Samba+LDAP & Windows XP 64bit
Правила форума
Убедительная просьба юзать теги [cоde] при оформлении листингов.
Сообщения не оформленные должным образом имеют все шансы быть незамеченными.
Убедительная просьба юзать теги [cоde] при оформлении листингов.
Сообщения не оформленные должным образом имеют все шансы быть незамеченными.
- tray.irk
- сержант
- Сообщения: 266
- Зарегистрирован: 2008-10-22 8:21:36
- Откуда: Иркутск
- Контактная информация:
Samba+LDAP & Windows XP 64bit
Проблемма следующая ... поставил контроллер домена по статье http://www.lissyara.su/articles/freebsd ... amba+ldap/
Возникла трабала имеется сервак виндовый 2008 ... не могу его ввести в домен самбы ... при вводе запрашивает логин и пароль ... вводишь .... долго ждешь и в итоге сообщение "Не найден контроллер домена test.local"
есть еще одна машина с виндой 64 битной ... такая же трабала.
в ДНС все прописанно ... все пингуется замечательно. Да и другие машинки 32-битные заводятся без проблемм ...
Где порыться что бы исправить?
Возникла трабала имеется сервак виндовый 2008 ... не могу его ввести в домен самбы ... при вводе запрашивает логин и пароль ... вводишь .... долго ждешь и в итоге сообщение "Не найден контроллер домена test.local"
есть еще одна машина с виндой 64 битной ... такая же трабала.
в ДНС все прописанно ... все пингуется замечательно. Да и другие машинки 32-битные заводятся без проблемм ...
Где порыться что бы исправить?
Числа не управляют миром, но могут показать как управляется мир
Услуги хостинговой компании Host-Food.ru
Тарифы на хостинг в России, от 12 рублей: https://www.host-food.ru/tariffs/hosting/
Тарифы на виртуальные сервера (VPS/VDS/KVM) в РФ, от 189 руб.: https://www.host-food.ru/tariffs/virtualny-server-vps/
Выделенные сервера, Россия, Москва, от 2000 рублей (HP Proliant G5, Intel Xeon E5430 (2.66GHz, Quad-Core, 12Mb), 8Gb RAM, 2x300Gb SAS HDD, P400i, 512Mb, BBU):
https://www.host-food.ru/tariffs/vydelennyi-server-ds/
Недорогие домены в популярных зонах: https://www.host-food.ru/domains/
Тарифы на виртуальные сервера (VPS/VDS/KVM) в РФ, от 189 руб.: https://www.host-food.ru/tariffs/virtualny-server-vps/
Выделенные сервера, Россия, Москва, от 2000 рублей (HP Proliant G5, Intel Xeon E5430 (2.66GHz, Quad-Core, 12Mb), 8Gb RAM, 2x300Gb SAS HDD, P400i, 512Mb, BBU):
https://www.host-food.ru/tariffs/vydelennyi-server-ds/
Недорогие домены в популярных зонах: https://www.host-food.ru/domains/
-
- ст. прапорщик
- Сообщения: 568
- Зарегистрирован: 2009-09-04 12:23:30
- Откуда: Где-то в России...
- Контактная информация:
Re: Samba+LDAP & Windows XP 64bit
Может использовать WINS? В самбе включить и на машинах указать, что машина с самбой WINS сервер.
www.info-x.org - информационный ресурс о ОС FreeBSD.
- tray.irk
- сержант
- Сообщения: 266
- Зарегистрирован: 2008-10-22 8:21:36
- Откуда: Иркутск
- Контактная информация:
Re: Samba+LDAP & Windows XP 64bit
вот что нашел в логах когда пытаюсь добавить машину в домен
и тд ...
Код: Выделить всё
May 6 13:48:43 gidra slapd[54600]: conn=1004 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
May 6 13:48:43 gidra slapd[54600]: conn=1003 op=10 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=10000))"
May 6 13:48:43 gidra slapd[54600]: conn=1003 op=10 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:43 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May 6 13:48:43 gidra slapd[54600]: conn=1003 op=10 SEARCH RESULT tag=101 err=0 nentries=1 text=
May 6 13:48:46 gidra slapd[54600]: conn=1001 fd=14 closed (connection lost)
May 6 13:48:46 gidra slapd[54600]: conn=1004 fd=10 closed (connection lost)
May 6 13:48:46 gidra slapd[54600]: conn=1003 fd=16 closed (connection lost)
May 6 13:48:46 gidra slapd[54600]: conn=1005 fd=10 ACCEPT from IP=127.0.0.1:22465 (IP=127.0.0.1:389)
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=0 BIND dn="cn=root,dc=obl-bti,dc=local" method=128
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=0 BIND dn="cn=root,dc=obl-bti,dc=local" mech=SIMPLE ssf=0
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=0 RESULT tag=97 err=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=1 SRCH attr=supportedControl
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=2 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaDomain)(sambaDomainName=obl-bti.local))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=2 SRCH attr=sambaDomainName sambaNextRid sambaNextUserRid sambaNextGroupRid sambaSID sambaAlgorithmicRidBase objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaDomainName) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=2 SEARCH RESULT tag=101 err=0 nentries=1 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=3 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=0))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=3 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=3 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=4 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=0))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=4 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=4 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 fd=14 ACCEPT from IP=127.0.0.1:16571 (IP=127.0.0.1:389)
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=0 BIND dn="" method=128
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=0 RESULT tag=97 err=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=1 SRCH base="ou=users,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=root))"
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=2 SRCH base="ou=computers,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=root))"
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=2 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=3 SRCH base="ou=groups,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixGroup)(memberUid=root))"
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=3 SRCH attr=gidNumber
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (memberUid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=3 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=5 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=5))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=5 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=5 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=6 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(uid=root)(objectClass=sambaSamAccount))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=6 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive samb
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=6 SRCH attr=homeDirectory loginShell gecos
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=6 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=7 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(|(displayName=root)(cn=root)))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=7 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (displayName) not indexed
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (cn) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=7 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=4 SRCH base="ou=users,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=root))"
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=4 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=5 SRCH base="ou=computers,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=root))"
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=5 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=6 SRCH base="ou=groups,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixGroup)(memberUid=root))"
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=6 SRCH attr=gidNumber
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (memberUid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=6 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=8 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-32-544))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=8 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=8 SEARCH RESULT tag=101 err=0 nentries=1 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=9 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-32-545))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=9 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=9 SEARCH RESULT tag=101 err=0 nentries=1 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=10 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaGroupType=4)(|(sambaSIDList=s-1-22-1-0)(sambaSIDList=s-1-22-2-0)(sambaSIDList=s-1-22-2-5)(
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=10 SRCH attr=sambaSID
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaGroupType) not indexed
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSIDList) not indexed
May 6 13:48:46 gidra last message repeated 5 times
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=10 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=11 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-1-0))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=11 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=11 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=12 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-2))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=12 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=12 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=13 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-11))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=13 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=13 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=7 SRCH base="ou=users,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=obl-bti.local\5Cnobody))"
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=7 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass shadowLastChange shadowMax shadowExpire loginClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=7 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=8 SRCH base="ou=computers,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=obl-bti.local\5Cnobody))"
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=8 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass shadowLastChange shadowMax shadowExpire loginClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=8 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=9 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=10 SRCH base="ou=computers,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=obl-bti.local\5Cnobody))"
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=10 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass shadowLastChange shadowMax shadowExpire loginClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=10 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=11 SRCH base="ou=users,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=obl-bti.local\5Cnobody))"
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=11 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass shadowLastChange shadowMax shadowExpire loginClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=11 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=12 SRCH base="ou=computers,dc=obl-bti,dc=local" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=obl-bti.local\5Cnobody))"
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=12 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass shadowLastChange shadowMax shadowExpire loginClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (uid) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1006 op=12 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=14 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=65534))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=14 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=14 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=15 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=65534))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=15 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (gidNumber) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=15 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=16 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaGroupType=4)(|(sambaSIDList=s-1-5-21-1260204287-882821110-3850685650-501)(sambaSIDList=s-1
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=16 SRCH attr=sambaSID
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaGroupType) not indexed
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSIDList) not indexed
May 6 13:48:46 gidra last message repeated 5 times
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=16 SEARCH RESULT tag=101 err=0 nentries=1 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=17 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(sambaSID=s-1-5-21-1260204287-882821110-3850685650-513)(objectClass=sambaSamAccount))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=17 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive sam
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=17 SRCH attr=homeDirectory loginShell gecos
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=17 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=18 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-21-1260204287-882821110-3850685650-513))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=18 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=18 SEARCH RESULT tag=101 err=0 nentries=1 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=19 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(sambaSID=s-1-5-21-1260204287-882821110-3850685650-546)(objectClass=sambaSamAccount))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=19 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive sam
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=19 SRCH attr=homeDirectory loginShell gecos
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=19 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=20 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-21-1260204287-882821110-3850685650-546))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=20 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=20 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=21 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(sambaSID=s-1-5-21-1260204287-882821110-3850685650-546)(objectClass=sambaSamAccount))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=21 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive sam
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=21 SRCH attr=homeDirectory loginShell gecos
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=21 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=22 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-21-1260204287-882821110-3850685650-546))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=22 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=22 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=23 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-1-0))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=23 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=23 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=24 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-2))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=24 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=24 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=25 SRCH base="dc=obl-bti,dc=local" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-32-546))"
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=25 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
May 6 13:48:46 gidra slapd[54600]: <= bdb_equality_candidates: (sambaSID) not indexed
May 6 13:48:46 gidra slapd[54600]: conn=1005 op=25 SEARCH RESULT tag=101 err=0 nentries=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1007 fd=15 ACCEPT from IP=127.0.0.1:36195 (IP=127.0.0.1:389)
May 6 13:48:46 gidra slapd[54600]: conn=1007 op=0 BIND dn="cn=root,dc=obl-bti,dc=local" method=128
May 6 13:48:46 gidra slapd[54600]: conn=1007 op=0 BIND dn="cn=root,dc=obl-bti,dc=local" mech=SIMPLE ssf=0
May 6 13:48:46 gidra slapd[54600]: conn=1007 op=0 RESULT tag=97 err=0 text=
May 6 13:48:46 gidra slapd[54600]: conn=1007 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
May 6 13:48:46 gidra slapd[54600]: conn=1007 op=1 SRCH attr=supportedControl
и тд ...
Числа не управляют миром, но могут показать как управляется мир
- tray.irk
- сержант
- Сообщения: 266
- Зарегистрирован: 2008-10-22 8:21:36
- Откуда: Иркутск
- Контактная информация:
Re: Samba+LDAP & Windows XP 64bit
и вот
Код: Выделить всё
May 6 13:50:00 gidra cron[54660]: NSSWITCH(_nsdispatch): ldap, group, setgrent, not found, and no fallback provided
May 6 13:50:00 gidra cron[54660]: NSSWITCH(_nsdispatch): ldap, group, getgrent_r, not found, and no fallback provided
May 6 13:50:00 gidra cron[54660]: NSSWITCH(_nsdispatch): ldap, group, endgrent, not found, and no fallback provided
May 6 13:50:00 gidra cron[54660]: NSSWITCH(_nsdispatch): ldap, passwd, endpwent, not found, and no fallback provided
May 6 13:51:16 gidra slapd[54600]: conn=1005 op=26 UNBIND
May 6 13:51:16 gidra slapd[54600]: conn=1005 fd=10 closed
Числа не управляют миром, но могут показать как управляется мир
- tray.irk
- сержант
- Сообщения: 266
- Зарегистрирован: 2008-10-22 8:21:36
- Откуда: Иркутск
- Контактная информация:
Re: Samba+LDAP & Windows XP 64bit
Код: Выделить всё
wins support = yes
wins proxy = yes
результат тот же (
Числа не управляют миром, но могут показать как управляется мир
- tray.irk
- сержант
- Сообщения: 266
- Зарегистрирован: 2008-10-22 8:21:36
- Откуда: Иркутск
- Контактная информация:
Re: Samba+LDAP & Windows XP 64bit
Выложу конфиги для более обширной картины
Код: Выделить всё
gidra# cat /usr/local/etc/smb.conf
#======================= Global Settings =====================================
[global]
workgroup = obl-bti.local
netbios name = gidra
server string = Samba Server
security = user
hosts allow = 10.239.1. 10.239.33. 10.239.199. 127.
load printers = no
# guest account = pcguest
log file = /var/log/samba/log.%m
max log size = 50
encrypt passwords = yes
passdb backend = ldapsam:ldap://127.0.0.1
ldap suffix = dc=obl-bti,dc=local
ldap user suffix = ou=users
ldap group suffix = ou=groups
ldap machine suffix = ou=computers
ldap admin dn = "cn=root,dc=obl-bti,dc=local"
ldap delete dn = no
ldap ssl = off
winbind uid = 10000-20000
winbind gid = 10000-20000
winbind separator = @
winbind use default domain = yes
admin users = admin
socket options = SO_RCVBUF=8192 SO_SNDBUF=8192
interfaces = 10.239.1.100/24
local master = yes
os level = 64
domain master = yes
preferred master = yes
domain logons = yes
logon path =
wins support = yes
wins proxy = yes
dns proxy = no
display charset = koi8-r
unix charset = koi8-r
dos charset = cp866
time server = yes
add machine script = /usr/local/sbin/ldapaddmachine '%u' computers
add user script = /usr/local/sbin/ldapadduser '%u' users
add group script = /usr/local/sbin/ldapaddgroup '%g'
add user to group script = /usr/local/sbin/ldapaddusertogroup '%u' '%g'
delete user script = /usr/local/sbin/ldapdeleteuser '%u'
delete group script = /usr/local/sbin/ldapdeletegroup '%g'
delete user from group script = /usr/local/sbin/ldapdeleteuserfromgroup '%u' '%g'
set primary group script = /usr/local/sbin/ldapsetprimarygroup '%u' '%g'
rename user script = /usr/local/sbin/ldaprenameuser '%uold' '%unew
#============================ Share Definitions ==============================
#[homes]
# comment = Home Directories
# browseable = no
# writable = yes
[netlogon]
comment = Network Logon Service
path = /usr/local/etc/samba/netlogon
browseable = no
guest ok = yes
writable = no
share modes = no
volume = NETLOGON
Код: Выделить всё
gidra# cat /usr/local/etc/openldap/slapd.conf
#
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema
include /usr/local/etc/openldap/schema/misc.schema
include /usr/local/etc/openldap/schema/nis.schema
include /usr/local/etc/openldap/schema/openldap.schema
include /usr/local/etc/openldap/schema/samba.schema
# Define global ACLs to disable default read access.
# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral ldap://root.openldap.org
pidfile /var/run/openldap/slapd.pid
argsfile /var/run/openldap/slapd.args
# Load dynamic backend modules:
modulepath /usr/local/libexec/openldap
moduleload back_bdb
# moduleload back_hdb
#moduleload back_ldap
# Sample security restrictions
# Require integrity protection (prevent hijacking)
# Require 112-bit (3DES or better) encryption for updates
# Require 63-bit encryption for simple bind
# security ssf=1 update_ssf=112 simple_bind=64
# Sample access control policy:
# Root DSE: allow anyone to read it
# Subschema (sub)entry DSE: allow anyone to read it
# Other DSEs:
# Allow self write access
# Allow authenticated users read access
# Allow anonymous users to authenticate
# Directives needed to implement policy:
# access to dn.base="" by * read
# access to dn.base="cn=Subschema" by * read
# access to *
# by self write
# by users read
# by anonymous auth
#
# if no access controls are present, the default policy
# allows anyone and everyone to read anything but restricts
# updates to rootdn. (e.g., "access to * by * read")
#
# rootdn can always read and write EVERYTHING!
#######################################################################
# BDB database definitions
#######################################################################
database bdb
suffix "dc=obl-bti,dc=local"
rootdn "cn=root,dc=obl-bti,dc=local"
# Cleartext passwords, especially for the rootdn, should
# be avoid. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
rootpw {SSHA}EudC8/N9SHehADX2lRsI25ffF8hjWfok
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory /var/db/openldap-data
# Indices to maintain
index objectClass eq
index uid,uidNumber,gidNumber eq
index cn,mail,surname,givenname eq,subinitial
index sambaSID eq
index sambaPrimaryGroupSID eq
index sambaDomainName eq
#access to attrs=userPassword
# by self write
# by anonymous auth
# by * none
#access to attrs=sambaLMPassword,sambaNTPassword
# by dn="cn=root,dc=obl-bti,dc=local" write
# by * none
#access to *
# by self write
# by anonymous read
# by * none
access to attrs=userPassword
by self write
by anonymous auth
by * none
# Доступ к остальной информации: себе -- писать, анонимам читать, остальным ничего.
access to *
by self write
by anonymous read
by * none
Код: Выделить всё
gidra# cat /usr/local/etc/nss_ldap.conf | grep -v '^#'
host 127.0.0.1
base dc=obl-bti,dc=local
uri ldap://127.0.0.1/
ldap_version 3
port 389
scope one
timelimit 30
bind_timelimit 30
bind_policy soft
bindpw pass
nss_connect_policy persist
idle_timelimit 3600
nss_paged_results yes
pagesize 1000
nss_base_passwd ou=users,dc=obl-bti,dc=local?one
nss_base_shadow ou=users,dc=padl,dc=com?one
nss_base_group ou=groups,dc=obl-bti,dc=local?one
nss_base_passwd ou=computers,dc=obl-bti,dc=local?one
Код: Выделить всё
gidra# cat /usr/local/etc/ldapscripts/ldapscripts.conf | grep -v '^#'
SERVER="ldap://localhost"
SUFFIX="dc=obl-bti,dc=local" # Global suffix
GSUFFIX="ou=groups" # Groups ou (just under $SUFFIX)
USUFFIX="ou=users" # Users ou (just under $SUFFIX)
MSUFFIX="ou=computers" # Machines ou (just under $SUFFIX)
SASLAUTH=""
BINDDN="cn=root,dc=obl-bti,dc=local"
BINDPWD="pass"
GIDSTART="10000" # Group ID
UIDSTART="10000" # User ID
MIDSTART="20000" # Machine ID
GCLASS="posixGroup" # Leave "posixGroup" here if not sure !
USHELL="/bin/sbin/nologin"
UHOMES="/home/samba/homes/%u" # You may use %u for username here
CREATEHOMES="no" # Create home directories and set rights ?
HOMESKEL="/etc/skel" # Directory where the skeleton files are located. Ignored if undefined or nonexistant.
HOMEPERMS="700" # Default permissions for home directories
PASSWORDGEN="cat /dev/random | LC_ALL=C tr -dc 'a-zA-Z0-9' | head -c8"
RECORDPASSWORDS="yes"
PASSWORDFILE="/var/log/ldapscripts_passwd.log"
LOGFILE="/var/log/ldapscripts.log"
TMPDIR="/tmp"
LDAPSEARCHBIN="/usr/local/bin/ldapsearch"
LDAPADDBIN="/usr/local/bin/ldapadd"
LDAPDELETEBIN="/usr/local/bin/ldapdelete"
LDAPMODIFYBIN="/usr/local/bin/ldapmodify"
LDAPMODRDNBIN="/usr/local/bin/ldapmodrdn"
LDAPPASSWDBIN="/usr/local/bin/ldappasswd"
GETENTPWCMD=""
GETENTGRCMD=""
GTEMPLATE=""
UTEMPLATE=""
MTEMPLATE=""
Числа не управляют миром, но могут показать как управляется мир
- tray.irk
- сержант
- Сообщения: 266
- Зарегистрирован: 2008-10-22 8:21:36
- Откуда: Иркутск
- Контактная информация:
Re: Samba+LDAP & Windows XP 64bit
выше написанное про логи лдапа ... сюда не относятся я так понял ... (( проблемма в другом
Числа не управляют миром, но могут показать как управляется мир
-
- подполковник
- Сообщения: 3929
- Зарегистрирован: 2008-09-04 11:51:25
- Откуда: Санкт-Петербург
Re: Samba+LDAP & Windows XP 64bit
для 7-ки срабатывало это
Может быть еще и локальная политика в Security Options
Код: Выделить всё
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Parameters]
"DomainCompatibilityMode"=dword:00000001
"DNSNameResolutionRequired"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Netlogon\Parameters]
"RequireSignOrSeal"=dword:00000000
"RequireStrongKey"=dword:00000000
Код: Выделить всё
Network security: LAN Manager authentication level Send LM & NTLM responses
Minimum session security for NTLM SSP Disable Require 128-bit encryption
- tray.irk
- сержант
- Сообщения: 266
- Зарегистрирован: 2008-10-22 8:21:36
- Откуда: Иркутск
- Контактная информация:
Re: Samba+LDAP & Windows XP 64bit
Скажу я вам ... теперь и обычные виндосы перестали вводиться ... Верны ли конфиги?
Числа не управляют миром, но могут показать как управляется мир
-
- подполковник
- Сообщения: 3929
- Зарегистрирован: 2008-09-04 11:51:25
- Откуда: Санкт-Петербург
Re: Samba+LDAP & Windows XP 64bit
А ты что сделал то...tray.irk писал(а):Скажу я вам ... теперь и обычные виндосы перестали вводиться ... Верны ли конфиги?