Re: [CentOS] C7 AD server
Il 07/02/2016 01:11, Miguel Medalha ha scritto: Try this. I have been thinking of trying it on C7. http://www.linuxhelp.net/forums/index.php?showtopic=10868 I wouldn't follow the instructions on that link. Disable iptables? Nah! The author lumps SELinux and the firewall together. What is said about DNS is also misleading. DNS is crucial for AD. Please look at the Samba Wiki instead. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos Hi Miguel, last link was outdated and I'm using samba4. Over this, I've used sernet samba version to accomplish this work. First, the configuration with samba-tool is simpler. The new approach is a AIO solution. Then, I've provisioned the domain without any problems and joined from win7 host. All works fine. The next step that I tried to accomplish is create a share on this host and I've encountered problem with permission on shared dir. If I try to access/write/read this share I get permission denied. Setting permission on 777 all works but this is not what I want. I've tried to verify the existence of create users and groups but on system (using getent) users are not seen on system and the same for groups. On DC side, I can see user and group with wbinfo command. Share file system is xfs. At the moment Selinux and firewalld are disable for test purpose. How I can assing permission on this share? ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] C7 AD server
these articles could help you. first one is english and second is turkish http://www.alexwyn.com/computer-tips/centos-samba4-active-directory-domain-controller http://www.koraykey.com/?p=3842 From: Miguel Medalha To: chris weisiger Cc: CentOS mailing list Sent: Sunday, February 7, 2016 2:11 AM Subject: Re: [CentOS] C7 AD server >> Try this. I have been thinking of trying it on C7. >> http://www.linuxhelp.net/forums/index.php?showtopic=10868 I wouldn't follow the instructions on that link. Disable iptables? Nah! The author lumps SELinux and the firewall together. What is said about DNS is also misleading. DNS is crucial for AD. Please look at the Samba Wiki instead. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] C7 AD server
>> How I can assing permission on this share? You can easily do it by following the instructions on the Samba Wiki: https://wiki.samba.org/index.php/User_Documentation ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] C7 AD server
Il 07/02/2016 15:59, Miguel Medalha ha scritto: How I can assing permission on this share? You can easily do it by following the instructions on the Samba Wiki: https://wiki.samba.org/index.php/User_Documentation Hi Miguel, I've followed the wiki how to but, I want configure a share on same machine where is hosted DC and seems that this is not possible. I've configured AD DC on C7 using ServNet packages. Now after provisioning, I've tried to join a win7 host and all works. After this, I've tried to add a share on AD server for all client, but when I try to assign permission on dir, I can't because my local system can't see domain user. If I run wbinfo -u I can see user domain. If I run getent passwd, I can't see user domain, and so I can't give permission on share for this user but only using 777 on share directory (and this is not what I want). Now, If I put a new samba4 machine and configure it as domain member, and join the domain, I can assign on this machine permission for user as explained from samba wiki. But this is not my case. I need to configure DC and share on same machine, but I can't figure out why I can't see domain user in my local system. Where is the problem? Thanks in advance ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] C7 AD server
I use these instructions to create a domain controller on CentOS for a Windows 10 lab I have: http://www.unixmen.com/setting-samba-primary-domain-controller-centos-7/ Regards, Ben > On Feb 7, 2016, at 8:29 AM, Alessandro Baggi > wrote: > > Il 07/02/2016 15:59, Miguel Medalha ha scritto: How I can assing permission on this share? >> >> You can easily do it by following the instructions on the Samba Wiki: >> >> https://wiki.samba.org/index.php/User_Documentation >> > > Hi Miguel, > I've followed the wiki how to but, I want configure a share on same machine > where is hosted DC and seems that this is not possible. > > I've configured AD DC on C7 using ServNet packages. Now after provisioning, > I've tried to join a win7 host and all works. > > After this, I've tried to add a share on AD server for all client, but when I > try to assign permission on dir, I can't because my local system can't see > domain user. > > If I run wbinfo -u I can see user domain. If I run getent passwd, I can't see > user domain, and so I can't give permission on share for this user but only > using 777 on share directory (and this is not what I want). > > > Now, If I put a new samba4 machine and configure it as domain member, and > join the domain, I can assign on this machine permission for user as > explained from samba wiki. But this is not my case. > > I need to configure DC and share on same machine, but I can't figure out why > I can't see domain user in my local system. > > Where is the problem? > > Thanks in advance > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] C7 AD server
Il 07/02/2016 17:18, Ben Archuleta ha scritto: I use these instructions to create a domain controller on CentOS for a Windows 10 lab I have: http://www.unixmen.com/setting-samba-primary-domain-controller-centos-7/ Regards, Ben Thanks Ben, but this is for PDC NT not for AD DC. With C7 to perform this, I must install sernet samba version or change distro. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] C7 AD server
This tutorial uses Sernet Samba: http://www.server-world.info/en/note?os=CentOS_7&p=samba&f=4 This one done by compiling Samba yourself: https://imanudin.net/2014/11/16/how-to-install-samba4-active-directory-on-centos-7-part-1/ https://imanudin.net/2014/11/17/how-to-install-samba4-active-directory-on-centos-7-part-2/ On Sun, Feb 7, 2016 at 11:34 PM, Alessandro Baggi wrote: > Il 07/02/2016 17:18, Ben Archuleta ha scritto: >> >> I use these instructions to create a domain controller on CentOS for a >> Windows 10 lab I have: >> http://www.unixmen.com/setting-samba-primary-domain-controller-centos-7/ >> >> Regards, >> Ben >> >> > > Thanks Ben, but this is for PDC NT not for AD DC. With C7 to perform this, I > must install sernet samba version or change distro. > > > > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] C7 AD server
Il 07/02/2016 18:33, Nizar Armansyah ha scritto: This tutorial uses Sernet Samba: http://www.server-world.info/en/note?os=CentOS_7&p=samba&f=4 This one done by compiling Samba yourself: https://imanudin.net/2014/11/16/how-to-install-samba4-active-directory-on-centos-7-part-1/ https://imanudin.net/2014/11/17/how-to-install-samba4-active-directory-on-centos-7-part-2/ On Sun, Feb 7, 2016 at 11:34 PM, Alessandro Baggi wrote: Il 07/02/2016 17:18, Ben Archuleta ha scritto: I use these instructions to create a domain controller on CentOS for a Windows 10 lab I have: http://www.unixmen.com/setting-samba-primary-domain-controller-centos-7/ Regards, Ben Thanks Ben, but this is for PDC NT not for AD DC. With C7 to perform this, I must install sernet samba version or change distro. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos Thanks for the links. I found the problem. After some tries, I have added winbind on nsswitch.conf. Running getent passwd Domain user was not printed after local user and with this I've tried to find a solution without try the share. After several operation ecc..I've runned id "created domain user" and user exists. Tried also to chown domuser:domgr file and works but from getent I can't get user domain. This is a bug on centos or it is related due to sernet package (winbind)?? ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] "upstream testing"??
[Follow-ups set to gmane.linux.centos.general] My wife had been running CentOS 6.4 almost since its inception; then her PC broke down. We got a PC from System76, and Ubuntu turned out utterly unsuitable for us, as expected -- as bad for us as Gnome3. (I had previously bought a System76 net book (starling iirc), and immediately installed the then current Fedora; all has been well with that. This time, alas!, I thought I should let her try Ubuntu; so I tried running it myself for an houror two to get it set up and tweaked. I couldn't even find any of the apps I wanted to tweak! So I put in an install disk for CentOS, and rebooted. It never came near finishing the reboot. Up popped the following: Detected CPU family 6 model 94. Warning: Intel CPU model -- this hardware has not undergone upstream testing. Please see http://wiki.centos.org/FAQ for more information. tsc: Fast TSC calibration failed. I have consulted that FAQ and more, and also System76's. I've consulted and tried more other things than most of you likely want to hear about. No joy. I've also tried rebooting without any install disk, with a Fedora install disk, with various helps such as super grub disk, and finally even with DBAN. The machine doesn't even find any of those. On any reboot, it just goes to that CentOS error message, and stops. I've also googled for '"upstream testing" hardware' Any thoughts or experience??. -- Beartooth Staffwright, Neo-Redneck Not Quite Clueless Power User Remember I have precious (very precious!) little idea where up is. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] "upstream testing"??
Am 07.02.2016 um 22:00 schrieb Bear Tooth: [Follow-ups set to gmane.linux.centos.general] My wife had been running CentOS 6.4 almost since its inception; then her PC broke down. We got a PC from System76, and Ubuntu turned out utterly unsuitable for us, as expected -- as bad for us as Gnome3. (I had previously bought a System76 net book (starling iirc), and immediately installed the then current Fedora; all has been well with that. This time, alas!, I thought I should let her try Ubuntu; so I tried running it myself for an houror two to get it set up and tweaked. I couldn't even find any of the apps I wanted to tweak! So I put in an install disk for CentOS, and rebooted. It never came near finishing the reboot. Up popped the following: Detected CPU family 6 model 94. Warning: Intel CPU model -- this hardware has not undergone upstream testing. Please see http://wiki.centos.org/FAQ for more information. tsc: Fast TSC calibration failed. I have consulted that FAQ and more, and also System76's. I've consulted and tried more other things than most of you likely want to hear about. No joy. I've also tried rebooting without any install disk, with a Fedora install disk, with various helps such as super grub disk, and finally even with DBAN. The machine doesn't even find any of those. On any reboot, it just goes to that CentOS error message, and stops. I've also googled for '"upstream testing" hardware' Any thoughts or experience??. Did you try adding to the kernel line the parameter "clocksource=tsm" or "clocksource=acpi_pm"? Alexander ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] "upstream testing"??
On 02/07/2016 04:09 PM, Alexander Dalloz wrote: Am 07.02.2016 um 22:00 schrieb Bear Tooth: [Follow-ups set to gmane.linux.centos.general] My wife had been running CentOS 6.4 almost since its inception; then her PC broke down. We got a PC from System76, and Ubuntu turned out utterly unsuitable for us, as expected -- as bad for us as Gnome3. (I had previously bought a System76 net book (starling iirc), and immediately installed the then current Fedora; all has been well with that. This time, alas!, I thought I should let her try Ubuntu; so I tried running it myself for an houror two to get it set up and tweaked. I couldn't even find any of the apps I wanted to tweak! So I put in an install disk for CentOS, and rebooted. It never came near finishing the reboot. Up popped the following: Detected CPU family 6 model 94. Warning: Intel CPU model -- this hardware has not undergone upstream testing. Please see http://wiki.centos.org/FAQ for more information. tsc: Fast TSC calibration failed. I have consulted that FAQ and more, and also System76's. I've consulted and tried more other things than most of you likely want to hear about. No joy. I've also tried rebooting without any install disk, with a Fedora install disk, with various helps such as super grub disk, and finally even with DBAN. The machine doesn't even find any of those. On any reboot, it just goes to that CentOS error message, and stops. I've also googled for '"upstream testing" hardware' Any thoughts or experience??. Did you try adding to the kernel line the parameter "clocksource=tsm" or "clocksource=acpi_pm"? Alexander ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos Just a thought, but maybe try doing the "Unetbootin/.ISO file build" on another pc / laptop and attempt booting from the USB instead of a CD? Just my thoughts on the matter. Its something I would do just to get the OS installed, then I'd worry about the upstream stuff afterwards...perhaps after the install and a tremendous system-wide upgrade, things might look a little better? PLUS she'd at least have the OS on her machineI'm just sayin' LoL! EGO II ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
