>>>> [2013/08/24 15:35:45.472765, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> [2013/08/24 15:35:45.472761, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18870 on SIGTERM
>>>>> Exiting pid 18871 on SIGTERM
>>>>> [2013/08/24 15:35:45.472656, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18868 on SIGTERM
>>>>> [2013/08/24 15:35:45.472518, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18869 on SIGTERM
>>>>> [2013/08/24 15:35:45.472268, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18876 on SIGTERM
>>>>> [2013/08/24 15:35:45.472625, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18874 on SIGTERM
>>>>> Exiting pid 18875 on SIGTERM
>>>>> [2013/08/24 15:35:45.472525, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18877 on SIGTERM
>>>>> [2013/08/24 15:35:45.472138, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18866 on SIGTERM
>>>>> [2013/08/24 15:35:45.472808, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18873 on SIGTERM
>>>>> [2013/08/24 15:35:45.472528, 0]
>>>>> ../source4/smbd/server.c:121(__sig_term)
>>>>> Exiting pid 18872 on SIGTERM
>>>>> Exiting pid 18867 on SIGTERM
>>>>> [2013/08/24 15:35:47.005135, 0]
>>>>> ../source4/smbd/server.c:370(__binary_smbd_main)
>>>>> samba version 4.0.9-SerNet-RedHat-4.el6 started.
>>>>> Copyright Andrew Tridgell and the Samba Team 1992-2012
>>>>> [2013/08/24 15:35:47.304064, 0]
>>>>> ../source4/smbd/server.c:482(__binary_smbd_main)
>>>>> samba: using 'standard' process model
>>>>> [2013/09/05 15:40:25.959585, 0]
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118(dsdb_forest_functional___level)
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118: WARNING:
>>>>> forestFunctionality not setup
>>>>> [2013/09/05 15:40:26.167233, 0]
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118(dsdb_forest_functional___level)
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118: WARNING:
>>>>> forestFunctionality not setup
>>>>> [2013/09/05 15:40:26.214237, 0]
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118(dsdb_forest_functional___level)
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118: WARNING:
>>>>> forestFunctionality not setup
>>>>> [2013/09/05 15:40:26.243104, 0]
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118(dsdb_forest_functional___level)
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118: WARNING:
>>>>> forestFunctionality not setup
>>>>> [2013/09/05 15:40:26.934168, 0]
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118(dsdb_forest_functional___level)
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118: WARNING:
>>>>> forestFunctionality not setup
>>>>> [2013/09/05 15:40:26.968185, 0]
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118(dsdb_forest_functional___level)
>>>>>
>>>>> ../source4/dsdb/common/util.c:__3118: WARNING:
>>>>> forestFunctionality not setup
>>>>> [2013/09/06 13:53:21.498801, 0]
>>>>> ../source4/smb_server/smb/__service.c:127(make_connection)
>>>>>
>>>>> make_connection: couldn't find service *.:
>>>>> NT_STATUS_OBJECT_NAME_NOT___FOUND
>>>>> [2013/09/06 13:53:23.152701, 0]
>>>>> ../source4/smb_server/smb/__service.c:127(make_connection)
>>>>>
>>>>> make_connection: couldn't find service DESKTOP.INI:
>>>>> NT_STATUS_OBJECT_NAME_NOT___FOUND
>>>>>
>>>>> The forestFunctionality errors are from the Windows AD replication
>>>>> status tool.
>>>>>
>>>>> Thanks,
>>>>> Kev
>>>>>
>>>>>
>>>>>
>>>>> On 2013-09-06 1:46 PM, Ricky Nance wrote:
>>>>>
>>>>> Next time its unresponsive, try hitting it with \\ip.to.new.dc
>>>>> and see
>>>>> if its browsable, also get the output of netstat -anp | grep
>>>>> "samba\|smbd" as well as tail -n 50
>>>>> /usr/local/samba/var/log.samba and
>>>>> tail -n 50 usr/local/samba/var/log.smbd (adjust the path as
>>>>> needed),
>>>>> also I am interested if top has anything to say about samba or
>>>>> smbd (as
>>>>> for processor and memory usage).
>>>>>
>>>>> Ricky
>>>>>
>>>>>
>>>>> On Fri, Sep 6, 2013 at 12:12 PM, Kevin Field
>>>>> <kev at brantaero.com
>>>>> <mailto:kev at brantaero.com>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>>> wrote:
>>>>>
>>>>> Yep, that's exactly it. Thanks!
>>>>>
>>>>> Kev
>>>>>
>>>>>
>>>>> On 2013-09-06 10:16 AM, Ricky Nance wrote:
>>>>>
>>>>> Have you disabled syslinux? That is what that change
>>>>> looks like
>>>>> to me.
>>>>>
>>>>> Ricky
>>>>>
>>>>>
>>>>> On Thu, Sep 5, 2013 at 3:26 PM, Kevin Field
>>>>> <kev at brantaero.com <mailto:kev at brantaero.com>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>>>> wrote:
>>>>>
>>>>> I just noticed something interesting, since I
>>>>> have
>>>>> /etc under
>>>>> version control: /etc/mtab changed thusly:
>>>>>
>>>>> -tmpfs /dev/shm tmpfs
>>>>>
>>>>> rw,rootcontext="system_u:______object_r:tmpfs_t:s0" 0 0
>>>>>
>>>>>
>>>>> +tmpfs /dev/shm tmpfs rw 0 0
>>>>>
>>>>> Does this mean anything to our troubleshooting?
>>>>>
>>>>> Thanks,
>>>>> Kev
>>>>>
>>>>>
>>>>> On 2013-09-04 2:02 PM, Kevin Field wrote:
>>>>>
>>>>> Yeah, it's still
>>>>>
>>>>> tmpfs 5.9G 0 5.9G 0%
>>>>> /dev/shm
>>>>>
>>>>> The really odd thing is, currently, it's
>>>>> telling me
>>>>> this if I try to
>>>>> access it from OLDDC, running Windows Server
>>>>> 2003. But
>>>>> if I
>>>>> remote into
>>>>> another computer (GEYSER) on the network
>>>>> that's running
>>>>> Windows
>>>>> XP, I
>>>>> can access \\NEWDC just fine. Back to OLDDC
>>>>> and it still
>>>>> doesn't work.
>>>>>
>>>>> Besides the OS I noticed another difference,
>>>>> running "echo
>>>>> %logonserver%" from GEYSER, it reports \\G5,
>>>>> whereas
>>>>> running that on
>>>>> OLDDC reports \\OLDDC. I know this is
>>>>> normal
>>>>> behaviour, but I
>>>>> wonder if
>>>>> it has anything to do with it. I also
>>>>> wonder
>>>>> if, if I
>>>>> leave GEYSER
>>>>> logged in long enough, I'll have the same
>>>>> result on it
>>>>> as I do
>>>>> on OLDDC.
>>>>>
>>>>> So nobody else is having this browsability
>>>>> problem, eh?
>>>>>
>>>>> Kev
>>>>>
>>>>> On 2013-08-24 1:41 PM, Kevin Field wrote:
>>>>>
>>>>> Hmm...it hasn't been long enough since a
>>>>> restart yet,
>>>>> because it's not
>>>>> doing it ATM, but nonetheless if it's a
>>>>> question of
>>>>> an extra
>>>>> 45 mb I
>>>>> think we have it covered:
>>>>>
>>>>> tmpfs 5.9G 0 5.9G
>>>>> 0% /dev/shm
>>>>>
>>>>> But I'll check anyway next opportunity
>>>>> and
>>>>> report
>>>>> back if it's a
>>>>> positive.
>>>>>
>>>>> Kev
>>>>>
>>>>> On 2013-08-24 11:51 AM, Ricky Nance
>>>>> wrote:
>>>>>
>>>>> I wonder if your hitting the
>>>>> /run/lock
>>>>> fill up that
>>>>> another user
>>>>> reported on a week or two ago (they
>>>>> are using
>>>>> ubuntu). I
>>>>> think the
>>>>> solution was to make that tmpfs
>>>>> partition
>>>>> bigger (like
>>>>> 50 mb instead of
>>>>> 5 mb). next time it is unresponsive
>>>>> check and
>>>>> see what
>>>>> the output of 'df
>>>>> -h' is.
>>>>>
>>>>> Ricky
>>>>>
>>>>>
>>>>> On Sat, Aug 24, 2013 at 10:02 AM,
>>>>> Kevin Field
>>>>> <kev at brantaero.com
>>>>> <mailto:kev at brantaero.com> <mailto:kev at brantaero.com
>>>>> <mailto:kev at brantaero.com>>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>>>
>>>>> <mailto:kev at brantaero.com
>>>>> <mailto:kev at brantaero.com>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>
>>>>> <mailto:kev at brantaero.com
>>>>> <mailto:kev at brantaero.com>>>>>
>>>>>
>>>>> wrote:
>>>>>
>>>>> I've upgraded to 4.0.9 and this
>>>>> behaviour
>>>>> persists.
>>>>>
>>>>> Should I file a bug report, do
>>>>> you think? �Is
>>>>> nobody else
>>>>> experiencing this?
>>>>>
>>>>> Thanks,
>>>>>
>>>>> Kev
>>>>>
>>>>> On 2013-08-20 11:40 AM,
>>>>> Kristofer
>>>>> Pettijohn wrote:
>>>>>
>>>>> You may want to see if
>>>>> it is
>>>>> this bug,
>>>>> which is
>>>>> fixed in 4.0.9:
>>>>> https://bugzilla.samba.org/________show_bug.cgi?id=9820
>>>>> <https://bugzilla.samba.org/______show_bug.cgi?id=9820>
>>>>>
>>>>> <https://bugzilla.samba.org/______show_bug.cgi?id=9820
>>>>> <https://bugzilla.samba.org/____show_bug.cgi?id=9820>>
>>>>>
>>>>>
>>>>>
>>>>> <https://bugzilla.samba.org/______show_bug.cgi?id=9820
>>>>> <https://bugzilla.samba.org/____show_bug.cgi?id=9820>
>>>>> <https://bugzilla.samba.org/____show_bug.cgi?id=9820
>>>>> <https://bugzilla.samba.org/__show_bug.cgi?id=9820>>>
>>>>>
>>>>>
>>>>>
>>>>> <https://bugzilla.samba.org/______show_bug.cgi?id=9820
>>>>> <https://bugzilla.samba.org/____show_bug.cgi?id=9820>
>>>>> <https://bugzilla.samba.org/____show_bug.cgi?id=9820
>>>>> <https://bugzilla.samba.org/__show_bug.cgi?id=9820>>
>>>>>
>>>>> <https://bugzilla.samba.org/____show_bug.cgi?id=9820
>>>>> <https://bugzilla.samba.org/__show_bug.cgi?id=9820>
>>>>> <https://bugzilla.samba.org/__show_bug.cgi?id=9820
>>>>> <https://bugzilla.samba.org/show_bug.cgi?id=9820>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> ------------------------------________------------------------__--__--__--__------------
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> *From: *"Kevin Field"
>>>>> <kev at brantaero.com <mailto:kev at brantaero.com>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>>
>>>>> <mailto:kev at brantaero.com
>>>>> <mailto:kev at brantaero.com>
>>>>> <mailto:kev at brantaero.com
>>>>> <mailto:kev at brantaero.com>>>
>>>>> <mailto:kev at brantaero.com
>>>>> <mailto:kev at brantaero.com>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>>
>>>>> <mailto:kev at brantaero.com <mailto:kev at brantaero.com>
>>>>> <mailto:kev at brantaero.com
>>>>> <mailto:kev at brantaero.com>>>>>
>>>>> *To: *samba at lists.samba.org
>>>>> <mailto:samba at lists.samba.org>
>>>>> <mailto:samba at lists.samba.org
>>>>> <mailto:samba at lists.samba.org>>
>>>>> <mailto:samba at lists.samba.org
>>>>> <mailto:samba at lists.samba.org>
>>>>> <mailto:samba at lists.samba.org
>>>>> <mailto:samba at lists.samba.org>>__>
>>>>> <mailto:samba at lists.samba.org
>>>>> <mailto:samba at lists.samba.org>
>>>>> <mailto:samba at lists.samba.org
>>>>> <mailto:samba at lists.samba.org>>
>>>>>
>>>>> <mailto:samba at lists.samba.org
>>>>> <mailto:samba at lists.samba.org>
>>>>> <mailto:samba at lists.samba.org
>>>>> <mailto:samba at lists.samba.org>>__>__>
>>>>>
>>>>> *Sent: *Tuesday, August 20,
>>>>> 2013
>>>>> 9:38:32 AM
>>>>> *Subject: *[Samba] AD DC
>>>>> eventually not
>>>>> browsable without
>>>>> restart
>>>>>
>>>>>
>>>>> I have a SerNet Samba 4.0.8
>>>>> AD DC
>>>>> running on
>>>>> CentOS 6.4 (newdc)
>>>>> replicating from a W2K3 DC
>>>>> (olddc).
>>>>> �When I
>>>>> first launch Samba
>>>>> using
>>>>> `sudo samba`, I can go to
>>>>> the
>>>>> Windows
>>>>> server
>>>>> and browse to
>>>>> \\newdc in
>>>>> Explorer, and I see
>>>>> mytestshare, netlogon,
>>>>> printers, sysvol, and
>>>>> "Printers and Faxes".
>>>>>
>>>>> After a while (I'm not sure
>>>>> how long
>>>>> precisely,
>>>>> but under 24
>>>>> hours) I
>>>>> could not navigate to
>>>>> \\newdc
>>>>> without the
>>>>> following error:
>>>>>
>>>>> ---------------------------
>>>>> \\newdc
>>>>> ---------------------------
>>>>> \\newdc is not accessible.
>>>>> You might
>>>>> not have
>>>>> permission to
>>>>> use this
>>>>> network resource. Contact
>>>>> the
>>>>> administrator of
>>>>> this server to
>>>>> find out
>>>>> if you have access
>>>>> permissions.
>>>>>
>>>>> The Server service is not
>>>>> started.
>>>>> ---------------------------
>>>>> OK
>>>>> ---------------------------
>>>>>
>>>>> But in the interim, I had
>>>>> not
>>>>> been doing
>>>>> anything in the system,
>>>>> so I'm
>>>>> not sure what might have
>>>>> caused it.
>>>>> �One time
>>>>> it even happened
>>>>> on a
>>>>> weekend when no backup or
>>>>> anything
>>>>> particularly
>>>>> special is
>>>>> scheduled
>>>>> while I was away.
>>>>>
>>>>> Anyway, running `sudo
>>>>> killall
>>>>> samba`
>>>>> and then
>>>>> `sudo samba`
>>>>> makes it
>>>>> suddenly browsable again.
>>>>>
>>>>> This is happening every
>>>>> day.
>>>>> �I guess
>>>>> it would
>>>>> be best to figure
>>>>> this
>>>>> problem out before we make
>>>>> Samba the
>>>>> only DC.
>>>>>
>>>>> Here's my smb.conf, mostly
>>>>> set up by
>>>>> samba-tool, and now a
>>>>> work in
>>>>> progress to add the
>>>>> extras we
>>>>> will use:
>>>>>
>>>>> # Global parameters
>>>>> [global]
>>>>> � � � � � workgroup =
>>>>> MYDOMAIN
>>>>> � � � � � realm =
>>>>> mydomain.lan
>>>>> � � � � � netbios name =
>>>>> NEWDC
>>>>> � � � � � server role =
>>>>> active
>>>>> directory domain
>>>>> controller
>>>>> � � � � � server services =
>>>>> rpc, nbt,
>>>>> wrepl,
>>>>> ldap, cldap, kdc,
>>>>> drepl,
>>>>> winbind, ntp_signd, kcc,
>>>>> dnsupdate,
>>>>> smb, dns
>>>>> � � � � � allow dns
>>>>> updates =
>>>>> true
>>>>> � � � � � dns forwarder =
>>>>> 192.168.1.1
>>>>> # � � � �dns recursive
>>>>> queries = yes
>>>>> � � � � � dcerpc endpoint
>>>>> servers =
>>>>> epmapper,
>>>>> wkssvc, rpcecho,
>>>>> samr,
>>>>> netlogon, lsarpc, spoolss,
>>>>> drsuapi,
>>>>> dssetup,
>>>>> unixinfo, browser,
>>>>> eventlog6, backupkey,
>>>>> dnsserver,
>>>>> winreg, srvsvc
>>>>> # � � � dcerpc endpoint
>>>>> servers =
>>>>> winreg srvsvc
>>>>> � � � � � load printers =
>>>>> yes
>>>>> � � � � � printing = cups
>>>>>
>>>>> [netlogon]
>>>>> � � � � � path =
>>>>>
>>>>> /var/lib/samba/sysvol/________mydomain.lan/scripts
>>>>>
>>>>>
>>>>> � � � � � read only = No
>>>>>
>>>>> [sysvol]
>>>>> � � � � � path =
>>>>> /var/lib/samba/sysvol
>>>>> � � � � � read only = No
>>>>>
>>>>> [printers]
>>>>> � � � �comment = All
>>>>> Printers
>>>>> � � � �path =
>>>>> /var/spool/samba
>>>>> � � � �browseable = Yes
>>>>> � � � �read only = No
>>>>> � � � �printable = Yes
>>>>>
>>>>> [print$]
>>>>> � � � �comment = Point and
>>>>> Print
>>>>> Printer Drivers
>>>>> � � � �path =
>>>>> /var/lib/samba/printing
>>>>> � � � �read only = No
>>>>>
>>>>> [mytestshare]
>>>>> � � � � � path =
>>>>> /srv/mytestshare/
>>>>> � � � � � read only = No
>>>>>
>>>>>
>>>>> Any ideas?
>>>>>
>>>>> Thanks,
>>>>> Kev
>>>>> --
>>>>> To unsubscribe from this
>>>>> list
>>>>> go to the
>>>>> following URL and read
>>>>> the
>>>>> instructions:
>>>>>
>>>>>
>>>>> �https://lists.samba.org/________mailman/options/samba
>>>>> <https://lists.samba.org/______mailman/options/samba>
>>>>> <https://lists.samba.org/______mailman/options/samba
>>>>> <https://lists.samba.org/____mailman/options/samba>>
>>>>>
>>>>>
>>>>> <https://lists.samba.org/______mailman/options/samba
>>>>> <https://lists.samba.org/____mailman/options/samba>
>>>>> <https://lists.samba.org/____mailman/options/samba
>>>>> <https://lists.samba.org/__mailman/options/samba>>>
>>>>>
>>>>>
>>>>>
>>>>> <https://lists.samba.org/______mailman/options/samba
>>>>> <https://lists.samba.org/____mailman/options/samba>
>>>>> <https://lists.samba.org/____mailman/options/samba
>>>>> <https://lists.samba.org/__mailman/options/samba>>
>>>>>
>>>>> <https://lists.samba.org/____mailman/options/samba
>>>>> <https://lists.samba.org/__mailman/options/samba>
>>>>> <https://lists.samba.org/__mailman/options/samba
>>>>> <https://lists.samba.org/mailman/options/samba>>>>
>>>>>
>>>>> --
>>>>> To unsubscribe from this
>>>>> list go
>>>>> to the
>>>>> following
>>>>> URL and read the
>>>>> instructions:
>>>>>
>>>>>
>>>>> �https://lists.samba.org/________mailman/options/samba
>>>>> <https://lists.samba.org/______mailman/options/samba>
>>>>> <https://lists.samba.org/______mailman/options/samba
>>>>> <https://lists.samba.org/____mailman/options/samba>>
>>>>>
>>>>>
>>>>> <https://lists.samba.org/______mailman/options/samba
>>>>> <https://lists.samba.org/____mailman/options/samba>
>>>>> <https://lists.samba.org/____mailman/options/samba
>>>>> <https://lists.samba.org/__mailman/options/samba>>>
>>>>>
>>>>>
>>>>> <https://lists.samba.org/______mailman/options/samba
>>>>> <https://lists.samba.org/____mailman/options/samba>
>>>>> <https://lists.samba.org/____mailman/options/samba
>>>>> <https://lists.samba.org/__mailman/options/samba>>
>>>>>
>>>>> <https://lists.samba.org/____mailman/options/samba
>>>>> <https://lists.samba.org/__mailman/options/samba>
>>>>> <https://lists.samba.org/__mailman/options/samba
>>>>> <https://lists.samba.org/mailman/options/samba>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
More information about the samba
mailing list