PDA

Archiv verlassen und diese Seite im Standarddesign anzeigen : Debian 3.1 / Samba 3.07 / W2000 / XP Anmeldeprobleme



mcaffee
10.10.04, 22:15
Ich habe einen Samba PCD aufgesetzt und versuche schon seit 3 Tagen mit der Hilfe von 100 Howtos und Foren die Anmeldung an die Domain zu schaffen.

Es sind immer andere Probleme:

Ich kann mich bei den Freigaben ganz normal mit den Daten einloggen und erhalte dann auch die jeweiling Freigaben (Homes ect.).

Möchte ich aber der Domain beitreten, gibt es nur Fehler:

Er legt zwar den Maschinen Account an (root und Administrator), zeigt aber dann nach 30 Sec:

"Der Benutzer konnte nicht gefunden werden."

Ich wäre für Hilfe echt dankbar.

per Mail an: chef@biel-edv.de.

Danke, Ben.

aheinhold
10.10.04, 22:47
Hi,

um deine Config mal checken zu können wäre es natürlich schon sinnvoll, wenn du uns die smb.conf mal postest.

mcaffee
10.10.04, 23:35
# Global parameters
[global]
dos charset = 850
unix charset = ISO-8859-15
display charset = ISO-8859-15
workgroup = STB-BIEL
# valid users = Administrator, root
netbios name = SERVER
server string = Samba Domain Server
update encrypted = Yes
client schannel = Yes
server schannel = Yes
obey pam restrictions = Yes
passdb backend = ldapsam:ldap://127.0.0.1/
pam password change = Yes
passwd program = /usr/local/sbin/smbldap-passwd -u %u
security = user
unix password sync = Yes
log level = 3
log file = /home/bi/log.%m
time server = Yes
large readwrite = yes
socket options = SO_KEEPALIVE IPTOS_LOWDELAY SO_SNDBUF=8192 SO_RCVBUF=8192

add user script = /usr/local/sbin/smbldap-useradd -m -a "%u"
delete user script = /usr/local/sbin/smbldap-userdel "%u"
add machine script = /usr/local/sbin/smbldap-useradd -w "%u"
add group script = /usr/local/sbin/smbldap-groupadd -p "%g"
delete group script = /usr/local/sbin/smbldap-groupdel "%g"
add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g"
delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g"
set primary group script = /usr/local/sbin/smbldap-usermod -g "%u" "%g"
logon path = \\%L\profiles\%U
logon home = \\%L\profiles\%U
domain logons = Yes
os level = 65
preferred master = Yes
domain master = Yes
# wins support = Yes
ldap admin dn = cn=manager,dc=stb-biel,dc=de
ldap delete dn = Yes
ldap group suffix = ou=Groups
ldap machine suffix = ou=Users
ldap passwd sync = Yes
ldap suffix = dc=stb-biel,dc=de
ldap ssl = no
ldap user suffix = ou=Users
# hosts allow = 192.168.1.0/255.255.255.0
# hosts deny = all
add share command = /var/lib/samba/scripts/modify_samba_config.pl
delete share command = /var/lib/samba/scripts/modify_samba_config.pl
# max protocol = LANMON2

# --> Papierkorb <-- #

# veto files = /.recycle/
# vfs object = /usr/lib/samba/vfs/recycle.so
# recycle: repository = .recycle/%U
# recycle: versions =True
# recycle: touch=True
# recycle: keeptree=True
# recycle: noversion = *.doc|*.xls|*.ppt
# recycle: exclude = ~$*.doc *.lnk *.tmp *.temp *.cache
# recycle: maxsize = 0

# --> Papierkorb <-- #

# [audit]
# comment = ?erwachter /Daten Ordner
# path = /home/samba/audit
# vfs objects = recycle
# recycle: repository = .recycle/%U
# recycle: versions=True
# recycle: touch=True
# recycle: keeptree=True
# recycle: noversion = *.doc|*.xls|*.ppt
# recycle: exclude = ~$*.doc *.lnk *.tmp *.temp *.cache
# recycle: maxsize = 0
#
# writeable = yes
# browseable = yes


[homes]
comment = Home Directories
valid users = %U
read only = No
create mask = 0664
directory mask = 0775
browseable = No

vfs objects = recycle
recycle: repository = .recycle/%U
recycle: versions = yes
recycle: touch = yes
recycle: keeptree = yes
# recycle: noversion = *.doc|*.xls|*.ppt
# recycle: exclude = ~$*.doc *.lnk *.tmp *.temp *.cache
recycle: maxsize = 0

[profiles]
comment = Network Profiles Service
path = /home/samba/profiles
# read only = No
writeable = Yes
create mask = 0700
directory mask = 0700
browseab?e = No
# profile acls = Yes
# map system = Yes
# map hidden = Yes
browseable = No

vfs objects = recycle
recycle: repository = .recycle/%U
recycle: versions = yes
recycle: touch = yes
recycle: keeptree = yes
# recycle: noversion = *.doc|*.xls|*.ppt
# recycle: exclude = ~$*.doc *.lnk *.tmp *.temp *.cache
recycle: maxsize = 0

[netlogon]
comment = Network Logon Service
path = /home/samba/netlogon
# browseable = No
writeable = no
public = no

[Public]
comment = Public
path = /home/samba/public
# read only = No
# create mask = 0664
# directory mask = 0775
vfs objects = recycle
# quest ok = yes
writeable = yes

recycle: repository = .recycle/%U
recycle: versions = yes
recycle: touch = yes
recycle: keeptree = yes
# recycle: noversion = *.doc|*.xls|*.ppt
# recycle: exclude = ~$*.doc *.lnk *.tmp *.temp *.cache
recycle: maxsize = 0

[Public Papierkorb]
comment = Public Papierkorb
path = /home/samba/public/.recycle/%U
# read only = No
# create mask = 0664
# directory mask = 0775
writeable = yes
# browseable = yes
# quest ok = yes

mcaffee
10.10.04, 23:47
Ich habe es jetzt geschafft, das ich der Domäne beitreten kann, nur wenn ich mich dann Anmelden will, sagt er:

Es kann keine Verbindung mit der Domäne hergestellt werden......

Wenn ich mich dann Lokal Anmelde, steht in den Einstellungen die Domäne drin und ich kann auf die IP und den Namen pingen.

Wenn ich dann auf die Domäne gehe bei den Netzwerken, kommt sofort:

Es kann keine Verbindung.....

Danke, Ben.

mcaffee
11.10.04, 14:26
Es hat in der smb.conf "domain logons = yes gefehlt", so leicht kann es gehen.

Jetzt habe ich nur noch Probleme mit den Logon scripten und den Profiles...

[netlogon]

comment = Network Logon Service
path = /home/samba/netlogon
browseable = No
writeable = no
guest ok = no
public = no
writelist = Administrator, root

[profiles]
comment = Network Profiles Service
path = /home/samba/profiles/%U
profile acls = yes
create mode = 0711
directory mask = 0700
read only = no
browseable = yes
map archive = yes
map hidden = yes
map system = yes
writeable = yes
csc policy = no
store dos attributes = yes


Ich hoffe es kann mir jemand helfen.

Danke, Ben