FreeBSD+SAMBA завести в домен
Добавлено: 2007-01-15 15:37:29
Привет камрады, а кто-нидь сталкивался с таким вот сабжем? Заводил UNIX-машину с установленной SAMBой в виндовый домен?
Нас мало, нас адски мало...
https://forum.lissyara.su/
хм... и фсе?lissyara писал(а):легко.
net join читоли...
Код: Выделить всё
[2007/01/23 14:01:27, 1] nsswitch/winbindd.c:main(953)
winbindd version 3.0.23d started.
Copyright The Samba Team 2000-2004
[2007/01/23 14:01:27, 0] param/loadparm.c:map_parameter(2690)
Unknown parameter encountered: "coment"
[2007/01/23 14:01:27, 0] param/loadparm.c:lp_do_parameter(3420)
Ignoring unknown parameter "coment"
[2007/01/23 14:01:41, 0] libsmb/cliconnect.c:cli_session_setup_spnego(785)
Kinit failed: Cannot contact any KDC for requested realm
[2007/01/23 14:02:25, 0] libsmb/cliconnect.c:cli_session_setup_spnego(785)
Kinit failed: Cannot contact any KDC for requested realm
[2007/01/23 14:02:25, 1] libsmb/clikrb5.c:ads_krb5_mk_req(560)
Код: Выделить всё
[2007/01/23 14:24:08, 0] smbd/server.c:main(847)
smbd version 3.0.23d started.
Copyright Andrew Tridgell and the Samba Team 1992-2006
[2007/01/23 14:24:08, 0] param/loadparm.c:map_parameter(2690)
Unknown parameter encountered: "coment"
[2007/01/23 14:24:08, 0] param/loadparm.c:lp_do_parameter(3420)
Ignoring unknown parameter "coment"
[2007/01/23 14:24:09, 1] libads/cldap.c:recv_cldap_netlogon(240)
Failed to parse cldap reply
[2007/01/23 14:24:09, 0] printing/nt_printing.c:nt_printing_init(649)
nt_printing_init: error checking published printers: WERR_ACCESS_DENIED
Код: Выделить всё
Jan 23 14:24:08 qwerty smbd[567]: [2007/01/23 14:24:08, 0] param/loadparm.c:map_parameter(2690)
Jan 23 14:24:08 qwerty smbd[567]: Unknown parameter encountered: "coment"
Jan 23 14:24:08 qwerty smbd[567]: [2007/01/23 14:24:08, 0] param/loadparm.c:lp_do_parameter(3420)
Jan 23 14:24:08 qwerty smbd[567]: Ignoring unknown parameter "coment"
Jan 23 14:24:09 qwerty smbd[568]: [2007/01/23 14:24:09, 0] printing/nt_printing.c:nt_printing_init(649)
Jan 23 14:24:09 qwerty smbd[568]: nt_printing_init: error checking published printers: WERR_ACCESS_DENIED
Jan 23 14:24:09 qwerty winbindd[571]: [2007/01/23 14:24:09, 0] param/loadparm.c:map_parameter(2690)
Jan 23 14:24:09 qwerty winbindd[571]: Unknown parameter encountered: "coment"
Jan 23 14:24:09 qwerty winbindd[571]: [2007/01/23 14:24:09, 0] param/loadparm.c:lp_do_parameter(3420)
Jan 23 14:24:09 qwerty winbindd[571]: Ignoring unknown parameter "coment"
Jan 23 14:24:10 qwerty winbindd[584]: [2007/01/23 14:24:10, 0] libsmb/cliconnect.c:cli_session_setup_spnego(785)
Jan 23 14:24:10 qwerty winbindd[584]: Kinit failed: Cannot contact any KDC for requested realm
Jan 23 14:25:00 qwerty winbindd[573]: [2007/01/23 14:25:00, 0] libsmb/cliconnect.c:cli_session_setup_spnego(785)
Jan 23 14:25:00 qwerty winbindd[573]: Kinit failed: Cannot contact any KDC for requested realm
Jan 23 14:25:37 qwerty pam_winbind[640]: write to socket failed!
Jan 23 14:25:37 qwerty pam_winbind[640]: internal module error (retval = 3, user = `rafanasiev')
Jan 23 14:25:44 qwerty winbindd[573]: [2007/01/23 14:25:44, 0] libsmb/cliconnect.c:cli_session_setup_spnego(785)
Jan 23 14:25:44 qwerty winbindd[573]: Kinit failed: Cannot contact any KDC for requested realm
Jan 23 14:29:05 qwerty pam_winbind[736]: request failed, but PAM error 0!
heimdal-0.7.2_2 A popular BSD-licensed implementation of Kerberoslissyara писал(а):у тя керберос или хемдайл?
Надо хемдайл.
Код: Выделить всё
┌────────────────────────────────────────────────────────────────────┐
│ Options for samba 3.0.23d,1 │
│ ┌────────────────────────────────────────────────────────────────┐ │
│ │ [X] LDAP With LDAP support │ │
│ │ [X] ADS With Active Directory support │ │
│ │ [ ] CUPS With CUPS printing support │ │
│ │ [X] WINBIND With WinBIND support │ │
│ │ [X] ACL_SUPPORT With ACL support │ │
│ │ [ ] FAM_SUPPORT With File Alteration Monitor │ │
│ │ [X] SYSLOG With Syslog support │ │
│ │ [ ] QUOTAS With Disk quota support │ │
│ │ [ ] UTMP With UTMP accounting support │ │
│ │ [ ] MSDFS With MSDFS support │ │
│ │ [ ] PAM_SMBPASS With PAM authentication vs passdb backends │ │
│ │ [ ] CLUSTER With experimental cluster support │ │
│ │ [ ] EXP_MODULES With experimental modules │ │
│ │ [X] POPT With system-wide POPT library │ │
│ │ [ ] MAX_DEBUG With maximum debuging │ │
├─└────────────────────────────────────────────────────────────────┘─┤
│ [ OK ] Cancel │
└────────────────────────────────────────────────────────────────────┘
Код: Выделить всё
/var/spool/hylafax/log/>more /etc/krb5.conf | grep -v ^#
[libdefaults]
default_realm = GRAND-PRIX
clockskew = 300
v4_instance_resolve = false
v4_name_convert = {
host = {
rcmd = host
ftp = ftp
}
plain = {
something = something-else
}
}
[realms]
GRAND-PRIX = {
kdc = 192.168.0.251
admin_server = 192.168.0.251
#default_domain = grand-prix
}
[domain_realm]
.grand-prix = GRAND-PRIX
Код: Выделить всё
/var/spool/hylafax/log/>host grand-prix
grand-prix.local has address 192.168.130.253
grand-prix.local mail is handled by 32767 mx.grand.prix.ru.
/var/spool/hylafax/log/>host dc2
dc2.local has address 192.168.0.251
/var/spool/hylafax/log/>
Код: Выделить всё
/var/spool/hylafax/log/>more /usr/local/etc/smb.conf | grep 192.168
hosts allow = 192.168.0.0/16 127.0.0.1
password server = 192.168.0.251
/var/spool/hylafax/log/>more /usr/local/etc/smb.conf | grep GRAND | head -2
workgroup = GRAND-PRIX
realm = GRAND-PRIX
/var/spool/hylafax/log/>