[Samba] Login to LDAP from new version FortiClientEMS
Rowland Penny
rpenny at samba.org
Sat Nov 2 10:19:09 UTC 2024
On Sat, 2 Nov 2024 09:46:20 +0100
Programnet via samba <samba at lists.samba.org> wrote:
> In attach pcap
>
> My samba config
> [global]
> netbios name = DC1
> realm = XXXX.LOCAL
> server role = active directory domain controller
> server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc,
> drepl, winbindd, ntp_signd, kcc, dnsupdate
> workgroup = XXXX
> log level = 1 auth_audit:3@/var/log/samba/auth.log
> log file = /var/log/samba/%m.log
>
> [sysvol]
> path = /var/lib/samba/sysvol
> read only = No
>
> [netlogon]
> path = /var/lib/samba/sysvol/wenus.local/scripts
> read only = No
>
If you are going to sanitise your smb.conf, do it everywhere :-)
If your TLD is '.local', then I take it you missed that it is reserved
for Bonjour and Avahi, so if Avahi is running on the DC, you should
turn it off (and everywhere else in your domain).
You also seem to be running Bind9, is this set up correctly ?
Please post the contents of:
/etc/bind/named.conf
/etc/bind/named.conf.options
/etc/bind/named.conf.local
I don't use forticlient, but it seems there are various ways to connect
to it, which variant are you using ?
Rowland
More information about the samba
mailing list