April 23, 2014, 12:31:35 PM

News : LinuxSolved.com Linux Help Community Forum..


Recent Posts

Pages: 1 ... 3 4 [5] 6 7 ... 10
41
Linux Servers Support / Re: How to Map AD groups to Samba share
« Last post by sunnysthakur on January 09, 2013, 07:33:39 AM »
After changing the parameters in /etc/smb.conf i am able to view users/groups i created on AD.

/etc/samba/smb.conf

workgroup = QASLABS
server string = Samba Server Version %v
password server = adserver.qaslabs.net
realm = QASLABS.NET
preferred master = no
security = ADS
;idmap backend = ad
idmap uid = 500-20000000
idmap gid = 500-20000000
winbind separator = +
template shell = /bin/bash
winbind use default domain = true
winbind offline logon = false
preferred master = no
encrypt passwords = yes
log level = 3
log file = /var/log/samba/%m
max log size = 50
printcap name = cups
printing = cups
winbind enum users = yes
winbind enum groups = yes
winbind use default domain = yes
winbind nested groups = yes
;netbios name = smbad
hosts allow = 127.0.0.1 192.16.17.0/24
passdb backend = tdbsam
template homedir = /home/%U
;winbind nss info = rfc2307

On executing the wbinfo i am able to view the AD users created by me.

[root@smbad samba]# wbinfo -u
administrator
guest
krbtgt
[COLOR="Blue"]tlit
usrit
tladmin
usradmin
tlcmt
usrcmt
tldev
usrdev
tlhr
usrhr
tlqa
usrqa
tlsupp
usrsupp[/COLOR]

and on executing the wbinfo with -g i am able to view the AD groups created by me.

[root@smbad samba]# wbinfo -g
BUILTIN+administrators
BUILTIN+users
domain computers
domain controllers
schema admins
enterprise admins
cert publishers
domain admins
domain users
domain guests
group policy creator owners
ras and ias servers
allowed rodc password replication group
denied rodc password replication group
read-only domain controllers
enterprise read-only domain controllers
dnsadmins
dnsupdateproxy
[COLOR="blue"]itadmin
ituser
admadmin
adminuser
cmtadmin
cmtuser
devadmin
devuser
hradmin
hruser
qaadmin
qauser
suppadmin
suppuser[/COLOR]

I am also able to test the ad users with password

[root@smbad samba]# wbinfo -a tladmin%Password1
plaintext password authentication succeeded
challenge/response password authentication succeeded

But now the issue is when i am accessing the samba share using these usernames i am not able to login to share and below error is coming in logs file.

[COLOR="Red"]  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/01/10 02:04:28, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/01/10 02:04:28, 2] auth/auth.c:check_ntlm_password(319)
  check_ntlm_password:  Authentication for user [itusr] -> [itusr] FAILED with error NT_STATUS_NO_SUCH_USER
[2013/01/10 02:04:28, 3] smbd/error.c:error_packet_set(106)
  error packet at smbd/sesssetup.c(105) cmd=115 (SMBsesssetupX) NT_STATUS_LOGON_FAILURE
[2013/01/10 02:04:28, 3] smbd/process.c:timeout_processing(1382)
  timeout_processing: End of file from client (client has disconnected).
[2013/01/10 02:04:28, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0[/COLOR]

Also on login to the AD user from putty it is not accepting passwords.

[admin@smbad ~]$ su tladmin
Password:
su: incorrect password

Where as on login to AD user from putty from root account i am able to login [Password not prompted from switching from root user to AD user]

Please help me on this.

Thanks in advance..
42
Linux Servers Support / Group and user permissions on mediawiki
« Last post by sunnysthakur on January 07, 2013, 07:11:57 AM »
I am working on setup a wiki which should have users and group having read or write permission.
Before that we were using simple write to all methodology.

Now the challenge is this that i have created a 3 users and all of the 3 are able to write to wiki and update the page. Now what i what to do is that 2 users can write and one is able to view only.

I did a little bit R 'n' D but didn't success. Below were the things i did but didn't succeed.

By adding the below code in Localsettings.php 2 user can read [they are not able to edit] but one can write.

$wgGroupPermissions['Trusted'] = $wgGroupPermissions['user'];
$wgGroupPermissions['user'   ]['edit']          = false;
$wgGroupPermissions['Trusted']['edit']          = true;
$wgGroupPermissions['sysop'  ]['edit']          = true;

Another thing i did.

INSERT INTO user_groups (ug_user, ug_group) VALUES ('3', 'bureaucrat');
INSERT INTO user_groups (ug_user, ug_group) VALUES ('3', 'sysop');

Assign bureaucrat and sysop rights to user whose id is 3 but nothing happen.
Again userid 1 is able to edit but users having userid 3 again not able to edit, however both have same groups permissions now.

Please help me to resolve this issue.

Note :- I am using mediawiki 1.9.2
43
Linux Servers Support / Re: How to Map AD groups to Samba share
« Last post by sunnysthakur on January 07, 2013, 07:00:45 AM »
Any help on this will appreciate.
44
Linux Servers Support / Re: Difference between major distros and why?
« Last post by dalek on January 06, 2013, 02:33:36 PM »
If you want technical info, I would try the Redhat website.  You can most likely just search and find the answer but since I have never used Redhat, I have very little info.  I know what little I have read about it but not much else.  They also have a section for how to set up things and how it works.  At least they did the last time I looked.  For Ubuntu distros, I have found their documentation seriously lacking.  As bad as the docs are, the forums are as bad or worse.  I usually ask Kubuntu questions on the Gentoo mailing list where I am a frequent user/helper. 

When booting, it depends on what the system is set up to do.  If it is a headless server, then it boots and starts its services.  If it is a desktop, then it boots and loads the GUI part.  All this depends on what you have told it to do either during the install or when configuring the system.  With Linux, the possibilities are pretty much endless.

Each distro varies a little on boot sequence.  Mine for example doesn't require a initrd image tho you can use one or some setups may require it.  Mine goes like this:  BIOS screen, grub menu, loading kernel, starting init and then services.  As far as differences, basically none.  All Linux installs can be set up to do the same thing.  It's all about how it is configured. 

 :) :)
45
Linux Servers Support / Re: Difference between major distros and why?
« Last post by brittocj on January 06, 2013, 01:10:54 PM »
 i want to know the technical differences between distros? Red Hat's network configuration files are in different directory than of Ubuntu, what controls this differences?

When booting any distro what are all files required?

After POST boot loader gets control and passes it to the default or selected kernel and loads kernel image and initrd images and then init process starts loading all services, is this the sequence of booting for all distros? After loading all services a login prompt is provided, when log in to the server the associated shell with the account opens and wait for commands.

So There is KERNEL > INIT > SHELL right then basically what is the difference?
46
Linux Servers Support / Re: Difference between major distros and why?
« Last post by dalek on January 06, 2013, 12:38:30 PM »
The difference depends on the distro.  I use Gentoo and have used it for years and have not messed with other distros to much, other than installing Kubuntu for my brother. 

As for config files, that is usually handled by the package manager.  The package manager is what actually installs files so the package manager does this by where the people developing the distro thinks it should go.  Once installed, there is sometimes a tool to config things or sometimes, it is done by hand. 

With Gentoo, we have a file called a ebuild.  That file tells the package manager what packages it depends on.  It also tells where files go during the install.  It also can set USE flags which changes how a program works or what a program supports.  Gentoo is a source based distro so it depends on the admin to set all this up before hand.  There is another set of files that the user can use to tweak these settings globally or even just for one package. 

A distro like Redhat doesn't give that sort of control.  When you install a package in Redhat, the people at Redhat have done most all that for you.  Basically, they enable most everything whether you need it or not, which is why some people use Gentoo.  At any rate.  Redhat is a binary based system.  Basically, it is faster to install but you have less control of options. 

You are right about the kernel.  Most all distros use the same kernel although some patch kernels in certain ways to either enable things, disable things or just add features that the distro needs. 

I don't generally get into the details of other distros.  I been using Gentoo for a long time but have used Mandrake way back.  I have installed Kubuntu and update it but not expert enough to tell you why they set things up the way they do.  I have found that every distro has something weird about it.  It never fails. 

 :)    :)
47
Linux Servers Support / Re: Difference between major distros and why?
« Last post by brittocj on January 06, 2013, 07:56:49 AM »
 Generally everyone will say the external appearance user interface differences, but what is the actual technical difference? Their kernel is same running shell interpreter is same but the commands and configuration file locations different for each distro why? and what reallly causes this difference? Is kernel or shell? i want to know the technical differences between distros? Red Hat's network configuration files are in different directory than of Ubuntu, what controls this differences?

tx
britto
48
Linux Servers Support / Re: Difference between major distros and why?
« Last post by dalek on January 06, 2013, 02:34:37 AM »
Each distro has some niche that is serves.  Some are bloated and want to be a drop in replacement for people switching from windows.  Some allow you to custom build everything from scratch.  Some are specifically for server or critical uses and others are trying to be bug free but move fairly quick with updates and point toward desktop uses. 

Redhat, mostly for servers but works for desktops too.  It is set up to be stable in a big way.  Less often updates but well tested and stable.  Also offers paid support if needed.

Mandriva, sort of like Redhat but not as stable and while it can be used for servers, it seems to be more desktop driven and the updates are faster. 

*ubuntu, designed for drop in replacement for people switching from windows.  I installed Kubuntu for my brother and he really can't tell much difference, other than no anti-virus. 

Gentoo, can be used for anything where you need serious control of the programs.  It can be used for servers or desktops depending how it is set up. 

The best place to read up on these is here:

http://distrowatch.com/

You can click on hundreds of distros and sort of get a idea what each ones can be used for. 

 :)    :)
49
Linux Servers Support / Difference between major distros and why?
« Last post by brittocj on January 05, 2013, 06:04:26 PM »
Hi,

What are difference between major server distros and what is the advantage?

Kernel (2.6) and bash (4.1) are same for Ubuntu and Red Hat only certain commands are different, file system structure is different and package manager ( deb and rpm) so which program makes this difference ? We cannot use yum and apt inter changeably, why?

thanks in advance.

britto
50
Linux Servers Support / How to Map AD groups to Samba share
« Last post by sunnysthakur on January 04, 2013, 06:42:25 AM »
I am setup a samba share server which is authenticating from Active Directory.

I am able to access the share with AD user but not able to access when group defined in "valid users" parameters.

below are the steps i performed.

In smb.conf

[global]
workgroup = QASLABS
password server = WIN-60I6H2BG237.qaslabs.net
realm = QASLABS.NET
preferred master = no
security = ADS
idmap backend = ad
idmap uid = 100-20000000
idmap gid = 100-20000000
winbind separator = +
template shell = /bin/bash
winbind use default domain = true
winbind offline logon = false
preferred master = no
server string = Linux Test Machine
encrypt passwords = yes
log level = 3
log file = /var/log/samba/%m
max log size = 50
printcap name = cups
printing = cups
winbind enum users = yes
winbind enum groups = yes
winbind use default domain = yes
winbind nested groups = yes
netbios name = smbad
hosts allow = 127.0.0.1 192.16.17.0/24
passdb backend = tdbsam
template homedir = /home/%U
winbind nss info = rfc2307

[Data]
[COLOR="RoyalBlue"]comment = Directory for storing Data
path= /opt/data
valid users = @NETWORK+itadmin NETWORK+testadmin
#valid users = @"QASLABS.NET\\itadmin"
writeable = yes
browseable=yes
create mask = 775
directory mask = 775
hosts allow = 127.0.0.1 192.16.17.0/24[/COLOR]

In /etc/nsswitch.conf

passwd: files winbind
shadow: files winbind
group: files winbind
hosts: files dns wins
bootparams: nisplus [NOTFOUND=return] files
ethers: db files
netmasks: files
networks: files
protocols: db files
rpc: files
services: files
netgroup: files
publickey: nisplus
automount: files
aliases: files nisplus

On executing the wbinfo -u i am getting the user list from AD

[root@smbad ~]# wbinfo -u
administrator
guest
krbtgt
testdev
testadmin
testhr
testqa
testit
testcmt
testsupp
testituser

On executing the wbinfo -u i am getting the user list from AD. But groups i created on AD is not displaying in this list [i.e itadmin]

[root@smbad ~]# wbinfo -g
BUILTIN+administrators
BUILTIN+users
SMBAD+itadmin
domain computers
domain controllers
domain admins
domain users
domain guests
group policy creator owners
read-only domain controllers
dnsupdateproxy
cert publishers
ras and ias servers
allowed rodc password replication group
denied rodc password replication group
dnsadmins
schema admins
enterprise admins
enterprise read-only domain controllers

Please help on how to map AD group to samba so that group permissions can be setup on samba
Pages: 1 ... 3 4 [5] 6 7 ... 10