Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: solaris samba configuration without wins service from authentication window server/Active directory
Operating Systems Solaris solaris samba configuration without wins service from authentication window server/Active directory Post 302589161 by sahil_shine on Wednesday 11th of January 2012 06:44:50 AM
Old 01-11-2012
This is my current configuration for samba

Workgroup = Domain name
netbios name = Hostname
server string = %L
security = domain
follow symlinks = yes
wide links = yes
encrypt passwords = yes
create mask = 744
directory mask = 755
log level = 1
log file = /var/log/samba.log.%m
max log size = 50
socket options = TCP_NODELAY IPTOS_LOWDELAY
getwd cache = yes
aio read size = 1
aio write size =1
password server = Password server

Below is the error i get when wins is disabled on AD.


[2011/11/22 11:28:32, 3] libsmb/namequery.c:1971(get_dc_list)
get_dc_list: preferred server list: ", <Password server>, <Password Server>"
[2011/11/22 11:28:36, 2] auth/auth.c:320(check_ntlm_password)
check_ntlm_password: Authentication for user [xyz] -> [xyz] FAILED with error NT_STATUS_NO_LOGON_SERVERS

---------- Post updated 01-11-12 at 03:44 AM ---------- Previous update was 01-10-12 at 11:29 PM ----------

just realized we are not using active directory for our samba configuration, instead we are using Windows NT domain configuration for samba ..any idea how to make it work with current configuration
 

8 More Discussions You Might Find Interesting

1. Solaris

Benefit for authentication with Active Directory?

Hello all, I heard that we can use Solaris to authenticate user with Active Directory. However, I do not see the point why we need to do that?? what's the benefit to authenticate user with Active Directory??? Example, I have Solaris and I limited only 10 users can access Solaris production... (1 Reply)
Discussion started by: Smith
1 Replies

2. SCO

Authentication problems with Active Directory/Samba/Winbind/Pam

Hi all. I'm having real trouble authenticating users against active directory for my SCO UnixWare 7.1.4 box running samba 3.0.24 (installed via Maintenance pack 4). I can list AD users/groups (after overcoming several hiccups) with wbinfo -g / wbinfo -u. I can use id to get a view an ad user ie:... (0 Replies)
Discussion started by: silk600
0 Replies

3. Red Hat

microsoft Server 2008 Active authentication to a linux server

Hi, Please could someone advise I'm trying to use winscp from a Window server 2008 R2, but i need to add the authentication key to access the linux rh 5.4 servers ? What is the best way of approaching this ? If there are any web links that could help me do this, that would be good. ... (1 Reply)
Discussion started by: venhart
1 Replies

4. Red Hat

Active directory authentication in Linux client?

Hi All, I am a newb in this forums. I am a Linux admin and I hope I will get the solution here. In my company I have setup AD and I can authenticate the windows machines using this AD, also able to apply policy. Now I have installed some Linux machines but I can't able to authenticate via... (6 Replies)
Discussion started by: sahabcse
6 Replies

5. UNIX for Dummies Questions & Answers

Connect via ssh using active directory authentication

I want to connect via SSH that will authenticate via active directory (domain controller). For example my network login in my workstation is user123/123user under a domain. I wanted to use this details to login via ssh. In this way I don't have to add and create username everytime in the server... (1 Reply)
Discussion started by: lhareigh890
1 Replies

6. Solaris

Join Solaris 11 server to Active Directory using smbadm?

We are having a hard time joining our organizations Active Directory using this guide. Keep getting hit with syntax and authentication errors. Has anyone here joined a Solaris 11 to an Active Directory using smbadm as detailed in this example? I understand that the example I cited is mainly... (0 Replies)
Discussion started by: LittleLebowski
0 Replies

7. UNIX for Beginners Questions & Answers

SAMBA as Active Directory Domin Controller

Could you please let me know, how to install and configure samba as domain controller like Active Directory (AD Server in Windows Server)? And how to configure the Window clients and Linux clients through Samba AD Domain Controller. Note: OS is Ubuntu or CentOS. (8 Replies)
Discussion started by: engineer2002
8 Replies

8. AIX

Samba 3.6 on AIX 7.1 - Windows 10 Access to AIX file shares using Active Directory authentication

I am running AIX 7.1 and currently we have samba 3.6.25 installed on the server. As it stands some AIX folders are shared that can be accessed by certain Windows users. The problem is that since Windows 10 the guest feature no longer works so users have to manually type in their Windows login/pwd... (14 Replies)
Discussion started by: linuxsnake
14 Replies

LEARN ABOUT CENTOS

samba-regedit

SAMBA-REGEDIT(8)					    System Administration tools 					  SAMBA-REGEDIT(8)

NAME

       samba-regedit - ncurses based tool to manage the Samba registry

SYNOPSIS

       samba-regedit [--help] [--usage] [-d <debug level>] [-s <configuration file>] [-l <log directory>] [-V] [--option=<parameter>=<value>]
	[--socket-options=<SOCKETOPTIONS>] [--netbiosname=<NETBIOSNAME>] [--workgroup=<WORKGROUP>] [--scope=<SCOPE>] [--user=<USERNAME>] [-N] [-k]
	[--authentication-file=<FILE>] [--signing=[on|off|required]] [-P] [-e] [-C] [--pw-nt-hash]

DESCRIPTION

       This tool is part of the samba(7) suite.

       samba-regedit is a ncurses based tool to manage the Samba registry. It can be used to show/edit registry keys/subkeys and their values.

OPTIONS

       -?|--help
	   Print a summary of command line options.

       -d|--debuglevel=level
	   level is an integer from 0 to 10. The default value if this parameter is not specified is 1.

	   The higher this value, the more detail will be logged to the log files about the activities of the server. At level 0, only critical
	   errors and serious warnings will be logged. Level 1 is a reasonable level for day-to-day running - it generates a small amount of
	   information about operations carried out.

	   Levels above 1 will generate considerable amounts of log data, and should only be used when investigating a problem. Levels above 3 are
	   designed for use only by developers and generate HUGE amounts of log data, most of which is extremely cryptic.

	   Note that specifying this parameter here will override the log level parameter in the smb.conf file.

       --usage
	   Display brief usage message.

       -V|--version
	   Prints the program version number.

       -s|--configfile=<configuration file>
	   The file specified contains the configuration details required by the server. The information in this file includes server-specific
	   information such as what printcap file to use, as well as descriptions of all the services that the server is to provide. See smb.conf
	   for more information. The default configuration file name is determined at compile time.

       -l|--log-basename=logdirectory
	   Base directory name for log/debug files. The extension ".progname" will be appended (e.g. log.smbclient, log.smbd, etc...). The log
	   file is never removed by the client.

       --option=<name>=<value>
	   Set the smb.conf(5) option "<name>" to value "<value>" from the command line. This overrides compiled-in defaults and options read from
	   the configuration file.

       -n|--netbiosname <primary NetBIOS name>
	   This option allows you to override the NetBIOS name that Samba uses for itself. This is identical to setting the netbios name parameter
	   in the smb.conf file. However, a command line setting will take precedence over settings in smb.conf.

       -i|--scope <scope>
	   This specifies a NetBIOS scope that nmblookup will use to communicate with when generating NetBIOS names. For details on the use of
	   NetBIOS scopes, see rfc1001.txt and rfc1002.txt. NetBIOS scopes are very rarely used, only set this parameter if you are the system
	   administrator in charge of all the NetBIOS systems you communicate with.

       -W|--workgroup=domain
	   Set the SMB domain of the username. This overrides the default domain which is the domain defined in smb.conf. If the domain specified
	   is the same as the servers NetBIOS name, it causes the client to log on using the servers local SAM (as opposed to the Domain SAM).

       -O|--socket-options socket options
	   TCP socket options to set on the client socket. See the socket options parameter in the smb.conf manual page for the list of valid
	   options.

       -N|--no-pass
	   If specified, this parameter suppresses the normal password prompt from the client to the user. This is useful when accessing a service
	   that does not require a password.

	   Unless a password is specified on the command line or this parameter is specified, the client will request a password.

	   If a password is specified on the command line and this option is also defined the password on the command line will be silently
	   ingnored and no password will be used.

       -k|--kerberos
	   Try to authenticate with kerberos. Only useful in an Active Directory environment.

       -C|--use-ccache
	   Try to use the credentials cached by winbind.

       -A|--authentication-file=filename
	   This option allows you to specify a file from which to read the username and password used in the connection. The format of the file is

	       username = <value>
	       password = <value>
	       domain	= <value>

	   Make certain that the permissions on the file restrict access from unwanted users.

       -U|--user=username[%password]
	   Sets the SMB username or username and password.

	   If %password is not specified, the user will be prompted. The client will first check the USER environment variable, then the LOGNAME
	   variable and if either exists, the string is uppercased. If these environmental variables are not found, the username GUEST is used.

	   A third option is to use a credentials file which contains the plaintext of the username and password. This option is mainly provided
	   for scripts where the admin does not wish to pass the credentials on the command line or via environment variables. If this method is
	   used, make certain that the permissions on the file restrict access from unwanted users. See the -A for more details.

	   Be cautious about including passwords in scripts. Also, on many systems the command line of a running process may be seen via the ps
	   command. To be safe always allow rpcclient to prompt for a password and type it in directly.

       -S|--signing on|off|required
	   Set the client signing state.

       -P|--machine-pass
	   Use stored machine account password.

       -e|--encrypt
	   This command line parameter requires the remote server support the UNIX extensions or that the SMB3 protocol has been selected.
	   Requests that the connection be encrypted. Negotiates SMB encryption using either SMB3 or POSIX extensions via GSSAPI. Uses the given
	   credentials for the encryption negotiation (either kerberos or NTLMv1/v2 if given domain/username/password triple. Fails the connection
	   if encryption cannot be negotiated.

       --pw-nt-hash
	   The supplied password is the NT hash.

VERSION

       This man page is correct for version 4 of the Samba suite.

SEE ALSO

       smbd(8), samba(7) and net(8).

AUTHOR

       The original Samba software and related utilities were created by Andrew Tridgell. Samba is now developed by the Samba Team as an Open
       Source project similar to the way the Linux kernel is developed.

       The samba-regedit man page was written by Karolin Seeger.

Samba 4.1							    06/17/2014							  SAMBA-REGEDIT(8)
All times are GMT -4. The time now is 12:41 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy