[Samba] Share management, user rights, core dump
Franks Andy (RLZ) IT Systems Engineer
Andy.Franks at sath.nhs.uk
Thu Apr 17 16:24:19 MDT 2014
Hi All,
First post so I hope this is pitched right.
I've been successfully using 3.6 as an AD authenticated (winbind) file
server for a while, and decided to have a poke around with 4 (I'd read
somewhere that someone had got zfs filesystems to work with full windows
acls with samba 4).
I've got as far as compiling 4.1.6 and setting up a similar share.
Server role = member server, security = ads.
Problems so far are :
Lack of SeDiskOperator privilege for Domain Admins users (logging when
trying to change share permissions through compmgmt.msc suggested a lack
of that role). This was afaik automatic with 3.6. Trying to set it up :
net rpc rights grant franksa SeDiskOperator -U administrator
Enter administrator's password:
Failed to grant privileges for franksa (NT_STATUS_ACCESS_DENIED)
Debug :
rpc command: LSA_ADDACCOUNTRIGHTS
_lsa_AddAccountRights: access DENIED (requested: 0x0000000b, granted:
0x0000000a)
Failed to grant privileges for franksa (NT_STATUS_ACCESS_DENIED)
.. so I tried to add Domain Admins into the Administrators group :
./net sam addmem Administrators "SATH\Domain Admins" -U administrator
Adding local group member failed with LDAP_NO_SUCH_OBJECT
It doesn't ask for credentials here, and the LDAP reference is
confusing.
Anyway, so I try and list the members of the Administrators group and
get this:
./net sam listmem Administrators
Bad talloc magic value - unknown value
PANIC (pid 11260): Bad talloc magic value - unknown value
BACKTRACE: 16 stack frames:
#0 /usr/local/samba/lib/libsmbconf.so.0(log_stack_trace+0x1f)
[0x7fb8826d6947]
#1 /usr/local/samba/lib/libsmbconf.so.0(smb_panic_s3+0x6f)
[0x7fb8826d6792]
#2 /usr/local/samba/lib/libsamba-util.so.0(smb_panic+0x28)
[0x7fb883d3bc40]
#3 /usr/local/samba/lib/private/libtalloc.so.2(+0x21d2)
[0x7fb8824ad1d2]
#4 /usr/local/samba/lib/private/libtalloc.so.2(+0x2260)
[0x7fb8824ad260]
#5 /usr/local/samba/lib/private/libtalloc.so.2(+0x22d7)
[0x7fb8824ad2d7]
#6 /usr/local/samba/lib/private/libtalloc.so.2(_talloc_steal_loc+0x3a)
[0x7fb8824ae7c6]
#7 /usr/local/samba/lib/libpdb.so.0(+0x56fd2) [0x7fb880c6dfd2]
#8 /usr/local/samba/lib/libpdb.so.0(pdb_enum_aliasmem+0x42)
[0x7fb880c3ed51]
#9 ./net(+0x84d05) [0x7fb886702d05]
#10 ./net(net_run_function+0x9f) [0x7fb886707ee7]
#11 ./net(net_sam+0x9a) [0x7fb88670590c]
#12 ./net(net_run_function+0x9f) [0x7fb886707ee7]
#13 ./net(main+0xcdb) [0x7fb8866c0f51]
#14 /lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xf5)
[0x7fb87e4bdde5]
#15 ./net(+0x230d9) [0x7fb8866a10d9]
Can not dump core: corepath not set up
I've also noticed clicking on users in the computer management snap
works ok, but groups complains with lots instances of two errors :
"The specified local group does not exist"
"No mapping between account names and security ids was done"
Getent group and wbinfo -g seem to work fine.
Anyone any ideas on (any) of this?
OS is Ubuntu 13.10
Thanks
Andy
More information about the samba
mailing list