[Samba] Winbind + sernet Samba4 + CentOS 6.5 + AD

Rowland Penny rowlandpenny at googlemail.com
Thu Aug 28 08:12:44 MDT 2014 

On 28/08/14 15:03, Stephen Garcia wrote:
> Even after adding those four lines i still dont get anywhere with 
> klist -k, thou klist -e gives me my domain admin user's ticket 
> details, the one I used to join the domain.
what do you mean 'the one I used to join the domain' ?
>
> The strace output for klist -k shows some interesting missing files 
> that I'm not sure are relevant to the issue:
>
> ===================
> ...
> ...
> write(1, "Keytab name: FILE:/etc/krb5.keyt"..., 35) = 35
> open("/etc/krb5.keytab", O_RDONLY)      = -1 ENOENT (No such file or 
> directory)

Ah-ha, you don't seem to have a keytab, have you joined the domain ? if 
you have, leave the domain and then try joining again.

Rowland

> open("/usr/share/locale/locale.alias", O_RDONLY) = 3
> fstat(3, {st_mode=S_IFREG|0644, st_size=2512, ...}) = 0
> mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 
> 0) = 0x7fa5c764f000
> read(3, "# Locale name alias data base.\n#"..., 4096) = 2512
> read(3, "", 4096)                       = 0
> close(3)                                = 0
> munmap(0x7fa5c764f000, 4096)            = 0
> open("/usr/share/locale/en_US.UTF-8/LC_MESSAGES/mit-krb5.mo", 
> O_RDONLY) = -1 ENOENT (No such file or directory)
> open("/usr/share/locale/en_US.utf8/LC_MESSAGES/mit-krb5.mo", O_RDONLY) 
> = -1 ENOENT (No such file or directory)
> open("/usr/share/locale/en_US/LC_MESSAGES/mit-krb5.mo", O_RDONLY) = 3
> fstat(3, {st_mode=S_IFREG|0644, st_size=410, ...}) = 0
> mmap(NULL, 410, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7fa5c764f000
> close(3)                                = 0
> open("/usr/share/locale/en.UTF-8/LC_MESSAGES/mit-krb5.mo", O_RDONLY) = 
> -1 ENOENT (No such file or directory)
> open("/usr/share/locale/en.utf8/LC_MESSAGES/mit-krb5.mo", O_RDONLY) = 
> -1 ENOENT (No such file or directory)
> open("/usr/share/locale/en/LC_MESSAGES/mit-krb5.mo", O_RDONLY) = -1 
> ENOENT (No such file or directory)
> write(2, "klist", 5)                    = 5
> write(2, ": ", 2)                       = 2
> open("/usr/share/locale/en_US.UTF-8/LC_MESSAGES/libc.mo", O_RDONLY) = 
> -1 ENOENT (No such file or directory)
> open("/usr/share/locale/en_US.utf8/LC_MESSAGES/libc.mo", O_RDONLY) = 
> -1 ENOENT (No such file or directory)
> open("/usr/share/locale/en_US/LC_MESSAGES/libc.mo", O_RDONLY) = -1 
> ENOENT (No such file or directory)
> open("/usr/share/locale/en.UTF-8/LC_MESSAGES/libc.mo", O_RDONLY) = -1 
> ENOENT (No such file or directory)
> open("/usr/share/locale/en.utf8/LC_MESSAGES/libc.mo", O_RDONLY) = -1 
> ENOENT (No such file or directory)
> open("/usr/share/locale/en/LC_MESSAGES/libc.mo", O_RDONLY) = -1 ENOENT 
> (No such file or directory)
> ...
> ...
> ===================
>
> -Stephen
>
> Stephen E. Garcia-Morales
> sgmorale at ringling.edu <mailto:sgmorale at ringling.edu>
> Ringling College of Art and Design
> .'. Nosce Te Ipsvm .'.
>
>
> On Thu, Aug 28, 2014 at 9:50 AM, Rowland Penny 
> <rowlandpenny at googlemail.com <mailto:rowlandpenny at googlemail.com>> wrote:
>
>     On 28/08/14 14:38, L.P.H. van Belle wrote:
>
>         add : these lines to your smb.conf stop and start samba and
>         klist -e again.
>
>             dedicated keytab file = /etc/krb5.keytab
>             kerberos method = secrets and keytab
>             client signing = if_required
>
>
>             -----Oorspronkelijk bericht-----
>             Van: sgmorale at ringling.edu <mailto:sgmorale at ringling.edu>
>             [mailto:samba-bounces at lists.samba.org
>             <mailto:samba-bounces at lists.samba.org>] Namens Stephen Garcia
>             Verzonden: donderdag 28 augustus 2014 15:11
>             Aan: steve
>             CC: samba at lists.samba.org <mailto:samba at lists.samba.org>
>             Onderwerp: Re: [Samba] Winbind + sernet Samba4 + CentOS
>             6.5 + AD
>
>             klist -k
>             Keytab name: FILE:/etc/krb5.keytab
>             klist: No such file or directory while starting keytab scan
>
>
>             Well, that's something, but strange seeing as kinit does not
>             give me any
>             errors that I'm aware of.
>
>             -Stephen
>
>             Stephen E. Garcia-Morales
>             sgmorale at ringling.edu <mailto:sgmorale at ringling.edu>
>             Ringling College of Art and Design
>             .'. Nosce Te Ipsvm .'.
>
>     You also need to add:
>
>     winbind refresh tickets = true
>
>     Rowland
>
>     -- 
>     To unsubscribe from this list go to the following URL and read the
>     instructions: https://lists.samba.org/mailman/options/samba
>
>

More information about the samba mailing list