Samba+LDAP & Windows XP 64bit

Простые/общие вопросы по UNIX системам. Спросите здесь, если вы новичок

Модераторы: vadim64, terminus

Правила форума
Убедительная просьба юзать теги [cоde] при оформлении листингов.
Сообщения не оформленные должным образом имеют все шансы быть незамеченными.
Аватара пользователя
tray.irk
сержант
Сообщения: 266
Зарегистрирован: 2008-10-22 8:21:36
Откуда: Иркутск
Контактная информация:

Samba+LDAP & Windows XP 64bit

Непрочитанное сообщение tray.irk » 2012-05-06 7:22:11

Проблемма следующая ... поставил контроллер домена по статье http://www.lissyara.su/articles/freebsd ... amba+ldap/

Возникла трабала имеется сервак виндовый 2008 ... не могу его ввести в домен самбы ... при вводе запрашивает логин и пароль ... вводишь .... долго ждешь и в итоге сообщение "Не найден контроллер домена test.local"

есть еще одна машина с виндой 64 битной ... такая же трабала.

в ДНС все прописанно ... все пингуется замечательно. Да и другие машинки 32-битные заводятся без проблемм ...

Где порыться что бы исправить?
Числа не управляют миром, но могут показать как управляется мир

Хостинговая компания Host-Food.ru
Хостинг HostFood.ru
 

Услуги хостинговой компании Host-Food.ru

Хостинг HostFood.ru

Тарифы на хостинг в России, от 12 рублей: https://www.host-food.ru/tariffs/hosting/
Тарифы на виртуальные сервера (VPS/VDS/KVM) в РФ, от 189 руб.: https://www.host-food.ru/tariffs/virtualny-server-vps/
Выделенные сервера, Россия, Москва, от 2000 рублей (HP Proliant G5, Intel Xeon E5430 (2.66GHz, Quad-Core, 12Mb), 8Gb RAM, 2x300Gb SAS HDD, P400i, 512Mb, BBU):
https://www.host-food.ru/tariffs/vydelennyi-server-ds/
Недорогие домены в популярных зонах: https://www.host-food.ru/domains/

ChihPih
ст. прапорщик
Сообщения: 568
Зарегистрирован: 2009-09-04 12:23:30
Откуда: Где-то в России...
Контактная информация:

Re: Samba+LDAP & Windows XP 64bit

Непрочитанное сообщение ChihPih » 2012-05-06 7:39:11

Может использовать WINS? В самбе включить и на машинах указать, что машина с самбой WINS сервер.
www.info-x.org - информационный ресурс о ОС FreeBSD.

Аватара пользователя
tray.irk
сержант
Сообщения: 266
Зарегистрирован: 2008-10-22 8:21:36
Откуда: Иркутск
Контактная информация:

Re: Samba+LDAP & Windows XP 64bit

Непрочитанное сообщение tray.irk » 2012-05-06 7:52:57

вот что нашел в логах когда пытаюсь добавить машину в домен

Код: Выделить всё

May  6 13:48:43 gidra slapd[54600]: conn=1004 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
May  6 13:48:43 gidra slapd[54600]: conn=1003 op=10 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=10000))"
May  6 13:48:43 gidra slapd[54600]: conn=1003 op=10 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:43 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May  6 13:48:43 gidra slapd[54600]: conn=1003 op=10 SEARCH RESULT tag=101 err=0 nentries=1 text=
May  6 13:48:46 gidra slapd[54600]: conn=1001 fd=14 closed (connection lost)
May  6 13:48:46 gidra slapd[54600]: conn=1004 fd=10 closed (connection lost)
May  6 13:48:46 gidra slapd[54600]: conn=1003 fd=16 closed (connection lost)
May  6 13:48:46 gidra slapd[54600]: conn=1005 fd=10 ACCEPT from IP=127.0.0.1:22465 (IP=127.0.0.1:389)
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=0 BIND dn="cn=root,dc=obl-bti,dc=local" method=128
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=0 BIND dn="cn=root,dc=obl-bti,dc=local" mech=SIMPLE ssf=0
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=0 RESULT tag=97 err=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=1 SRCH attr=supportedControl
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=2 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaDomain)(sambaDomainName=obl-bti.local))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=2 SRCH attr=sambaDomainName sambaNextRid sambaNextUserRid sambaNextGroupRid sambaSID sambaAlgorithmicRidBase objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaDomainName) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=2 SEARCH RESULT tag=101 err=0 nentries=1 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=3 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=0))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=3 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=3 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=4 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=0))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=4 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=4 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 fd=14 ACCEPT from IP=127.0.0.1:16571 (IP=127.0.0.1:389)
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=0 BIND dn="" method=128
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=0 RESULT tag=97 err=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=1 SRCH base="ou=users,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=root))"
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=2 SRCH base="ou=computers,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=root))"
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=2 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=3 SRCH base="ou=groups,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixGroup)(memberUid=root))"
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=3 SRCH attr=gidNumber
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (memberUid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=3 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=5 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=5))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=5 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=5 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=6 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(uid=root)(objectClass=sambaSamAccount))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=6 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive samb
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=6 SRCH attr=homeDirectory loginShell gecos
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=6 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=7 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(|(displayName=root)(cn=root)))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=7 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (displayName) not indexed
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (cn) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=7 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=4 SRCH base="ou=users,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=root))"
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=4 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=5 SRCH base="ou=computers,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=root))"
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=5 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=6 SRCH base="ou=groups,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixGroup)(memberUid=root))"
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=6 SRCH attr=gidNumber
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (memberUid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=6 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=8 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-32-544))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=8 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=8 SEARCH RESULT tag=101 err=0 nentries=1 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=9 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-32-545))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=9 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=9 SEARCH RESULT tag=101 err=0 nentries=1 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=10 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaGroupType=4)(|(sambaSIDList=s-1-22-1-0)(sambaSIDList=s-1-22-2-0)(sambaSIDList=s-1-22-2-5)(
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=10 SRCH attr=sambaSID
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaGroupType) not indexed
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSIDList) not indexed
May  6 13:48:46 gidra last message repeated 5 times
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=10 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=11 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-1-0))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=11 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=11 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=12 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-2))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=12 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=12 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=13 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-11))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=13 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=13 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=7 SRCH base="ou=users,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=obl-bti.local\5Cnobody))"
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=7 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass shadowLastChange shadowMax shadowExpire loginClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=7 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=8 SRCH base="ou=computers,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=obl-bti.local\5Cnobody))"
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=8 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass shadowLastChange shadowMax shadowExpire loginClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=8 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=9 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=10 SRCH base="ou=computers,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=obl-bti.local\5Cnobody))"
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=10 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass shadowLastChange shadowMax shadowExpire loginClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=10 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=11 SRCH base="ou=users,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=obl-bti.local\5Cnobody))"
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=11 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass shadowLastChange shadowMax shadowExpire loginClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=11 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=12 SRCH base="ou=computers,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=obl-bti.local\5Cnobody))"
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=12 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass shadowLastChange shadowMax shadowExpire loginClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1006 op=12 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=14 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=65534))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=14 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=14 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=15 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=65534))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=15 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=15 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=16 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaGroupType=4)(|(sambaSIDList=s-1-5-21-1260204287-882821110-3850685650-501)(sambaSIDList=s-1
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=16 SRCH attr=sambaSID
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaGroupType) not indexed
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSIDList) not indexed
May  6 13:48:46 gidra last message repeated 5 times
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=16 SEARCH RESULT tag=101 err=0 nentries=1 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=17 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(sambaSID=s-1-5-21-1260204287-882821110-3850685650-513)(objectClass=sambaSamAccount))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=17 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive sam
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=17 SRCH attr=homeDirectory loginShell gecos
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=17 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=18 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-21-1260204287-882821110-3850685650-513))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=18 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=18 SEARCH RESULT tag=101 err=0 nentries=1 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=19 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(sambaSID=s-1-5-21-1260204287-882821110-3850685650-546)(objectClass=sambaSamAccount))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=19 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive sam
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=19 SRCH attr=homeDirectory loginShell gecos
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=19 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=20 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-21-1260204287-882821110-3850685650-546))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=20 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=20 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=21 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(sambaSID=s-1-5-21-1260204287-882821110-3850685650-546)(objectClass=sambaSamAccount))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=21 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive sam
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=21 SRCH attr=homeDirectory loginShell gecos
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=21 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=22 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-21-1260204287-882821110-3850685650-546))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=22 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=22 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=23 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-1-0))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=23 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=23 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=24 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-2))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=24 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=24 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=25 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-32-546))"
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=25 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May  6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May  6 13:48:46 gidra slapd[54600]: conn=1005 op=25 SEARCH RESULT tag=101 err=0 nentries=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1007 fd=15 ACCEPT from IP=127.0.0.1:36195 (IP=127.0.0.1:389)
May  6 13:48:46 gidra slapd[54600]: conn=1007 op=0 BIND dn="cn=root,dc=obl-bti,dc=local" method=128
May  6 13:48:46 gidra slapd[54600]: conn=1007 op=0 BIND dn="cn=root,dc=obl-bti,dc=local" mech=SIMPLE ssf=0
May  6 13:48:46 gidra slapd[54600]: conn=1007 op=0 RESULT tag=97 err=0 text=
May  6 13:48:46 gidra slapd[54600]: conn=1007 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
May  6 13:48:46 gidra slapd[54600]: conn=1007 op=1 SRCH attr=supportedControl


и тд ...
Числа не управляют миром, но могут показать как управляется мир

Аватара пользователя
tray.irk
сержант
Сообщения: 266
Зарегистрирован: 2008-10-22 8:21:36
Откуда: Иркутск
Контактная информация:

Re: Samba+LDAP & Windows XP 64bit

Непрочитанное сообщение tray.irk » 2012-05-06 7:53:38

и вот

Код: Выделить всё

May  6 13:50:00 gidra cron[54660]: NSSWITCH(_nsdispatch): ldap, group, setgrent, not found, and no fallback provided
May  6 13:50:00 gidra cron[54660]: NSSWITCH(_nsdispatch): ldap, group, getgrent_r, not found, and no fallback provided
May  6 13:50:00 gidra cron[54660]: NSSWITCH(_nsdispatch): ldap, group, endgrent, not found, and no fallback provided
May  6 13:50:00 gidra cron[54660]: NSSWITCH(_nsdispatch): ldap, passwd, endpwent, not found, and no fallback provided
May  6 13:51:16 gidra slapd[54600]: conn=1005 op=26 UNBIND
May  6 13:51:16 gidra slapd[54600]: conn=1005 fd=10 closed

Числа не управляют миром, но могут показать как управляется мир

Аватара пользователя
tray.irk
сержант
Сообщения: 266
Зарегистрирован: 2008-10-22 8:21:36
Откуда: Иркутск
Контактная информация:

Re: Samba+LDAP & Windows XP 64bit

Непрочитанное сообщение tray.irk » 2012-05-06 8:01:00

Код: Выделить всё

   wins support = yes
   wins proxy = yes
на машине клиентской прописал wins
результат тот же (
Числа не управляют миром, но могут показать как управляется мир

Аватара пользователя
tray.irk
сержант
Сообщения: 266
Зарегистрирован: 2008-10-22 8:21:36
Откуда: Иркутск
Контактная информация:

Re: Samba+LDAP & Windows XP 64bit

Непрочитанное сообщение tray.irk » 2012-05-06 8:08:07

Выложу конфиги для более обширной картины

Код: Выделить всё

gidra# cat /usr/local/etc/smb.conf
#======================= Global Settings =====================================
[global]
   workgroup = obl-bti.local
   netbios name = gidra
   server string = Samba Server
   security = user
   hosts allow = 10.239.1. 10.239.33. 10.239.199. 127.
   load printers = no
#  guest account = pcguest
   log file = /var/log/samba/log.%m
   max log size = 50

   encrypt passwords = yes


   passdb backend = ldapsam:ldap://127.0.0.1
   ldap suffix = dc=obl-bti,dc=local
   ldap user suffix = ou=users
   ldap group suffix = ou=groups
   ldap machine suffix = ou=computers
   ldap admin dn = "cn=root,dc=obl-bti,dc=local"
   ldap delete dn = no
   ldap ssl = off
   winbind uid = 10000-20000
   winbind gid = 10000-20000
   winbind separator = @
   winbind use default domain = yes

   admin users = admin

   socket options = SO_RCVBUF=8192 SO_SNDBUF=8192
   interfaces = 10.239.1.100/24
   local master = yes
   os level = 64
   domain master = yes
   preferred master = yes
   domain logons = yes
   logon path =
   wins support = yes
   wins proxy = yes
   dns proxy = no
   display charset = koi8-r
   unix charset = koi8-r
   dos charset = cp866
   time server = yes

   add machine script = /usr/local/sbin/ldapaddmachine '%u' computers
   add user script = /usr/local/sbin/ldapadduser '%u' users
   add group script = /usr/local/sbin/ldapaddgroup '%g'
   add user to group script = /usr/local/sbin/ldapaddusertogroup '%u' '%g'
   delete user script = /usr/local/sbin/ldapdeleteuser '%u'
   delete group script = /usr/local/sbin/ldapdeletegroup '%g'
   delete user from group script = /usr/local/sbin/ldapdeleteuserfromgroup '%u' '%g'
   set primary group script = /usr/local/sbin/ldapsetprimarygroup '%u' '%g'
   rename user script = /usr/local/sbin/ldaprenameuser '%uold' '%unew



#============================ Share Definitions ==============================
#[homes]
#   comment = Home Directories
#   browseable = no
#   writable = yes

[netlogon]
 comment = Network Logon Service
 path = /usr/local/etc/samba/netlogon
 browseable = no
 guest ok = yes
 writable = no
 share modes = no
 volume = NETLOGON

Код: Выделить всё

gidra# cat /usr/local/etc/openldap/slapd.conf
#
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include         /usr/local/etc/openldap/schema/core.schema
include         /usr/local/etc/openldap/schema/cosine.schema
include         /usr/local/etc/openldap/schema/inetorgperson.schema
include         /usr/local/etc/openldap/schema/misc.schema
include         /usr/local/etc/openldap/schema/nis.schema
include         /usr/local/etc/openldap/schema/openldap.schema
include         /usr/local/etc/openldap/schema/samba.schema


# Define global ACLs to disable default read access.

# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral       ldap://root.openldap.org

pidfile         /var/run/openldap/slapd.pid
argsfile        /var/run/openldap/slapd.args

# Load dynamic backend modules:
modulepath      /usr/local/libexec/openldap
moduleload      back_bdb
# moduleload    back_hdb
#moduleload     back_ldap

# Sample security restrictions
#       Require integrity protection (prevent hijacking)
#       Require 112-bit (3DES or better) encryption for updates
#       Require 63-bit encryption for simple bind
# security ssf=1 update_ssf=112 simple_bind=64

# Sample access control policy:
#       Root DSE: allow anyone to read it
#       Subschema (sub)entry DSE: allow anyone to read it
#       Other DSEs:
#               Allow self write access
#               Allow authenticated users read access
#               Allow anonymous users to authenticate
#       Directives needed to implement policy:
# access to dn.base="" by * read
# access to dn.base="cn=Subschema" by * read
# access to *
#       by self write
#       by users read
#       by anonymous auth
#
# if no access controls are present, the default policy
# allows anyone and everyone to read anything but restricts
# updates to rootdn.  (e.g., "access to * by * read")
#
# rootdn can always read and write EVERYTHING!

#######################################################################
# BDB database definitions
#######################################################################

database        bdb
suffix          "dc=obl-bti,dc=local"
rootdn          "cn=root,dc=obl-bti,dc=local"
# Cleartext passwords, especially for the rootdn, should
# be avoid.  See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw          {SSHA}EudC8/N9SHehADX2lRsI25ffF8hjWfok
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory       /var/db/openldap-data
# Indices to maintain
index   objectClass     eq

index   uid,uidNumber,gidNumber     eq
index   cn,mail,surname,givenname               eq,subinitial

index   sambaSID                                eq
index   sambaPrimaryGroupSID                    eq
index   sambaDomainName                         eq

#access to attrs=userPassword
#    by self write
#    by anonymous auth
#    by * none

#access to attrs=sambaLMPassword,sambaNTPassword
#    by dn="cn=root,dc=obl-bti,dc=local" write
#    by * none

#access to *
#    by self write
#    by anonymous read
#    by * none


access to attrs=userPassword
        by self write
        by anonymous auth
        by * none

# Доступ к остальной информации: себе -- писать, анонимам читать, остальным ничего.
access to *
        by self write
        by anonymous read
        by * none


Код: Выделить всё

gidra# cat /usr/local/etc/nss_ldap.conf | grep -v '^#'

host 127.0.0.1

base dc=obl-bti,dc=local

uri ldap://127.0.0.1/

ldap_version 3

port 389

scope one

timelimit 30

bind_timelimit 30

bind_policy soft
bindpw pass

nss_connect_policy persist

idle_timelimit 3600

nss_paged_results yes

pagesize 1000

nss_base_passwd         ou=users,dc=obl-bti,dc=local?one
nss_base_shadow         ou=users,dc=padl,dc=com?one
nss_base_group          ou=groups,dc=obl-bti,dc=local?one
nss_base_passwd         ou=computers,dc=obl-bti,dc=local?one

Код: Выделить всё

gidra# cat /usr/local/etc/ldapscripts/ldapscripts.conf | grep -v '^#'

SERVER="ldap://localhost"

SUFFIX="dc=obl-bti,dc=local" # Global suffix
GSUFFIX="ou=groups"        # Groups ou (just under $SUFFIX)
USUFFIX="ou=users"         # Users ou (just under $SUFFIX)
MSUFFIX="ou=computers"      # Machines ou (just under $SUFFIX)

SASLAUTH=""

BINDDN="cn=root,dc=obl-bti,dc=local"
BINDPWD="pass"

GIDSTART="10000" # Group ID
UIDSTART="10000" # User ID
MIDSTART="20000" # Machine ID

GCLASS="posixGroup"   # Leave "posixGroup" here if not sure !

USHELL="/bin/sbin/nologin"
UHOMES="/home/samba/homes/%u"     # You may use %u for username here
CREATEHOMES="no"      # Create home directories and set rights ?
HOMESKEL="/etc/skel"  # Directory where the skeleton files are located. Ignored if undefined or nonexistant.
HOMEPERMS="700"       # Default permissions for home directories

PASSWORDGEN="cat /dev/random | LC_ALL=C tr -dc 'a-zA-Z0-9' | head -c8"

RECORDPASSWORDS="yes"
PASSWORDFILE="/var/log/ldapscripts_passwd.log"

LOGFILE="/var/log/ldapscripts.log"

TMPDIR="/tmp"


LDAPSEARCHBIN="/usr/local/bin/ldapsearch"
LDAPADDBIN="/usr/local/bin/ldapadd"
LDAPDELETEBIN="/usr/local/bin/ldapdelete"
LDAPMODIFYBIN="/usr/local/bin/ldapmodify"
LDAPMODRDNBIN="/usr/local/bin/ldapmodrdn"
LDAPPASSWDBIN="/usr/local/bin/ldappasswd"



GETENTPWCMD=""
GETENTGRCMD=""

GTEMPLATE=""
UTEMPLATE=""
MTEMPLATE=""

Числа не управляют миром, но могут показать как управляется мир

Аватара пользователя
tray.irk
сержант
Сообщения: 266
Зарегистрирован: 2008-10-22 8:21:36
Откуда: Иркутск
Контактная информация:

Re: Samba+LDAP & Windows XP 64bit

Непрочитанное сообщение tray.irk » 2012-05-06 8:11:39

выше написанное про логи лдапа ... сюда не относятся я так понял ... (( проблемма в другом
Числа не управляют миром, но могут показать как управляется мир

snorlov
подполковник
Сообщения: 3846
Зарегистрирован: 2008-09-04 11:51:25
Откуда: Санкт-Петербург

Re: Samba+LDAP & Windows XP 64bit

Непрочитанное сообщение snorlov » 2012-05-06 11:54:37

для 7-ки срабатывало это

Код: Выделить всё

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Parameters]
"DomainCompatibilityMode"=dword:00000001
"DNSNameResolutionRequired"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Netlogon\Parameters]
"RequireSignOrSeal"=dword:00000000
"RequireStrongKey"=dword:00000000 
Может быть еще и локальная политика в Security Options

Код: Выделить всё

Network security: LAN Manager authentication level Send LM & NTLM responses
Minimum session security for NTLM SSP Disable Require 128-bit encryption

Аватара пользователя
tray.irk
сержант
Сообщения: 266
Зарегистрирован: 2008-10-22 8:21:36
Откуда: Иркутск
Контактная информация:

Re: Samba+LDAP & Windows XP 64bit

Непрочитанное сообщение tray.irk » 2012-05-06 14:56:55

Скажу я вам ... теперь и обычные виндосы перестали вводиться ... Верны ли конфиги?
Числа не управляют миром, но могут показать как управляется мир

snorlov
подполковник
Сообщения: 3846
Зарегистрирован: 2008-09-04 11:51:25
Откуда: Санкт-Петербург

Re: Samba+LDAP & Windows XP 64bit

Непрочитанное сообщение snorlov » 2012-05-08 19:42:17

tray.irk писал(а):Скажу я вам ... теперь и обычные виндосы перестали вводиться ... Верны ли конфиги?
А ты что сделал то...