Re: Samba 3.0.3 und Windows XP Profile

To: debian-user-german@lists.debian.org
Subject: Re: Samba 3.0.3 und Windows XP Profile
From: andreas.krummrich@t-online.de (Andreas Krummrich)
Date: Wed, 5 May 2004 16:55:10 +0200
Message-id: <[🔎] 20040505145510.GA839@moe.homenet>
In-reply-to: <[🔎] 4097FC60.2040608@upb.de>
References: <[🔎] 20040504185740.GA5221@moe.homenet> <[🔎] 4097FC60.2040608@upb.de>

Hi,
On Tue, May 04, 2004 at 10:26:08PM +0200, Bjoern Schmidt wrote:
> Andreas Krummrich schrieb:
> >Hallo,
> >
> >ich habe hier Samba 3.0.3 als PDC laufen. Das klappt auch soweit ganz
> >gut; jedenfalls kann ich mich anmelden ;-)
> >Nun habe ich das Problem, dass wenn ich mich wieder abmelde, mein Profil
> >nicht auf dem Samba Server zurückgeschrieben wird.
> >Hier mal ein Auszug aus dem Logfile, zwischen an- und abmelden:
> >
> ><<<<<<
> >[2004/05/04 20:50:38, 0]
> >rpc_server/srv_pipe.c:api_pipe_netsec_process(1371)
> >failed to decode PDU
> >[2004/05/04 20:50:38, 0]
> >rpc_server/srv_pipe_hnd.c:process_request_pdu(605)
> >process_request_pdu: failed to do schannel processing.
> >[2004/05/04 20:50:39, 1] smbd/service.c:make_connection_snum(619)
> >bart (192.168.0.10) connect to service netlogon initially as user
> >andreas (uid=1000, gid=100) (pid 5435)
> >[2004/05/04 20:50:40, 1] smbd/service.c:make_connection_snum(619)
> >bart (192.168.0.10) connect to service andreas initially as user
> >andreas (uid=1000, gid=100) (pid 5435)
> >[2004/05/04 20:50:55, 1]
> >smbd/service.c:make_connection_snum(619)
> >bart (192.168.0.10) connect to service profiles initially as
> >user andreas (uid=1000, gid=100) (pid 5435)
> >[2004/05/04 20:51:00, 0]
> >rpc_server/srv_util.c:get_domain_user_groups(376)
> >get_domain_user_groups: primary gid of user [andreas] is not
> >a Domain group !
> 
> net groupmap

Hier mal die Ausgabe von net groupmap list:
<<<<<<<
System Operators (S-1-5-32-549) -> -1
Replicators (S-1-5-32-552) -> -1
Guests (S-1-5-32-546) -> -1
Domain Guests (S-1-5-21-266944603-637105660-668208918-514) -> -1
Domain Admins (S-1-5-21-266944603-637105660-668208918-512) -> ntadmins
Power Users (S-1-5-32-547) -> ntusers
Print Operators (S-1-5-32-550) -> -1
Administrators (S-1-5-32-544) -> -1
Account Operators (S-1-5-32-548) -> -1
Domain Users (S-1-5-21-266944603-637105660-668208918-513) -> users
Backup Operators (S-1-5-32-551) -> -1
Users (S-1-5-32-545) -> -1
>>>>>>>
Die primäre Gruppe vom User andreas ist users (gid 100). Und laut dieser
Ausgabe ist 'users' doch eine Domain Group! Oder habe ich da was falsch
verstanden???

> 
> >get_domain_user_groups: You should fix it, NT doesn't like
> >that
> >[2004/05/04 20:51:03, 1]
> >smbd/service.c:make_connection_snum(619)
> >bart (192.168.0.10) connect to service andreas initially
> >as user andreas (uid=1000, gid=100) (pid 5435)
> >Mehr kann ich leider auch nicht zur Fehlerdiagnose beitragen, sorry.
> >Die sind die betreffenden Zeilen aus der smb.conf:
> ><<<<<<
> >logon path = \\%L\profiles\U%\profile
> >logon drive = H:
> >logon home = \\%L\%U
> >
> >Mehr Anhaltspunkte kann ich leider nicht bieten.
> >Wünsche fleißige Glaskugeln *scherz*
> 
> Ne vollständige smb.conf wäre durchaus hilfreich.
> 

# Samba config file created using SWAT
# from 192.168.0.14 (192.168.0.14)
# Date: 2004/05/04 15:20:12

# Global parameters
[global]
	unix charset = ISO-8859-15
	display charset = ISO-8859-15
	workgroup = SPRINGFIELD
	passdb backend = tdbsam
	log level = 1
	log file = /usr/local/samba/var/log.%m
	add user script = /usr/sbin/useradd -m %u
	delete user script = /usr/sbin/userdel -r %u
	add group script = /usr/sbin/groupadd %g
	delete group script = /usr/sbin/groupdel %g
	add user to group script = /usr/sbin/gpasswd -a %u %g
	delete user from group script = /usr/sbin/gpasswd -d %u %g
	set primary group script = /usr/sbin/gpasswd -g '%g' '%u'
	add machine script = /usr/sbin/useradd -s /bin/false -d /dev/null %u
	logon script = logon.cmd
	logon path = \\%L\profiles\U%\profile
	logon drive = H:	
	logon home = \\%L\%U
	domain logons = Yes
	os level = 35
	preferred master = Yes
	domain master = Yes
	ldap ssl = no
	idmap uid = 15000-20000
	idmap gid = 15000-20000

[homes]
	comment = Heimatverzeichnisse
	read only = No
	browseable = Yes

[profiles]
	comment = Benutzerprofile
	path = /home/shares/profiles
	read only = No
	profile acls = Yes

[netlogon]
	comment = Network Logon Service
	path = /home/shares/netlogon
	admin users = root, admin
	guest ok = Yes
	read only = No
	browseable = Yes

[users]
	comment = Benutzerdaten
	path = /home/shares/users
	read only = No

Gruß Andreas

Reply to:

Follow-Ups:
- Re: Samba 3.0.3 und Windows XP Profile
  - From: Bjoern Schmidt <bj-schmidt@upb.de>

References:
- Samba 3.0.3 und Windows XP Profile
  - From: andreas.krummrich@t-online.de (Andreas Krummrich)
- Re: Samba 3.0.3 und Windows XP Profile
  - From: Bjoern Schmidt <bj-schmidt@upb.de>

Prev by Date: Re: MAC Adresse ändern bevor interfaces gestartet werden
Next by Date: Re: MAC Adresse Ã¤ndern bevor interfaces gestartet werden
Previous by thread: Re: Samba 3.0.3 und Windows XP Profile
Next by thread: Re: Samba 3.0.3 und Windows XP Profile
Index(es):
- Date
- Thread