IRC Logs

Network: freenode Channel: #samba

	Enter your search terms Submit search form
	Web www.irclog.org

[18:33]<rfurvjlyr>I just upgraded a server, which is running as a Samba PDC and I'm using the same config, some clients are unable to load their profile (except from locally), any ideas?
[19:32]<zzymnzw>I set up Samba to be on the same Workgroup as this Win2k machine, and I can see it in 'Computers Near me' on here, but when I try to actually access the 'Users' section, and log in using an account I have on the SUSE box, it keeps erroring out saying 'Incorrect password or username' .. I've never used Samba before, and am not seeing what I could be doing wrong with it in the docs, though I'm sure is probably something small .. Any ide
[19:37]<dynvnz_2n>Raider1:
[19:37]<dynvnz_2n>the user exists on the linux system, but did you also add it in samba?
[19:38]<dynvnz_2n>if not, do: smbpasswd -a
[19:38]<zzymnzw>Dieter_be, I didn't see any docs on how to add a user to samba, must have overlooked it or just don't have it
[19:38]<jdrs>Aquatopia: checkout abut the home of every user, if exists, is writable, etc, along with [homes] share
[19:38]<dynvnz_2n>Raider1: google -> "samba add user", you will find that you need, smbpasswd -a
[19:39]<zzymnzw>Yeah, I did and I see it now
[19:39]<dynvnz_2n>whatever
[19:40]<zzymnzw>Whatever ?? Ehh, you were right and helped hehe :P I looked it up once you mentioned it and I see how to do it now, seeing if it worked.
[19:40]<zzymnzw>Sweet, it worked :) Thanks
[19:41]<zzymnzw>Dieter_be, I see it in the docs I was previously reading, apparently I just overlooked it the first time, figured it was something small and stupid I was doing wrong
[20:08]<rfurvjlyr>omgs, I figured out what the problem with that one was, the group which all the machines belonged to changed :)
[20:09]<rfurvjlyr>now I have another problem, when I try to rejoin a computer to the domain / join a new one, I get an error that the computer can't join the domain. Any ideas on that one? :D
[20:31]<jdrs>Aquatopia: do you have a custom script or setting for adding machines?
[20:31]<rfurvjlyr>omgs: no, the machine already exists, and I've tried removing it, using a add machine scripts, etc
[20:32]<jdrs>If not, try "getent passwd computer$" replacing "computer$" with the computer you're trying to add
[20:32]<rfurvjlyr>the error message is something in the direction of: Either the given domain name can't be found or it cannot be accessed.. (in danish), the machine pings fine, there is no firewall, nothing blocking, etc
[20:33]<rfurvjlyr>gudmundur$:x:578:111::/dev/null:/bin/false
[20:33]<jdrs>If it returns empty, then you don't have the account
[20:33]<rfurvjlyr>it returned that
[20:34]<jdrs>Rewrite the root (or admin) passwd with smbpasswd root (or the admin)
[20:34]<jdrs>What backend are you using?
[20:34]<rfurvjlyr>default backend
[20:35]<jdrs>How many computers do you intend to manage?
[20:35]<rfurvjlyr>~25
[20:36]<rfurvjlyr>I will be switching over to ldap soon, but that is not a possibility right at this moment :9
[20:36]<jdrs>"default" is ambiguous. I suggest to use tdbsam (if ldap is too much for you)
[20:36]<jdrs>Also, try "pdbedit -Lv gudmundur$"
[20:37]<jdrs>And of course, samba logs
[20:37]<rfurvjlyr>pdbedit shows me some stuff...
[20:38]<rfurvjlyr>yeah, the samba logs, which files should I be looking at
[20:38]<rfurvjlyr>cos there is relatively much traffic in them :D
[20:38]<jdrs>something related to the user, .log or the machine/ip (depending on your log setting)
[20:39]<rfurvjlyr>that didn't show alot
[20:41]<jdrs>What user are you using to add machines (in the computer)?
[20:42]<jdrs>Are you sure it exists and has administrative rights?
[20:43]<jdrs>Also, check the samba password of that user
[20:43]<rfurvjlyr>I'm trying to use root for that
[20:44]<rfurvjlyr>no change if I change the password for root in smbpasswd
[20:44]<jdrs>You didn't reply accurately to the backend question
[20:44]<rfurvjlyr>yeah, the "default" one debian uses :d
[20:44]<jdrs>Aquatopia: that's not an accurate reply
[20:45]<rfurvjlyr>omgs: I think it is smbpasswd
[20:45]<jdrs>testparm|grep backend
[20:45]<rfurvjlyr>doesn't show anything
[20:45]<rfurvjlyr>it's not specified in the smb.conf
[20:45]<jdrs>testparm -v|grep backend
[20:47]<jdrs>Do you have many users/passwords at this time?
[20:47]<rfurvjlyr>smbpasswd
[20:47]<rfurvjlyr>~25 :)
[20:48]<jdrs>Well, I suggest to export to tdbsam. Let me take a look at pdbedit for the exact syntax
[20:49]<jdrs>Well, first backup your smbpasswd file :)
[20:50]<rfurvjlyr>hehe :D done and done
[20:50]<jdrs>Then, "pdbedit -b tdbsam -L" to see what's there (should be nothing)
[20:50]<rfurvjlyr>only shows the default accounts on the computer when I installed debian
[20:51]<jdrs>According to what you say, it's unused (not to mention that you are NOT using debian default)
[20:52]<rfurvjlyr>well, if I run pdbedit -b smbpasswd -L I get all the users registered
[20:52]<jdrs>To export, try "pdbedit -e tdbsam"
[20:53]<jdrs>Then, check with "pdbedit -b tdbsam -L" again
[20:53]<rfurvjlyr>Unable to modify passwd TDB! Error: Record exists occured while storing the main record (USER_root)
[20:54]<jdrs>well, you have to delete existing accounts in tdbsam
[20:54]<jdrs>You can do one by one with "pdbedit -b tdbsam -x user"
[20:55]<jdrs>Also, you can try (I'm not sure about this) to delete the tdbsam file at /var/lib/samba or similar
[20:55]<rfurvjlyr>well, now it has all the users / machines
[20:56]<jdrs>Well, try adding "passdb backend = tdbsam" in smb.conf and restart samba
[20:57]<jdrs>For your info, you can always come back to smbpasswd (I hope not)
[20:57]<rfurvjlyr>no success :S
[20:58]<jdrs>Why? give more info, please
[20:58]<rfurvjlyr>all the computers can access the server, log onto it, get files, etc... but computers that I'm trying to join to the domain or rejoin the domain can't
[20:58]<rfurvjlyr>that's the problem
[20:59]<rfurvjlyr>if I try: \\servername\gudmundur that works fine
[20:59]<jdrs>Did you do "smbpasswd -a -m machine"?
[20:59]<jdrs>Without trailing "$"
[20:59]<rfurvjlyr>not without the trailing $ n
[20:59]<rfurvjlyr>no
[21:00]<rfurvjlyr>it has worked up till now with the $
[21:03]<jdrs>mmm I might be wrong, but with "pdbedit -Lv computer$", you should see "[W]" in account flags
[21:04]<jdrs>Also, with "pdbedit -Lv root", check that the primary sid ends in -500"
[21:05]<rfurvjlyr>accounts flags: contains w
[21:05]<rfurvjlyr>Primary Group SID: S-1-5-21-1358197688-1829595849-908712776-1001
[21:05]<jdrs>Try, when adding the computer, to supply a wrong pass for root, and see if the result is the same
[21:05]<rfurvjlyr>yeah, it gives the same result
[21:06]<jdrs>I meant the "User SID", not the group SID
[21:06]<rfurvjlyr>User SID: S-1-5-21-1358197688-1829595849-908712776-1000
[21:06]<jdrs>That's a plain user, with no admin rights (at a first glance)
[21:07]<rfurvjlyr>ok, how do i add root with admin rights then?
[21:07]<jdrs>The sid should be something like the domain sid and "-500"
[21:08]<jdrs>The domain sid is "net getlocalsid"
[21:08]<_vxudlnz_>quick question: smbfs or cifs?
[21:09]<_vxudlnz_>using Kubuntu Dapper
[21:09]<_vxudlnz_>mount.cifs version: 1.10
[21:10]<_vxudlnz_>mount.smbfs: Version 3.0.22
[21:10]<rfurvjlyr>omgs, hmm, having troubles changing it :D
[21:13]<rfurvjlyr>ok, figured that out
[21:13]<jdrs>You should see the groups with "net groupmap list"
[21:13]<rfurvjlyr>but still, like you asked before, I tried giving the wrong password when trying to join the domain, and I get precisely the same error
[21:15]<jdrs>Did you specifiy root to be admin in smb.conf?
[21:15]<rfurvjlyr>[2006/06/03 20:14:06, 0] utils/net_ads.c:ads_startup(191)

Back to #samba
Or go to some related logs:
#suse
#gentoo
#gentoo
#gentoo
#gentoo