[Samba] Samba4 Domain member only usable with ip

Daniel Müller mueller at tropenklinik.de
Tue Jul 28 05:50:44 UTC 2015


What about nslookup your.domian.memberserver!? or dig??
Are you running a reverse dns zone???

Greetings
Daniel




EDV Daniel Müller

Leitung EDV
Tropenklinik Paul-Lechler-Krankenhaus
Paul-Lechler-Str. 24
72076 Tübingen 
Tel.: 07071/206-463, Fax: 07071/206-499
eMail: mueller at tropenklinik.de
Internet: www.tropenklinik.de 



-----Ursprüngliche Nachricht-----
Von: samba [mailto:samba-bounces at lists.samba.org] Im Auftrag von zorg
Gesendet: Montag, 27. Juli 2015 17:51
An: samba at lists.samba.org
Betreff: Re: [Samba] Samba4 Domain member only usable with ip

Le 27/07/2015 17:02, Rowland Penny a écrit :
> On 27/07/15 15:51, zorg wrote:
>> Le 27/07/2015 16:16, Rowland Penny a écrit :
>>> On 27/07/15 15:13, zorg wrote:
>>>> HI,
>>>>
>>>> I'm using debian jessie
>>>> I have followed this instruction
>>>>
>>>> https://wiki.samba.org/index.php/Setup_a_Samba_AD_Member_Server
>>>>
>>>> Here is :
>>>>
>>>> [global]
>>>>     workgroup = DOM
>>>>     realm = DOM.LOCAL
>>>>     server role = member server
>>>>     security = ADS
>>>>     map to guest = Bad User
>>>>     dedicated keytab file = /etc/krb5.keytab
>>>>     kerberos method = dedicated keytab
>>>>     syslog = 0
>>>>     log file = /var/log/samba/log.%m
>>>>     max log size = 1000
>>>>     dns proxy = No
>>>>     panic action = /usr/share/samba/panic-action %d
>>>>     winbind enum users = Yes
>>>>     winbind enum groups = Yes
>>>>     winbind use default domain = Yes
>>>>     winbind nss info = rfc2307
>>>>     winbind refresh tickets = Yes
>>>>     idmap config DOM:range = 10000-99999
>>>>     idmap config DOM:backend = rid
>>>>     idmap config *:range = 2000-9999
>>>>     idmap config * : backend = tdb
>>>>     create mask = 0664
>>>>     force create mode = 0664
>>>>     force directory mode = 0775
>>>>
>>>> [homes]
>>>>     comment = Home Directories
>>>>     valid users = %S
>>>>     create mask = 0700
>>>>     directory mask = 0700
>>>>     browseable = No
>>>>
>>>>
>>>>
>>>> Le 27/07/2015 15:47, Rowland Penny a écrit :
>>>>> On 27/07/15 14:37, zorg wrote:
>>>>>> Hi,
>>>>>> Hope someone can help
>>>>>> I have setup a domain menber samba4 server
>>>>>
>>>>> How have you set it up, what howto or instructions did you follow ?
>>>>> What OS ?
>>>>> Please post the smb.conf from the member server
>>>>>
>>>>>>
>>>>>> I can access it perfectly using his ip \\192.168.0.3
>>>>>
>>>>> How are you trying to access the server ?
>>>>>
>>>>>>
>>>>>>
>>>>>> But if I use his name \\shareserver it ask me for a password like 
>>>>>> if i was not join
>>>>>>
>>>>>> dns are working
>>>>>
>>>>> What DNS are you using ?
>>>>>
>>>>> Rowland
>>>>>
>>>>>>
>>>>>> Don't really know where to look to find the clue
>>>>>>
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>
>>>>
>>>
>>> What about the other two questions ?
>>>
>>> How are you trying to access the server ?
>>> What DNS are you using ?
>>>
>>> Rowland
>>>
>>>
>> Look at the log I got this error when using dnsname not wih the ip
>>
>> [2015/07/27 16:50:06.225754,  1]
>> ../source3/librpc/crypto/gse.c:465(gse_get_server_auth_token)
>>   gss_accept_sec_context failed with [ Miscellaneous failure (see
>> text): Failed to find cifs/smbfs.DOM.local at DOM.LOCAL(kvno 2) in 
>> keytab MEMORY:cifs_srv_keytab (arcfour-hmac-md5)]
>>
>
> Are you actually using a domain that ends in .local ? if so, try 
> turning off Avahi on the member server and then try again.
>
> Rowland
>
>
yes it end with .local
I don't have avahi
samba is running in the lxc container



-- 
probeSys - spécialiste GNU/Linux
site web : http://www.probesys.com


-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba




More information about the samba mailing list