[Samba] linux client join DC how?

Bob of Donelson Trophy bob at donelsontrophy.net
Mon Jan 5 07:17:50 MST 2015


 

Thanks, Rowland. I'll be checking that out. 
---

-------------------------

Bob Wooden of Donelson Trophy

615.885.2846 (main)
www.donelsontrophy.com [1]

"Everyone deserves an award!!"

On 2015-01-05 08:15, Rowland Penny wrote: 

> On 05/01/15 14:04, Bob of Donelson Trophy wrote:
> My shop is 10 minutes from my house. House and shop are connected by vpn (between two IpFire firewalls.) I do a lot of configuring and testing from home. Due to a Windows wake-on-lan issue (right now) I cannot wake the lone DC W7 client from home. When I get to work this morning, W7 client (thru ADUC) shows 'dtclient01' is connected to DC. Further testing (wbinfo, testjoin, etc.) shows 'dtclient01' is connected to DC. So, it's connected. more info as I collect it but, for now, I am connected. So, now the question becomes how to connect shares to 'dtclient01'? (Maybe this needs to become a new thread?) --- ------------------------- Bob Wooden of Donelson Trophy 615.885.2846 (main) www.donelsontrophy.com [1] [1 [1]] "Everyone deserves an award!!" On 2015-01-05 07:16, Rowland Penny wrote: On 05/01/15 12:57, Bob of Donelson Trophy wrote: This is my current krb5.conf file: root at dtclient01:~# cat /etc/krb5.conf [libdefaults] default_realm = DTSHRM.LAN dns_lookup_realm = false
dns_lookup_kdc = true ticket_lifetime = 24h forwardable = yes This is my current /etc/resolv.conf file. As I read, this should be "pointing" to my DC (192.168.16.54 in my case.) Is this correct? (The same thing a windows client requires, looking to the DC to resolve it's name?) root at dtclient01:~# cat /etc/resolv.conf # Generated by NetworkManager search dtshrm.lan nameserver 192.168.16.54 It might be saying this poorly so, I hope you get the idea. Thanks. Hmm, everything looks OK, is samba running ? if so stop it. Does /etc/krb5.keytab exist, if so delete it. Is the firewall running, if so, try stopping it temporarily. is Apparmor or Selinux running, if so, disable it temporarily. Rowland
 Links: ------ [1] http://www.donelsontrophy.com [1] 

Hi there appears to be a wiki page for that :-)

https://wiki.samba.org/index.php/VPN_Single_SignOn_with_Samba_AD [2]

Rowland

 

Links:
------
[1] http://www.donelsontrophy.com
[2] https://wiki.samba.org/index.php/VPN_Single_SignOn_with_Samba_AD


More information about the samba mailing list