Hallo
Das problem:
Ich bin sysadm an einer Schule mit ca. 150 computern, wir wollen alle win98
computer zu windows XP upgraden. Dazu habe ich einen woody server
den ich folgendermassen installiert habe
1. potato
2. distupgrade zu woody.
3. (warscheinlich der fehler) Habe ich alle homedateien (2400 user)
vom alten potato server nach dem neuen woody kopiert. (tar)
dann habe ich /etc/passwd /etc/shadow /etc/samba/smbpasswd
rüberkopiert. Windows 98 logon funkionierte perfekt. (das war im April)
Leider will der neue server keine windows XP logons akzeptieren.
XP meldet: Domainserver not found.
Darauf hin habe ich einen zweiten server am gleichen netz installiert
woody mit samba 2.2.3a-6. Xp logon funktionierte auf anhieb.
Ich habe dan systematisch alle konfigurationsfiles ausgetauscht.
Die smb.conf von dem nicht funktionierenden server funktioniret auf dem
funktionierenden. alle entries in smbpasswd, goups, /etc/pam.d/* sind
identisch.
De interfaces sind eksakt gleich (broadcast, netmask etc. nur die IP nummer
ist anders. )
Hier die einzige fehlermeldung die ich finden kan:
cr@debianpdc:~$ smbclient -L 172.16.0.14 -N
added interface ip=172.16.0.10 bcast=172.16.0.255 nmask=255.255.255.0
session setup failed: NT_STATUS_LOGON_FAILURE
cr@debianpdc:~$
oder
cr@debianpdc:~$ smbclient -L 172.16.0.10 -N
added interface ip=172.16.0.10 bcast=172.16.0.255 nmask=255.255.255.0
session setup failed: NT_STATUS_LOGON_FAILURE
cr@debianpdc:~$
mit dem funtionirenden server kommt da keine fehlermeldung.
testparm
sagt -> alles ok.
was mache ich falsch ??
Ich bin ziemlich am ende habe gestern 5 stundern dateien verglichen.
und alle entries sind die gleichen die obige fehlermeldung ist das einzige
was ich finden kan. Abgesehen davon das domainlogons mit XP nicht funtioniren.
Hilfe !!
Christoph
Hier mein smb.conf output:
[global]
printing = cups
netbios name = samba
; printcap name = /etc/printcap
load printers = yes
guest account = nobody
; invalid users = root
logon script = %G.bat
; logon script = script.kix
; "security = user" is always a good idea. This will require a Unix account
; in this server for every user accessing the server.
security = user
username map = /etc/samba/users.map
domain logons = yes
; Change this for the workgroup your Samba server will part of
workgroup = SERVER331
# <...remainder of parameters...>
add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u
server string = %h server (Samba %v)
; If you want Samba to log though syslog only then set the following
; parameter to 'yes'. Please note that logging through syslog in
; Samba is still experimental.
syslog only = no
syslog = 3;
; This socket options really speed up Samba under Linux, according to my
; own tests.
socket options = IPTOS_LOWDELAY TCP_NODELAY SO_SNDBUF=4096 SO_RCVBUF=4096
; Passwords are encrypted by default. This way the latest Windows 95 and NT
; clients can connect to the Samba server with no problems.
encrypt passwords = yes
null passwords = yes
; It's always a good idea to use a WINS server. If you want this server
; to be the WINS server for your network change the following parameter
; to "yes". Otherwise leave it as "no" and specify your WINS server
; below (note: only one Samba server can be the WINS server).
; Read BROWSING.txt for more details.
; wins support = yes
; If this server is not the WINS server then specify who is it and uncomment
; next line.
wins server = 172.16.0.5
; Please read BROWSING.txt and set the next four parameters according
; to your network setup. There is no valid default so they are commented
; out.
os level = 65
domain master = yes
local master = yes
preferred master = yes
;interfaces = 172.16.0.7/24 172.16.0.17/24 172.16.0.10/24
interfaces = 172.16.0.10/255.255.255.0
; What naming service and in what order should we use to resolve host names
; to IP addresses
name resolve order = lmhosts host wins bcast
;;;; name resolve order = wins bcast host
; This will prevent nmbd to search for NetBIOS names through DNS.
dns proxy = no
; Name mangling options
preserve case = yes
short preserve case = yes
; This boolean parameter controlls whether Samba attempts to sync. the Unix
; password with the SMB password when the encrypted SMB password in the
; /etc/samba/smbpasswd file is changed.
unix password sync = true
; For Unix password sync. to work on a Debian GNU/Linux system, the following
; parameters must be set (thanks to Augustin Luton
; <aluton@hybrigenics.fr> for sending the correct chat script for
; the passwd program in Debian Potato).
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n .
;from redhat
pam password change = yes
obey pam restrictions = yes
max log size = 100000
logon home = \\samba\%U
[homes]
comment = "Hjemme Mappe for : %u"
browseable = no
; By default, the home directories are exported read only. Change next
; parameter to "no" if you want to be able to write to them.
read only = no
; File creation mask is set to 0700 for security reasons. If you want to
; create files with group=rw permissions, set next parameter to 0775.
create mask = 0755
; Directory creation mask is set to 0700 for security reasons. If you want to
; create dirs. with group=rw permissions, set next parameter to 0775.
directory mask = 0755
; include = /etc/samba/smb.conf.cr
[printers]
comment = "Printers"
browseable = no
path = /tmp
printable = yes
print command = /usr/bin/lpr -r %s
printer = hp330-1
create mode = 700
read only = yes
guest ok = yes
create mode = 0700
load printers = yes
[faelles]
comment = faelles
path = /home/samba/faelles
; public = no
writable = yes
; browsable = yes
read only = no
create mask = 0775
force create mode = 0775
directory mask = 0775
force directory mode = 0775
*********************
Und mein ifconfig
cr@debianpdc:~$ sudo ifconfig
Password:
eth0 Link encap:Ethernet HWaddr 00:06:5B:3A:27:36
inet addr:172.16.0.10 Bcast:172.16.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:187415 errors:0 dropped:0 overruns:436 frame:0
TX packets:24310 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:27787274 (26.5 MiB) TX bytes:10460313 (9.9 MiB)
Interrupt:16
eth1 Link encap:Ethernet HWaddr 00:06:5B:3A:27:37
inet addr:172.16.0.7 Bcast:172.16.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:208355 errors:0 dropped:0 overruns:0 frame:0
TX packets:60044 errors:0 dropped:0 overruns:0 carrier:0
collisions:3398 txqueuelen:100
RX bytes:30310769 (28.9 MiB) TX bytes:41327842 (39.4 MiB)
Interrupt:17 Base address:0x2000
eth2 Link encap:Ethernet HWaddr 00:02:B3:90:47:28
inet addr:172.16.0.14 Bcast:172.16.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:158183 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:21889061 (20.8 MiB) TX bytes:0 (0.0 b)
Interrupt:25 Base address:0x4000
eth3 Link encap:Ethernet HWaddr 00:02:B3:90:47:29
inet addr:172.16.0.17 Bcast:172.16.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:158160 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:21884494 (20.8 MiB) TX bytes:0 (0.0 b)
Interrupt:26 Base address:0x6000
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:370 errors:0 dropped:0 overruns:0 frame:0
TX packets:370 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:32578 (31.8 KiB) TX bytes:32578 (31.8 KiB)
Desperat: Samba nightmare
Desperat: Samba nightmare
Christoph Ridder
Bei mir tät folgende smb.conf tun:
allerdings mit Domain-Logons für Win98
soweit ich weiss, sind da Win98, NT und wahrscheinlich auch XP mit den Orten für
die Profiles nicht kompatibel, -> <logon home> weiter Unten
[global]
;basic server settings
workgroup = INET
netbios name = bik
server string = Samba PDC
interfaces = 192.168.12.0/255.255.255.0
socket options = TCP_NODELAY IPTOS_LOWDELAY SO_SNDBUF=8192
SO_RCVBUF=8192
;PDC and master browser settings
os level = 64
preferred master = yes
local master = yes
domain master = yes
domain logons = yes
;security and logging settings
security = user
encrypt passwords = yes
log file = /var/log/samba/log.%m
log level = 2
max log size = 50
hosts allow = 127.0.0.1 192.168.120.0/255.255.255.0
;user profiles and home directory
;NT-Clients
# logon home = \\%L\%U\
;Win98-Clients
logon home = \\%L\%U\Winprofile
logon path = \\%L\profiles\%U\%a
logon drive = H:
logon script = scripts\%U.bat
domain admin group = root
# ==== shares ====
[homes]
comment = Home Directories
browseable = no
writeable = yes
create mode = 0750
[profiles]
path = /home/exports/samba/ntprofiles
writeable = yes
browseable = no
create mask = 0600
directory mask = 0700
[netlogon]
comment = Network Logon Service
path = /home/exports/samba/netlogon
read only = yes
browseable = no
write list = root
[daten]
path = /home/exports/samba/shares/daten
comment = Daten Verzeichnis
public = no
create mode = 700
force user = smb_dummy
valid users = @samba-users
read only = no
[software]
path = /home/exports/samba/shares/software
comment = Software Verzeichnis
public = no
create mode = 700
force user = smb_dummy
valid users = @samba-users
read only = yes
write list = Administrator
entsprechende User, Gruppen und Dirs noch anlegen.
Für NT-Maschinen waren immer noch Maschinenkontos anzulegen:
smbpasswd -a -m machine
Vielleicht hilft's ja
allerdings mit Domain-Logons für Win98
soweit ich weiss, sind da Win98, NT und wahrscheinlich auch XP mit den Orten für
die Profiles nicht kompatibel, -> <logon home> weiter Unten
[global]
;basic server settings
workgroup = INET
netbios name = bik
server string = Samba PDC
interfaces = 192.168.12.0/255.255.255.0
socket options = TCP_NODELAY IPTOS_LOWDELAY SO_SNDBUF=8192
SO_RCVBUF=8192
;PDC and master browser settings
os level = 64
preferred master = yes
local master = yes
domain master = yes
domain logons = yes
;security and logging settings
security = user
encrypt passwords = yes
log file = /var/log/samba/log.%m
log level = 2
max log size = 50
hosts allow = 127.0.0.1 192.168.120.0/255.255.255.0
;user profiles and home directory
;NT-Clients
# logon home = \\%L\%U\
;Win98-Clients
logon home = \\%L\%U\Winprofile
logon path = \\%L\profiles\%U\%a
logon drive = H:
logon script = scripts\%U.bat
domain admin group = root
# ==== shares ====
[homes]
comment = Home Directories
browseable = no
writeable = yes
create mode = 0750
[profiles]
path = /home/exports/samba/ntprofiles
writeable = yes
browseable = no
create mask = 0600
directory mask = 0700
[netlogon]
comment = Network Logon Service
path = /home/exports/samba/netlogon
read only = yes
browseable = no
write list = root
[daten]
path = /home/exports/samba/shares/daten
comment = Daten Verzeichnis
public = no
create mode = 700
force user = smb_dummy
valid users = @samba-users
read only = no
[software]
path = /home/exports/samba/shares/software
comment = Software Verzeichnis
public = no
create mode = 700
force user = smb_dummy
valid users = @samba-users
read only = yes
write list = Administrator
entsprechende User, Gruppen und Dirs noch anlegen.
Für NT-Maschinen waren immer noch Maschinenkontos anzulegen:
smbpasswd -a -m machine
Vielleicht hilft's ja
Wer zum Teufel ist Bill Gates ???