<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Re: Samba &amp;amp; Win2003 integration in Operating System - Linux</title>
    <link>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547171#M39101</link>
    <description>When you use security = ADS you normally won't use ldap parameters.&lt;BR /&gt;&lt;BR /&gt;Check this link, it has a very simple tutorial to configure samba with ADS.&lt;BR /&gt;&lt;BR /&gt;&lt;A href="http://www.justlinux.com/forum/archive/index.php/t-118288.html" target="_blank"&gt;http://www.justlinux.com/forum/archive/index.php/t-118288.html&lt;/A&gt;</description>
    <pubDate>Wed, 09 Dec 2009 16:38:28 GMT</pubDate>
    <dc:creator>Ivan Ferreira</dc:creator>
    <dc:date>2009-12-09T16:38:28Z</dc:date>
    <item>
      <title>Samba &amp; Win2003 integration</title>
      <link>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547170#M39100</link>
      <description>Hi Guys,&lt;BR /&gt;&lt;BR /&gt;I am trying to integrate a SLES 10 sp2 with a windows 2003 sp1 environment. My PDC is the Win2003 box and I want to be able to share files from the linux box to my WinXP clients using samba. I am also trying to use ldap.&lt;BR /&gt;I have managed to join the domain, but the samba configuration has proved difficult. The smbd does not start but logs:&lt;BR /&gt;&lt;BR /&gt;log.smbd:&lt;BR /&gt;[2009/12/09 15:13:08, 0] smbd/server.c:main(944)&lt;BR /&gt;smbd version 3.0.28-0.5-1657-SUSE-CODE10 started.&lt;BR /&gt;&lt;BR /&gt;This is my smb.conf&lt;BR /&gt;[global]&lt;BR /&gt;workgroup = ABS2020&lt;BR /&gt;realm = ABS2020.COM&lt;BR /&gt;server string = SLES 10 Development Server&lt;BR /&gt;security = ADS&lt;BR /&gt;auth methods = winbind&lt;BR /&gt;null passwords = Yes&lt;BR /&gt;passdb backend = ldapsam:ldap://192.168.1.2 smbpasswd&lt;BR /&gt;syslog = 0&lt;BR /&gt;log file = /var/log/samba/log.%U&lt;BR /&gt;max log size = 100000&lt;BR /&gt;time server = Yes&lt;BR /&gt;socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192&lt;BR /&gt;add user script = /usr/local/sbin/smbldap-useradd -m '%u'&lt;BR /&gt;add group script = /usr/local/sbin/smbldap-groupadd -p '%g'&lt;BR /&gt;set primary group script = /usr/local/sbin/smbldap-usermod -g '%g' '%u'&lt;BR /&gt;logon script = STARTUP.BAT&lt;BR /&gt;logon drive = H:&lt;BR /&gt;os level = 2&lt;BR /&gt;domain master = No&lt;BR /&gt;ldap admin dn = cn=Administrator,dc=abs2020,dc=com&lt;BR /&gt;ldap group suffix = ou=Groups&lt;BR /&gt;ldap idmap suffix = ou=Idmap&lt;BR /&gt;ldap machine suffix = ou=Machines&lt;BR /&gt;ldap passwd sync = Yes&lt;BR /&gt;ldap suffix = dc=abs2020,dc=com&lt;BR /&gt;ldap ssl = no&lt;BR /&gt;ldap user suffix = ou=Users&lt;BR /&gt;usershare allow guests = Yes&lt;BR /&gt;idmap backend = ldap:ldap://192.168.1.2&lt;BR /&gt;idmap uid = 10000-20000&lt;BR /&gt;idmap gid = 10000-20000&lt;BR /&gt;template shell = /bin/bash&lt;BR /&gt;winbind refresh tickets = Yes&lt;BR /&gt;winbind offline logon = Yes&lt;BR /&gt;vfs objects = recycle&lt;BR /&gt;&lt;BR /&gt;[homes]&lt;BR /&gt;comment = Home Directories&lt;BR /&gt;path = /home&lt;BR /&gt;read only = No&lt;BR /&gt;create mask = 0640&lt;BR /&gt;directory mask = 0750&lt;BR /&gt;guest ok = Yes&lt;BR /&gt;hosts allow = 192.168.1.&lt;BR /&gt;nt acl support = No&lt;BR /&gt;printing = cups&lt;BR /&gt;print command =&lt;BR /&gt;ldap idmap suffix = ou=Idmap&lt;BR /&gt;ldap machine suffix = ou=Machines&lt;BR /&gt;ldap passwd sync = Yes&lt;BR /&gt;ldap suffix = dc=abs2020,dc=com&lt;BR /&gt;ldap ssl = no&lt;BR /&gt;ldap user suffix = ou=Users&lt;BR /&gt;usershare allow guests = Yes&lt;BR /&gt;idmap backend = ldap:ldap://192.168.1.2&lt;BR /&gt;idmap uid = 10000-20000&lt;BR /&gt;idmap gid = 10000-20000&lt;BR /&gt;template shell = /bin/bash&lt;BR /&gt;winbind refresh tickets = Yes&lt;BR /&gt;winbind offline logon = Yes&lt;BR /&gt;vfs objects = recycle&lt;BR /&gt;&lt;BR /&gt;[homes]&lt;BR /&gt;comment = Home Directories&lt;BR /&gt;path = /home&lt;BR /&gt;read only = No&lt;BR /&gt;create mask = 0640&lt;BR /&gt;directory mask = 0750&lt;BR /&gt;guest ok = Yes&lt;BR /&gt;hosts allow = 192.168.1.&lt;BR /&gt;nt acl support = No&lt;BR /&gt;printing = cups&lt;BR /&gt;print command =&lt;BR /&gt;&lt;BR /&gt;/var/log/samba/log.:&lt;BR /&gt;[2009/12/09 15:13:08, 0] auth/auth_util.c:create_builtin_administrators(802)&lt;BR /&gt;create_builtin_administrators: Failed to create Administrators&lt;BR /&gt;[2009/12/09 15:13:08, 0] auth/auth_util.c:create_builtin_users(763)&lt;BR /&gt;create_builtin_users: Failed to create Users &lt;BR /&gt;&lt;BR /&gt;Thanks in advance for any help,</description>
      <pubDate>Wed, 09 Dec 2009 15:51:00 GMT</pubDate>
      <guid>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547170#M39100</guid>
      <dc:creator>Oscar Garcia</dc:creator>
      <dc:date>2009-12-09T15:51:00Z</dc:date>
    </item>
    <item>
      <title>Re: Samba &amp; Win2003 integration</title>
      <link>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547171#M39101</link>
      <description>When you use security = ADS you normally won't use ldap parameters.&lt;BR /&gt;&lt;BR /&gt;Check this link, it has a very simple tutorial to configure samba with ADS.&lt;BR /&gt;&lt;BR /&gt;&lt;A href="http://www.justlinux.com/forum/archive/index.php/t-118288.html" target="_blank"&gt;http://www.justlinux.com/forum/archive/index.php/t-118288.html&lt;/A&gt;</description>
      <pubDate>Wed, 09 Dec 2009 16:38:28 GMT</pubDate>
      <guid>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547171#M39101</guid>
      <dc:creator>Ivan Ferreira</dc:creator>
      <dc:date>2009-12-09T16:38:28Z</dc:date>
    </item>
    <item>
      <title>Re: Samba &amp; Win2003 integration</title>
      <link>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547172#M39102</link>
      <description>Thanks Ivan for your help.&lt;BR /&gt;&lt;BR /&gt;The link is pretty good, although did not resolve my issue.&lt;BR /&gt;I removed all the entries for ldap and imap to make it as the one in the link, still I can see the share but I cannot connect as apparently no password is good enough.&lt;BR /&gt;&lt;BR /&gt;Any other ideas?</description>
      <pubDate>Thu, 10 Dec 2009 12:18:17 GMT</pubDate>
      <guid>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547172#M39102</guid>
      <dc:creator>Oscar Garcia</dc:creator>
      <dc:date>2009-12-10T12:18:17Z</dc:date>
    </item>
    <item>
      <title>Re: Samba &amp; Win2003 integration</title>
      <link>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547173#M39103</link>
      <description>Can you post again some logs and the error message you get?&lt;BR /&gt;&lt;BR /&gt;Did you started the winbind service?</description>
      <pubDate>Thu, 10 Dec 2009 13:08:43 GMT</pubDate>
      <guid>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547173#M39103</guid>
      <dc:creator>Ivan Ferreira</dc:creator>
      <dc:date>2009-12-10T13:08:43Z</dc:date>
    </item>
    <item>
      <title>Re: Samba &amp; Win2003 integration</title>
      <link>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547174#M39104</link>
      <description>Hi Ivan,&lt;BR /&gt;&lt;BR /&gt;Yes I am restarting all 3 services from swat interface. This is my smb.conf now:&lt;BR /&gt;&lt;BR /&gt;[global]&lt;BR /&gt;workgroup = ABS2020&lt;BR /&gt;realm = ABS2020.COM&lt;BR /&gt;server string = SLES 10 Development Server&lt;BR /&gt;security = ADS&lt;BR /&gt;auth methods = winbind&lt;BR /&gt;password server = 192.168.1.2&lt;BR /&gt;encrypt passwords = yes&lt;BR /&gt;local master = no&lt;BR /&gt;preferred master = no&lt;BR /&gt;wins server = 192.68.1.2&lt;BR /&gt;log file = /var/log/samba/log.%U&lt;BR /&gt;max log size = 100000&lt;BR /&gt;socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192&lt;BR /&gt;domain master = No&lt;BR /&gt;# idmap backend = ldap:ldap://192.168.1.2&lt;BR /&gt;&lt;BR /&gt;[homes]&lt;BR /&gt;comment = Home Directories&lt;BR /&gt;browseable = no&lt;BR /&gt;writeable = yes&lt;BR /&gt;valid users = %S&lt;BR /&gt;read only = No&lt;BR /&gt;create mask = 0640&lt;BR /&gt;directory mask = 0750&lt;BR /&gt;guest ok = Yes&lt;BR /&gt;hosts allow = 192.168.1.&lt;BR /&gt;case sensitive = No&lt;BR /&gt;dont descend = /proc,/dev,/etc,/lib,/lost+found,/initrd&lt;BR /&gt;&lt;BR /&gt;Log files:&lt;BR /&gt;------log.winbindd-idmap&lt;BR /&gt;[2009/12/11 11:19:49, 1] nsswitch/idmap.c:idmap_init(377)&lt;BR /&gt;Initializing idmap domains&lt;BR /&gt;[2009/12/11 11:19:49, 1] nsswitch/idmap_tdb.c:idmap_tdb_alloc_init(397)&lt;BR /&gt;idmap uid range missing or invalid&lt;BR /&gt;idmap will be unable to map foreign SIDs&lt;BR /&gt;[2009/12/11 11:19:49, 0] nsswitch/idmap.c:idmap_init(717)&lt;BR /&gt;ERROR: Initialization failed for alloc backend tdb, deferred!&lt;BR /&gt;[2009/12/11 11:19:49, 1] nsswitch/idmap_tdb.c:idmap_tdb_alloc_init(397)&lt;BR /&gt;idmap uid range missing or invalid&lt;BR /&gt;idmap will be unable to map foreign SIDs&lt;BR /&gt;[2009/12/11 11:19:49, 0] nsswitch/idmap.c:idmap_alloc_init(765)&lt;BR /&gt;ERROR: Initialization failed for alloc backend, deferred!&lt;BR /&gt;&lt;BR /&gt;---------log. &lt;BR /&gt;[2009/12/11 11:19:49, 1] lib/util_tdb.c:tdb_validate_and_backup(1334)&lt;BR /&gt;tdb '/var/lib/samba/winbindd_cache.tdb' is valid&lt;BR /&gt;[2009/12/11 11:19:49, 1] lib/util_tdb.c:tdb_validate_and_backup(1344)&lt;BR /&gt;Created backup '/var/lib/samba/winbindd_cache.tdb.bak' of tdb '/var/lib/samba/&lt;BR /&gt;winbindd_cache.tdb'&lt;BR /&gt;[2009/12/11 11:19:49, 0] nsswitch/winbindd_cache.c:initialize_winbindd_cache(223&lt;BR /&gt;0)&lt;BR /&gt;initialize_winbindd_cache: clearing cache and re-creating with version number&lt;BR /&gt;1&lt;BR /&gt;[2009/12/11 11:20:20, 0] lib/util_sock.c:get_peer_addr(1232)&lt;BR /&gt;getpeername failed. Error was Transport endpoint is not connected&lt;BR /&gt;[2009/12/11 11:20:20, 0] lib/util_sock.c:write_data(562)&lt;BR /&gt;write_data: write failure in writing to client 192.168.1.104. Error Connection&lt;BR /&gt;reset by peer&lt;BR /&gt;[2009/12/11 11:20:20, 0] lib/util_sock.c:send_smb(769)&lt;BR /&gt;Error writing 4 bytes to client. -1. (Connection reset by peer)&lt;BR /&gt;[2009/12/11 11:20:23, 1] nsswitch/idmap.c:idmap_init(377)&lt;BR /&gt;Initializing idmap domains&lt;BR /&gt;[2009/12/11 11:20:23, 1] nsswitch/idmap_tdb.c:idmap_tdb_alloc_init(397)&lt;BR /&gt;idmap uid range missing or invalid&lt;BR /&gt;idmap will be unable to map foreign SIDs&lt;BR /&gt;[2009/12/11 11:20:23, 0] nsswitch/idmap.c:idmap_init(717)&lt;BR /&gt;ERROR: Initialization failed for alloc backend tdb, deferred!&lt;BR /&gt;&lt;BR /&gt;Cheers!</description>
      <pubDate>Fri, 11 Dec 2009 11:31:41 GMT</pubDate>
      <guid>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547174#M39104</guid>
      <dc:creator>Oscar Garcia</dc:creator>
      <dc:date>2009-12-11T11:31:41Z</dc:date>
    </item>
    <item>
      <title>Re: Samba &amp; Win2003 integration</title>
      <link>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547175#M39105</link>
      <description>And this is what I get if I include these lines in global:&lt;BR /&gt;&lt;BR /&gt;idmap backend = ldap:ldap://192.168.1.2&lt;BR /&gt;idmap uid = 10000-20000&lt;BR /&gt;idmap gid = 10000-20000&lt;BR /&gt;&lt;BR /&gt;-------log.winbindd-idmap&lt;BR /&gt;[2009/12/11 11:33:18, 1] nsswitch/idmap.c:idmap_init(377)&lt;BR /&gt;  Initializing idmap domains&lt;BR /&gt;[2009/12/11 11:33:18, 0] passdb/secrets.c:fetch_ldap_pw(822)&lt;BR /&gt;  fetch_ldap_pw: neither ldap secret retrieved!&lt;BR /&gt;[2009/12/11 11:33:18, 0] passdb/secrets.c:fetch_ldap_pw(822)&lt;BR /&gt;  fetch_ldap_pw: neither ldap secret retrieved!&lt;BR /&gt;[2009/12/11 11:33:18, 1] nsswitch/idmap_ldap.c:verify_idpool(169)&lt;BR /&gt;  Unable to verify the idpool, cannot continue initialization!&lt;BR /&gt;[2009/12/11 11:33:18, 0] nsswitch/idmap.c:idmap_init(717)&lt;BR /&gt;  ERROR: Initialization failed for alloc backend ldap, deferred!&lt;BR /&gt;[2009/12/11 11:33:19, 0] passdb/secrets.c:fetch_ldap_pw(822)&lt;BR /&gt;  fetch_ldap_pw: neither ldap secret retrieved!&lt;BR /&gt;[2009/12/11 11:33:19, 1] nsswitch/idmap_ldap.c:verify_idpool(169)&lt;BR /&gt;  Unable to verify the idpool, cannot continue initialization!&lt;BR /&gt;[2009/12/11 11:33:19, 0] nsswitch/idmap.c:idmap_alloc_init(765)&lt;BR /&gt;  ERROR: Initialization failed for alloc backend, deferred!&lt;BR /&gt;&lt;BR /&gt;-------log.&lt;BR /&gt;[2009/12/11 11:33:18, 1] lib/util_tdb.c:tdb_validate_and_backup(1334)&lt;BR /&gt;  tdb '/var/lib/samba/winbindd_cache.tdb' is valid&lt;BR /&gt;[2009/12/11 11:33:18, 1] lib/util_tdb.c:tdb_validate_and_backup(1344)&lt;BR /&gt;  Created backup '/var/lib/samba/winbindd_cache.tdb.bak' of tdb '/var/lib/samba/&lt;BR /&gt;winbindd_cache.tdb'&lt;BR /&gt;[2009/12/11 11:33:18, 0] nsswitch/winbindd_cache.c:initialize_winbindd_cache(223&lt;BR /&gt;0)&lt;BR /&gt;  initialize_winbindd_cache: clearing cache and re-creating with version number&lt;BR /&gt;1&lt;BR /&gt;[2009/12/11 11:33:35, 0] lib/util_sock.c:get_peer_addr(1232)&lt;BR /&gt;  getpeername failed. Error was Transport endpoint is not connected&lt;BR /&gt;[2009/12/11 11:33:35, 0] lib/util_sock.c:write_data(562)&lt;BR /&gt;  write_data: write failure in writing to client 192.168.1.104. Error Connection&lt;BR /&gt; reset by peer&lt;BR /&gt;[2009/12/11 11:33:35, 0] lib/util_sock.c:send_smb(769)&lt;BR /&gt;  Error writing 4 bytes to client. -1. (Connection reset by peer)</description>
      <pubDate>Fri, 11 Dec 2009 11:57:13 GMT</pubDate>
      <guid>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547175#M39105</guid>
      <dc:creator>Oscar Garcia</dc:creator>
      <dc:date>2009-12-11T11:57:13Z</dc:date>
    </item>
    <item>
      <title>Re: Samba &amp; Win2003 integration</title>
      <link>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547176#M39106</link>
      <description>You must not configure the idmap backed parameter. You just need to configure:&lt;BR /&gt;&lt;BR /&gt;&lt;BR /&gt;winbind separator = \&lt;BR /&gt;# use uids from 10000 to 20000 for domain users&lt;BR /&gt;idmap uid = 10000-20000&lt;BR /&gt;# use gids from 10000 to 20000 for domain groups&lt;BR /&gt;idmap gid = 10000-20000&lt;BR /&gt;&lt;BR /&gt;That is needed the start correctly winbind. But avoid specifying idmap backed.</description>
      <pubDate>Fri, 11 Dec 2009 13:08:03 GMT</pubDate>
      <guid>https://community.hpe.com/t5/operating-system-linux/samba-amp-win2003-integration/m-p/4547176#M39106</guid>
      <dc:creator>Ivan Ferreira</dc:creator>
      <dc:date>2009-12-11T13:08:03Z</dc:date>
    </item>
  </channel>
</rss>

