|
|
Sponsored Content
Operating Systems
AIX
Samba 3.6.22 on AIX 7.1 with Windows AD (Kerberos and winbind)
Post 302907247 by aixkidbee on Thursday 26th of June 2014 08:55:50 PM
06-26-2014
|
|
10 More Discussions You Might Find Interesting
1. Linux
Hi everyone,
I wonder if anyone ever came across the idea of unifying AD and Linux user accounts
We have a Linux machine with 'samba' 'winbind' service configured to let Windows AD users to logon locally using their AD accounts and passwords.
I can use 'su' to get to the local user privilege... (0 Replies)
Discussion started by: will_mike
0 Replies
2. SCO
Hi all.
I'm having real trouble authenticating users against active directory for my SCO UnixWare 7.1.4 box running samba 3.0.24 (installed via Maintenance pack 4). I can list AD users/groups (after overcoming several hiccups) with wbinfo -g / wbinfo -u. I can use id to get a view an ad user ie:... (0 Replies)
Discussion started by: silk600
0 Replies
3. UNIX for Advanced & Expert Users
Hello, I asked this question in the AIX subforum but never received an answer, probably because the AIX forum is not that heavily trafficked. Anyway, here it is..
I have never had any issues like this when compiling applications from source. When I try to compile samba-3.5.0pre2, configure runs... (9 Replies)
Discussion started by: raidzero
9 Replies
4. Red Hat
Hi,
I have recently taken control of a number of RHEL5.3 servers that have samba shares setup on them and are authenticating using pam and winbind. My issue is that any user that has an active directory account can currently log in to the linux boxes using their ad credentials. I need to... (0 Replies)
Discussion started by: klyne
0 Replies
5. Red Hat
Hi,
We now have a Samba or Winbind issue. The Linux client under RHEL6 can not get Windows' AD sub-domain info. See the following output please. The main domain 'Global' is shown online, but the sub-domain 'Europe' and 'Asia' are shown offline although they are online.
Commands 'wbinfo -u' and... (0 Replies)
Discussion started by: aixlover
0 Replies
6. UNIX for Advanced & Expert Users
I configured AIX5.3 to use kerberos and winbind so user can login and authenticate via AD. I was able to join my AIX server to domain and can execute wbinfo -u/g. However when I login, It says unknown user. I already edit /etc/secuirty/user and then method.cfg.
On the log.winbindd it says
... (0 Replies)
Discussion started by: lhareigh890
0 Replies
7. HP-UX
The situation: i have a AD server with samba4,all clients
ssh-kerberos works fine,except hpux :p wich works
only for few days..then i must re-export(sic!) the keys with
samba-tool domain exportkeytab 11.keytab --principal=host/hpux.fqdn
Why after few days ssh return error "server not found... (1 Reply)
Discussion started by: Linusolaradm1
1 Replies
8. AIX
I have joined an AIX 7.1 into a 2012 AD domain sucesfully.
I can get ouput from wbinfo -u but when I try to access a share I get the following error :
check_ntlm_password: Authentication for user -> FAILED with
error NT_STATUS_NO_SUCH_USER
I have found that I'm missing... (0 Replies)
Discussion started by: laxtnog
0 Replies
9. UNIX and Linux Applications
I have installed following packages from perzl
samba-winbind-clients-3.6.22-1
samba-client-3.6.22-1
samba-domainjoin-gui-3.6.22-1
samba-winbind-devel-3.6.22-1
samba-3.6.22-1
samba-common-3.6.22-1
samba-winbind-krb5-locator-3.6.22-1
samba-doc-3.6.22-1
samba-swat-3.6.22-1... (7 Replies)
Discussion started by: laxtnog
7 Replies
10. AIX
I am running AIX 7.1 and currently we have samba 3.6.25 installed on the server. As it stands some AIX folders are shared that can be accessed by certain Windows users.
The problem is that since Windows 10 the guest feature no longer works so users have to manually type in their Windows login/pwd... (14 Replies)
Discussion started by: linuxsnake
14 Replies
LEARN ABOUT REDHAT
pts_listowned
PTS_LISTOWNED(1) AFS Command Reference PTS_LISTOWNED(1) NAME
pts_listowned - Show the Protection Database groups owned by a user or group SYNOPSIS
pts listowned -nameorid <user or group name or id>+ [-cell <cell name>] [-noauth] [-localauth] [-force] [-help] pts listo -na <user or group name or id>+ [-c <cell name>] [-no] [-l] [-f] [-h] DESCRIPTION
The pts listowned command lists the groups owned by each user or group specified by the -nameorid argument. To list any orphaned groups, whose owners have themselves been deleted from the Protection Database, provide a value of 0 (zero) for the -nameorid argument. To change the owner to a user or group that still exists, use the pts chown command. OPTIONS
-nameorid <user or group name or id>+ Specifies the name or AFS UID of each user, or the name or AFS GID of each group, for which to display the list of owned groups. It is acceptable to mix users and groups on the same command line, as well as names and IDs. Precede the GID of each group with a hyphen to indicate that it is negative. A value of 0 (zero) lists group entries for groups whose owners no longer have entries in the Protection Database. -cell <cell name> Names the cell in which to run the command. For more details, see pts(1). -force Enables the command to continue executing as far as possible when errors or other problems occur, rather than halting execution at the first error. -help Prints the online help for this command. All other valid options are ignored. -localauth Constructs a server ticket using a key from the local /etc/openafs/server/KeyFile file. Do not combine this flag with the -cell or -noauth options. For more details, see pts(1). -noauth Assigns the unprivileged identity anonymous to the issuer. For more details, see pts(1). OUTPUT
The first line of the output indicates the name and AFS UID or AFS GID of each user or group for which ownership information is requested, in the following format: Groups owned by <name> (id: <ID>) are: A list of groups follows. The list does not include groups owned by groups that the user or group owns, or to which the user or group belongs. If the user or group does not own any groups, only the header line appears. The following error message appears if the issuer is not privileged to view ownership information. By default, for both user and group entries the second privacy flag is the hyphen, which denies permission to anyone other than the user (for a user entry) and the members of the system:administrators group. pts: Permission denied so failed to get owner list for <name> (id: <ID>) EXAMPLES
The following example lists the groups owned by user terry and shows that the group "terry:friends" does not own any groups: % pts listowned terry terry:friends Groups owned by terry (id: 1045) are: terry:friends terry:project1 terry:project2 Groups owned by terry:friends (id: -673) are: PRIVILEGE REQUIRED
The required privilege depends on the setting of the second privacy flag in the Protection Database entry of each user or group indicated by the -nameorid argument (use the pts examine command to display the flags): o If it is the hyphen and the -nameorid argument specifies a group, only the members of the system:administrators group and the owner of a group can list the groups it owns. o If it is the hyphen and the -nameorid argument specifies a user, only the members of the system:administrators group and the associated user can list the groups he or she owns. o If it is uppercase letter "O", anyone who can access the cell's database server machines can list the groups owned by this user or group. SEE ALSO
pts(1), pts_chown(1), pts_examine(1), pts_setfields(1) COPYRIGHT
IBM Corporation 2000. <http://www.ibm.com/> All Rights Reserved. This documentation is covered by the IBM Public License Version 1.0. It was converted from HTML to POD by software written by Chas Williams and Russ Allbery, based on work by Alf Wachsmann and Elizabeth Cassell. OpenAFS 2014-04-08 PTS_LISTOWNED(1)