[Samba] [SAMBA] Net groupmap list strange result

Elias Pereira empbilly at gmail.com
Mon Dec 22 13:59:21 MST 2014 

No stupid question. For me there is not. Better to ask than to stay with
the doubt.

I believe that had not used this command, but now I have.

But I am still with the error:
"Error while trying to join domain" poa "Logon failure: unknown user name
or bad password."

About the results of the command "net groupmap list", you would have any
tips on how I can solve this problem?

And one more question. :D

You took one look at my smb.conf?

On Mon, Dec 22, 2014 at 6:11 PM, Elias Pereira <empbilly at gmail.com> wrote:

> No stupid question. For me there is not. Better to ask than to stay with
> the doubt.
>
> I believe that had not used this command, but now I have.
>
> But I am still with the error:
> "Error while trying to join domain" poa "Logon failure: unknown user name
> or bad password."
>
> You took one look at my smb.conf? Would have a problem?
>
> On Mon, Dec 22, 2014 at 5:12 PM, Rowland Penny <
> rowlandpenny at googlemail.com> wrote:
>
>>  On 22/12/14 19:02, Elias Pereira wrote:
>>
>> Hi, i'm running the samba as "classic primary domain controller" in my
>> lab test.
>>
>>  In my lab tests, at first everything seems to be working properly.
>>
>>  1. I set the Samba4 as "classic primary domain controller." *smb.conf
>> in the pastebin link*.
>> 2. I set up an external ldap, with the equal ldif base what we have in
>> production here on campus.
>> 3. I set up an bind9 as DNS server.
>>
>>  I tried to enter a machine with windows xp in the domain. When was
>> shown the login and password window, I put the login and password of a user
>> who is in the ldap base, and there was the error that the "Error while
>> trying to domain join "poa" Logon failure: unknown user name or bad
>> password".
>>
>>  So, I tried a few things, but without success.
>>
>>  When I tried to run the commands mentioned above, as seen, more
>> mistakes happen. :(
>>
>>
>> OK, stupid question first, have you run 'smbpasswd -w' and supplied the
>> ldap admin passwd ?
>>
>> Also, you cannot use samba-tool with a classic domain control, it is for
>> the Active Directory domain controller.
>>
>> Rowland
>>
>>
>>  http://pastebin.com/raw.php?i=3mUJB9fA
>>
>> On Mon, Dec 22, 2014 at 4:41 PM, Rowland Penny <
>> rowlandpenny at googlemail.com> wrote:
>>
>>> On 22/12/14 17:47, Elias Pereira wrote:
>>>
>>>> And now, I run the command "samba-tool user list" and the result is as
>>>> follows:
>>>>
>>>>  *# samba-tool user list*
>>>> *ldb_wrap open of secrets.ldb*
>>>> *Could not find machine account in secrets database: Failed to fetch
>>>> machine account password from secrets.ldb: Could not find entry to match
>>>> filter: '(&(flatname=POA)(objectclass=primaryDomain))' base: 'cn=Primary
>>>> Domains': No such object: (null) and failed to fetch
>>>> SECRETS/MACHINE_PASSWORD/POA from /var/lib/samba/private/secrets.tdb:
>>>>  NT_STATUS_CANT_ACCESS_DOMAIN_INFO*
>>>> *ERROR(ldb): uncaught exception - ldb_search: invalid basedn '(null)'*
>>>> *  File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py",
>>>> line
>>>> 175, in _run*
>>>> *    return self.run(*args, **kwargs)*
>>>> *  File "/usr/lib/python2.7/dist-packages/samba/netcmd/user.py", line
>>>> 271,
>>>> in run*
>>>> *    attrs=["samaccountname"])*
>>>>
>>>>
>>>>
>>>>
>>>> On Mon, Dec 22, 2014 at 12:05 PM, Elias Pereira <empbilly at gmail.com>
>>>> wrote:
>>>>
>>>>  Guys,
>>>>>
>>>>> In my lab test when I run the command "net groupmap list" the result
>>>>> is as
>>>>> follows:
>>>>>
>>>>>  *# net groupmap list*
>>>>> *Domain Admins (S-1-5-21-187220369-3628530160-3539241734-512) -> 512*
>>>>> *Domain Users (S-1-5-21-187220369-3628530160-3539241734-513) -> 513*
>>>>> *Domain Guests (S-1-5-21-187220369-3628530160-3539241734-514) -> 514*
>>>>> *Domain Computers (S-1-5-21-187220369-3628530160-3539241734-515) ->
>>>>> 515*
>>>>>
>>>>>
>>>>> I believe that would have to be like this:
>>>>>
>>>>>  *# net groupmap list*
>>>>> *Domain Admins (S-1-5-21-187220369-3628530160-3539241734-512) -> Domain
>>>>> Admins*
>>>>> *Domain Users (S-1-5-21-187220369-3628530160-3539241734-513) -> Domain
>>>>> Users*
>>>>> *Domain Guests (S-1-5-21-187220369-3628530160-3539241734-514) -> Domain
>>>>> Guests*
>>>>> *Domain Computers (S-1-5-21-187220369-3628530160-3539241734-515) ->
>>>>> Domain
>>>>> Computers*
>>>>>
>>>>>
>>>>> Any idea what could have happened?
>>>>>
>>>>> Att.
>>>>> --
>>>>> Elias Pereira
>>>>>
>>>>>
>>>>
>>>>
>>> Hi, could you provide a bit more info, how are you running samba, what
>>> version and what is in your smb.conf.
>>>
>>> Rowland
>>>
>>> --
>>> To unsubscribe from this list go to the following URL and read the
>>> instructions:  https://lists.samba.org/mailman/options/samba
>>>
>>
>>
>>
>>  --
>> Elias Pereira
>>
>>
>>
>
>
> --
> Elias Pereira
>



-- 
Elias Pereira

More information about the samba mailing list