LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Red Hat (https://www.linuxquestions.org/questions/red-hat-31/)
-   -   samba to active directory domain (https://www.linuxquestions.org/questions/red-hat-31/samba-to-active-directory-domain-712816/)

Radioactiveman 03-19-2009 08:13 AM
samba to active directory domain
 
hi,

i have installed samba to active directory domain.
webmin-> servers-> samba-> bind to domain, is ok (complete) (can see samba in AD now)


# wbinfo -t
checking the trust secret via RPC calls succeeded

# wbinfo -m
OFFICE

# wbinfo -u
SAMBA+xfs
SAMBA+gdm
SAMBA+sabayon
SAMBA+admin
DOMOFFICE+adm
DOMOFFICE+_backup
DOMOFFICE+administrator
DOMOFFICE+sad
etc.

# wbinfo -g
BUILTIN+administrators
BUILTIN+users
DOMOFFICE+domain computers
DOMOFFICE+domain users
DOMOFFICE+domain guests
etc.

# getent passwd
gdm:x:42:42::/var/gdm:/sbin/nologin
sabayon:x:86:86:Sabayon user:/home/sabayon:/sbin/nologin
admin:x:500:500:admin:/home/admin:/bin/bash
DOMOFFICE+adm:*:10000:10004:adm:/home/DOMOFFICE/adm:/bin/false
DOMOFFICE+_backup:*:10001:10004:_Backup:/home/DOMOFFICE/_backup:/bin/false
etc.

# getent group
bin:x:1:root,bin,daemon
daemon:x:2:root,bin,daemon
sys:x:3:root,bin,adm
adm:x:4:root,adm,daemon
tty:x:5:
disk:x:6:root
lp:x:7:daemon,lp
mem:x:8:
kmem:x:9:

getent group
-> cant see domain groups, only the locale ones?

- with this command i can not join the domain?
# net ads join -U administrator
administrator's password:
[2009/03/19 11:03:44, 0] utils/net_ads.c:ads_startup_int(286)
ads_connect: No logon servers
Failed to join domain: No logon servers

- if i do it with the AD server:
net ads join athena.work.local -U administrator
Joined domain DOMOFFICE.
[2009/03/19 11:32:55, 2] utils/net.c:main(1075)
return code = 0



...if u want i can post nsswitch.conf, krb5.conf, smb.conf, pam.d/samba?


::::::INFO:::::::
OS: red hat enterprise server 5.3
samba vers: 3.033375
webmin vers: 1.460
apache vers: 2.2.3



thx 4 help
Radioactiveman

grizly 03-20-2009 01:04 AM
I've read your post several times.. Still unsure what your question is mate.

Radioactiveman 03-20-2009 02:18 AM
ok sry^^
...i forgot to tell u that i also installed ACl, managed by webmin.
ACL: i can give a domain and a local user permission for a samba-share. but i can not give a domain group permission for a samba-share because i can see only local groups...but why?

with the command "getent group" can only see the local groups...i must also see the domain groups?
with the command "getent passwd" can see local and domain groups.
dont know where the probl is..maybe winbind isnt working properly?
other command results are in the 1st post

THX


All times are GMT -5. The time now is 03:45 PM.