[Samba] [SAMBA] Net groupmap list strange result
Rowland Penny
rowlandpenny at googlemail.com
Mon Dec 22 12:12:51 MST 2014
On 22/12/14 19:02, Elias Pereira wrote:
> Hi, i'm running the samba as "classic primary domain controller" in my
> lab test.
>
> In my lab tests, at first everything seems to be working properly.
>
> 1. I set the Samba4 as "classic primary domain controller." */smb.conf
> in the pastebin link/*.
> 2. I set up an external ldap, with the equal ldif base what we have in
> production here on campus.
> 3. I set up an bind9 as DNS server.
>
> I tried to enter a machine with windows xp in the domain. When was
> shown the login and password window, I put the login and password of a
> user who is in the ldap base, and there was the error that the "Error
> while trying to domain join "poa" Logon failure: unknown user name or
> bad password".
>
> So, I tried a few things, but without success.
>
> When I tried to run the commands mentioned above, as seen, more
> mistakes happen. :(
>
OK, stupid question first, have you run 'smbpasswd -w' and supplied the
ldap admin passwd ?
Also, you cannot use samba-tool with a classic domain control, it is for
the Active Directory domain controller.
Rowland
> http://pastebin.com/raw.php?i=3mUJB9fA
>
> On Mon, Dec 22, 2014 at 4:41 PM, Rowland Penny
> <rowlandpenny at googlemail.com <mailto:rowlandpenny at googlemail.com>> wrote:
>
> On 22/12/14 17:47, Elias Pereira wrote:
>
> And now, I run the command "samba-tool user list" and the
> result is as
> follows:
>
> *# samba-tool user list*
> *ldb_wrap open of secrets.ldb*
> *Could not find machine account in secrets database: Failed to
> fetch
> machine account password from secrets.ldb: Could not find
> entry to match
> filter: '(&(flatname=POA)(objectclass=primaryDomain))' base:
> 'cn=Primary
> Domains': No such object: (null) and failed to fetch
> SECRETS/MACHINE_PASSWORD/POA from
> /var/lib/samba/private/secrets.tdb:
> NT_STATUS_CANT_ACCESS_DOMAIN_INFO*
> *ERROR(ldb): uncaught exception - ldb_search: invalid basedn
> '(null)'*
> * File
> "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line
> 175, in _run*
> * return self.run(*args, **kwargs)*
> * File
> "/usr/lib/python2.7/dist-packages/samba/netcmd/user.py", line 271,
> in run*
> * attrs=["samaccountname"])*
>
>
>
>
> On Mon, Dec 22, 2014 at 12:05 PM, Elias Pereira
> <empbilly at gmail.com <mailto:empbilly at gmail.com>> wrote:
>
> Guys,
>
> In my lab test when I run the command "net groupmap list"
> the result is as
> follows:
>
> *# net groupmap list*
> *Domain Admins
> (S-1-5-21-187220369-3628530160-3539241734-512) -> 512*
> *Domain Users
> (S-1-5-21-187220369-3628530160-3539241734-513) -> 513*
> *Domain Guests
> (S-1-5-21-187220369-3628530160-3539241734-514) -> 514*
> *Domain Computers
> (S-1-5-21-187220369-3628530160-3539241734-515) -> 515*
>
>
> I believe that would have to be like this:
>
> *# net groupmap list*
> *Domain Admins
> (S-1-5-21-187220369-3628530160-3539241734-512) -> Domain
> Admins*
> *Domain Users
> (S-1-5-21-187220369-3628530160-3539241734-513) -> Domain
> Users*
> *Domain Guests
> (S-1-5-21-187220369-3628530160-3539241734-514) -> Domain
> Guests*
> *Domain Computers
> (S-1-5-21-187220369-3628530160-3539241734-515) -> Domain
> Computers*
>
>
> Any idea what could have happened?
>
> Att.
> --
> Elias Pereira
>
>
>
>
> Hi, could you provide a bit more info, how are you running samba,
> what version and what is in your smb.conf.
>
> Rowland
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
>
>
>
>
> --
> Elias Pereira
More information about the samba
mailing list