[Samba] Classicupgrade succeded with Sernet-samba-4.2.1 AD, but Kinit not wokring
L.P.H. van Belle
belle at bazuin.nl
Wed Apr 29 07:21:09 MDT 2015
in fact and handy to know..
( from : man smb.conf )
this is the default of samba :
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns
this is my running server service settting :
( samba-tool testparm )
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, ntp_signd, kcc, dnsupdate, winbind
In my case i run samba 4.2.1 with bind9_dlz and old style winbind ( 4.1 winbind behavior )
I only set in smb.conf
server services = -dns -winbindd +winbind
which does the follwoing:
disabled internal dns,
disable winbindd,
enable winbind
and use other defaults.
so for you, this should be the same.:
server services = -winbindd +winbind
all other are enabled by default.
Greetz,
Louis
>-----Oorspronkelijk bericht-----
>Van: mariopiorusso at ie.ibm.com
>[mailto:samba-bounces at lists.samba.org] Namens Mario Pio Russo
>Verzonden: woensdag 29 april 2015 15:06
>Aan: Rowland Penny
>CC: samba at lists.samba.org; samba-bounces at lists.samba.org
>Onderwerp: Re: [Samba] Classicupgrade succeded with
>Sernet-samba-4.2.1 AD, but Kinit not wokring
>
>Great Rowland!!!
>
>in fact by using the line
>
>server service = +dns
>
>I am able to have the internal DNS and the kerberos server working!!
>
>now kinit works just fine
>
>thanks!
>
>(btw, do we have the list of "services" that we can put in the
>smb.conf?)
>
>_______________________________________________________________
>____________________________
>
>Mario Pio Russo, System Admin SWG IT Services Dublin, Phone &
>FAX: +353 1
>815 2236, eMail: mariopiorusso at ie.ibm.com
>IBM Ireland Product Distribution Limited registered in Ireland
>with number
>92815. Registered Office: IBM House, Shelbourne Road,
>Ballsbridge, Dublin 4
>
>(Embedded image moved to file: pic39020.gif)
>
>
>
>From: Rowland Penny <rowlandpenny at googlemail.com>
>To: samba at lists.samba.org
>Date: 29/04/2015 13:58
>Subject: Re: [Samba] Classicupgrade succeded with
>Sernet-samba-4.2.1 AD,
> but Kinit not wokring
>Sent by: samba-bounces at lists.samba.org
>
>
>
>On 29/04/15 13:10, Mario Pio Russo wrote:
>> Good Day All
>>
>> I have been trying to upgrade from samba 3 to samba 4.2.1 on
>Ubuntu 14.4
>> using the sernet-samba package.
>>
>> the upgrade seems to work fine and the samba4 comes up correctlly,
>>
>> I have also run the following script to get rid of bug
>>
>>
>>
>https://git.samba.org/?p=samba.git;a=blob_plain;f=source4/scrip
ting/devel/chgtdcpass;h=>4f5ea15a80c2862daf170a5657658a8163174f8a;hb=HEAD
>
>>
>>
>>
>> I am able to resolve some basic dns entry using the host command, and
>> that's good, however any kinit does not work and return
>>
>> kinit mariopio at CCDC.LAN
>> kinit: Cannot contact any KDC for realm 'CCDC.LAN' while
>getting initial
>> credentials
>>
>>
>> my smb.conf file is the following
>>
>> # Global parameters
>> [global]
>> workgroup = CCDC
>> realm = ccdc.lan
>> netbios name = CCDC-SAMBA4
>> server role = active directory domain controller
>> idmap_ldb:use rfc2307 = yes
>> dns forwarder = 9.0.138.50
>> server services = dns winbind
>> #server services = winbind
>>
>>
>> [netlogon]
>> path = /var/lib/samba/sysvol/ccdc.lan/scripts
>> read only = No
>>
>> [sysvol]
>> path = /var/lib/samba/sysvol
>> read only = No
>>
>>
>> do you have any suggestion?
>>
>> thanks
>>
>>
>Yes, by using this 'server services = dns winbind' as it is, you have
>turned off *all* the other server services!
>
>Rowland
>
>--
>To unsubscribe from this list go to the following URL and read the
>instructions: https://lists.samba.org/mailman/options/samba
>
>
>--
>To unsubscribe from this list go to the following URL and read the
>instructions: https://lists.samba.org/mailman/options/samba
>
More information about the samba
mailing list