samba-tool ntacl sysvolcheck ERROR
Locked
samba-tool ntacl sysvolcheck ERROR
 
|
[root@srv-cds ~]# samba-tool ntacl sysvolcheck Attempting to register passdb backend smbpasswd Successfully added passdb backend 'smbpasswd' Attempting to register passdb backend tdbsam Successfully added passdb backend 'tdbsam' Attempting to register passdb backend samba_dsdb Successfully added passdb backend 'samba_dsdb' Attempting to register passdb backend samba4 Successfully added passdb backend 'samba4' Attempting to register passdb backend ldapsam Successfully added passdb backend 'ldapsam' Attempting to register passdb backend NDS_ldapsam Successfully added passdb backend 'NDS_ldapsam' Attempting to find a passdb backend to match samba_dsdb:tdb:///usr/local/samba/private/sam.ldb (samba_dsdb) Found pdb backend samba_dsdb pdb backend samba_dsdb:tdb:///usr/local/samba/private/sam.ldb has a valid init ERROR(<type 'exceptions.TypeError'>): uncaught exception - (61, 'No data available') File "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/__init__.py", line 176, in _run return self.run(*args, **kwargs) File "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/ntacl.py", line 270, in run lp) File "/usr/local/samba/lib64/python2.7/site-packages/samba/provision/__init__.py", line 1714, in checksysvolacl fsacl = getntacl(lp, dir_path, direct_db_access=direct_db_access, service=SYSVOL_SERVICE) File "/usr/local/samba/lib64/python2.7/site-packages/samba/ntacls.py", line 81, in getntacl xattr.XATTR_NTACL_NAME) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba |
Re: samba-tool ntacl sysvolcheck ERROR
|
|
On Thu, 14 Dec 2017 10:10:25 -0500
"Lic. Liusmer Martínez Q via samba" <[hidden email]> wrote: > > > [root@srv-cds ~]# samba-tool ntacl sysvolcheck > > Attempting to register passdb backend smbpasswd > Successfully added passdb backend 'smbpasswd' > Attempting to register passdb backend tdbsam > Successfully added passdb backend 'tdbsam' > Attempting to register passdb backend samba_dsdb > Successfully added passdb backend 'samba_dsdb' > Attempting to register passdb backend samba4 > Successfully added passdb backend 'samba4' > Attempting to register passdb backend ldapsam > Successfully added passdb backend 'ldapsam' > Attempting to register passdb backend NDS_ldapsam > Successfully added passdb backend 'NDS_ldapsam' > Attempting to find a passdb backend to match > samba_dsdb:tdb:///usr/local/samba/private/sam.ldb (samba_dsdb) > Found pdb backend samba_dsdb > pdb backend samba_dsdb:tdb:///usr/local/samba/private/sam.ldb has a > valid init > ERROR(<type 'exceptions.TypeError'>): uncaught exception - (61, 'No > data available') > File > "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/__init__.py", > line 176, in _run > return self.run(*args, **kwargs) > File > "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/ntacl.py", > line 270, in run > lp) > File > "/usr/local/samba/lib64/python2.7/site-packages/samba/provision/__init__.py", > line 1714, in checksysvolacl > fsacl = getntacl(lp, dir_path, > direct_db_access=direct_db_access, service=SYSVOL_SERVICE) > File > "/usr/local/samba/lib64/python2.7/site-packages/samba/ntacls.py", > line 81, in getntacl > xattr.XATTR_NTACL_NAME) > > What OS ? What version of Samba ? How did you provision AD ? What is in smb.conf ? Rowland -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba |
Re: samba-tool ntacl sysvolcheck ERROR
|
|
I am sorry,
What OS = Centos 7 What version of Samba = version 4.7.1 How did you provision AD = from samba wiki samba-tool domain join mydomain.cu DC -U"mydomain\administrator" --dns-backend=SAMBA_INTERNAL What is in smb.conf [global] netbios name = SRV-CDS realm = mydomain.CU server role= active directory domain controller workgroup = mydomain dns forwarder = 8.8.8.8 log level = passdb:5 auth:10 log file = /var/log/samba/samba.log vfs objects = full_audit ntlm auth = yes client ntlmv2 auth = yes acl_xattr:ignore system acls = yes [netlogon] path = /usr/local/samba/var/locks/sysvol/mydomain.cu/scripts read only = no [sysvol] path = /usr/local/samba/var/locks/sysvol read only = no [root@srv-cds ~]# samba-tool gpo aclcheck ERROR(<type 'exceptions.KeyError'>): uncaught exception - 'No such element' File "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/__init__.py", line 176, in _run return self.run(*args, **kwargs) File "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/gpo.py", line 1150, in run ds_sd_ndr = m['nTSecurityDescriptor'][0] samba-tool dbcheck --cross-ncs --fix is ok best regards El 12/14/2017 a las 11:03 AM, Rowland Penny via samba escribió: > On Thu, 14 Dec 2017 10:10:25 -0500 > "Lic. Liusmer Martínez Q via samba" <[hidden email]> wrote: > >> [root@srv-cds ~]# samba-tool ntacl sysvolcheck >> >> Attempting to register passdb backend smbpasswd >> Successfully added passdb backend 'smbpasswd' >> Attempting to register passdb backend tdbsam >> Successfully added passdb backend 'tdbsam' >> Attempting to register passdb backend samba_dsdb >> Successfully added passdb backend 'samba_dsdb' >> Attempting to register passdb backend samba4 >> Successfully added passdb backend 'samba4' >> Attempting to register passdb backend ldapsam >> Successfully added passdb backend 'ldapsam' >> Attempting to register passdb backend NDS_ldapsam >> Successfully added passdb backend 'NDS_ldapsam' >> Attempting to find a passdb backend to match >> samba_dsdb:tdb:///usr/local/samba/private/sam.ldb (samba_dsdb) >> Found pdb backend samba_dsdb >> pdb backend samba_dsdb:tdb:///usr/local/samba/private/sam.ldb has a >> valid init >> ERROR(<type 'exceptions.TypeError'>): uncaught exception - (61, 'No >> data available') >> File >> "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/__init__.py", >> line 176, in _run >> return self.run(*args, **kwargs) >> File >> "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/ntacl.py", >> line 270, in run >> lp) >> File >> "/usr/local/samba/lib64/python2.7/site-packages/samba/provision/__init__.py", >> line 1714, in checksysvolacl >> fsacl = getntacl(lp, dir_path, >> direct_db_access=direct_db_access, service=SYSVOL_SERVICE) >> File >> "/usr/local/samba/lib64/python2.7/site-packages/samba/ntacls.py", >> line 81, in getntacl >> xattr.XATTR_NTACL_NAME) >> >> > What OS ? > What version of Samba ? > How did you provision AD ? > What is in smb.conf ? > > Rowland > > El 12/14/2017 a las 11:03 AM, Rowland Penny via samba escribió: > On Thu, 14 Dec 2017 10:10:25 -0500 > "Lic. Liusmer Martínez Q via samba" <[hidden email]> wrote: > >> >> [root@srv-cds ~]# samba-tool ntacl sysvolcheck >> >> Attempting to register passdb backend smbpasswd >> Successfully added passdb backend 'smbpasswd' >> Attempting to register passdb backend tdbsam >> Successfully added passdb backend 'tdbsam' >> Attempting to register passdb backend samba_dsdb >> Successfully added passdb backend 'samba_dsdb' >> Attempting to register passdb backend samba4 >> Successfully added passdb backend 'samba4' >> Attempting to register passdb backend ldapsam >> Successfully added passdb backend 'ldapsam' >> Attempting to register passdb backend NDS_ldapsam >> Successfully added passdb backend 'NDS_ldapsam' >> Attempting to find a passdb backend to match >> samba_dsdb:tdb:///usr/local/samba/private/sam.ldb (samba_dsdb) >> Found pdb backend samba_dsdb >> pdb backend samba_dsdb:tdb:///usr/local/samba/private/sam.ldb has a >> valid init >> ERROR(<type 'exceptions.TypeError'>): uncaught exception - (61, 'No >> data available') >> File >> "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/__init__.py", >> line 176, in _run >> return self.run(*args, **kwargs) >> File >> "/usr/local/samba/lib64/python2.7/site-packages/samba/netcmd/ntacl.py", >> line 270, in run >> lp) >> File >> "/usr/local/samba/lib64/python2.7/site-packages/samba/provision/__init__.py", >> line 1714, in checksysvolacl >> fsacl = getntacl(lp, dir_path, >> direct_db_access=direct_db_access, service=SYSVOL_SERVICE) >> File >> "/usr/local/samba/lib64/python2.7/site-packages/samba/ntacls.py", >> line 81, in getntacl >> xattr.XATTR_NTACL_NAME) >> >> > What OS ? > What version of Samba ? > How did you provision AD ? > What is in smb.conf ? > > Rowland > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba |
Re: samba-tool ntacl sysvolcheck ERROR
|
|
On Thu, 14 Dec 2017 11:21:16 -0500
"Lic. Liusmer Martínez Q via samba" <[hidden email]> wrote: > I am sorry, > > What OS = Centos 7 > What version of Samba = version 4.7.1 > How did you provision AD = from samba wiki > > samba-tool domain join mydomain.cu DC -U"mydomain\administrator" > --dns-backend=SAMBA_INTERNAL > What have you joined it to ? Rowland -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba |
Re: samba-tool ntacl sysvolcheck ERROR
|
|
What have you joined it to ?
zentyal 4.2.11, Samba version 4.3.4-Zentyal El 12/14/2017 a las 11:49 AM, Rowland Penny via samba escribió: > What have you joined it to ? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba |
Re: samba-tool ntacl sysvolcheck ERROR
|
|
On Thu, 14 Dec 2017 11:53:10 -0500
"Lic. Liusmer Martínez Q via samba" <[hidden email]> wrote: > What have you joined it to ? > > zentyal 4.2.11, > > Samba version 4.3.4-Zentyal > > > > El 12/14/2017 a las 11:49 AM, Rowland Penny via samba escribió: > > What have you joined it to ? > > Are there any extra GPOs on the zentyal machine ? If so, you will need to sync sysvol (and idmap.ldb) between the two DCs Not only are the GPOs stored under the sysvol directory, they are also stored in AD. Rowland -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba |
Re: samba-tool ntacl sysvolcheck ERROR
|
|
GPOs are not synchronized, because I'm going to delete the zentyal domain,
how can I delete delete all GPOs from AD y sysvol? and start over [root@srv-cds ~]# samba-tool gpo del {31B2F340-016D-11D2-945F-00C04FB984F9} GPO {31B2F340-016D-11D2-945F-00C04FB984F9} is linked to containers ERROR(ldb): Error removing GPO from container - LDAP error 50 LDAP_INSUFFICIENT_ACCESS_RIGHTS - El 12/14/2017 a las 12:09 PM, Rowland Penny via samba escribió: > On Thu, 14 Dec 2017 11:53:10 -0500 > "Lic. Liusmer Martínez Q via samba" <[hidden email]> wrote: > >> What have you joined it to ? >> >> zentyal 4.2.11, >> >> Samba version 4.3.4-Zentyal >> >> >> >> El 12/14/2017 a las 11:49 AM, Rowland Penny via samba escribió: >>> What have you joined it to ? >> > Are there any extra GPOs on the zentyal machine ? > If so, you will need to sync sysvol (and idmap.ldb) between the two DCs > Not only are the GPOs stored under the sysvol directory, they are also > stored in AD. > > Rowland > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba |
Re: samba-tool ntacl sysvolcheck ERROR
|
|
On Thu, 14 Dec 2017 12:25:29 -0500
"Lic. Liusmer Martínez Q via samba" <[hidden email]> wrote: > GPOs are not synchronized, because I'm going to delete the zentyal > domain, > > how can I delete delete all GPOs from AD y sysvol? and start over > > [root@srv-cds ~]# samba-tool gpo del > {31B2F340-016D-11D2-945F-00C04FB984F9} GPO > {31B2F340-016D-11D2-945F-00C04FB984F9} is linked to containers > ERROR(ldb): Error removing GPO from container - LDAP error 50 > LDAP_INSUFFICIENT_ACCESS_RIGHTS - > > There are two default GPOs you need: {31B2F340-016D-11D2-945F-00C04FB984F9} {6AC1786C-016F-11D2-945F-00C04fB984F9} You can delete any others, but you will need to use an admin user with the required rights i.e. by adding '-U Administrator' I also hope you mean that you are going to delete the zentyal DC rather than the domain ;-) Rowland -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba |
Re: samba-tool ntacl sysvolcheck ERROR
|
|
so how can I synchronize GPOs stored under the sysvol directory and
stored in AD. El 12/14/2017 a las 12:59 PM, Rowland Penny via samba escribió: > On Thu, 14 Dec 2017 12:25:29 -0500 > "Lic. Liusmer Martínez Q via samba" <[hidden email]> wrote: > >> GPOs are not synchronized, because I'm going to delete the zentyal >> domain, >> >> how can I delete delete all GPOs from AD y sysvol? and start over >> >> [root@srv-cds ~]# samba-tool gpo del >> {31B2F340-016D-11D2-945F-00C04FB984F9} GPO >> {31B2F340-016D-11D2-945F-00C04FB984F9} is linked to containers >> ERROR(ldb): Error removing GPO from container - LDAP error 50 >> LDAP_INSUFFICIENT_ACCESS_RIGHTS - >> >> > There are two default GPOs you need: > > {31B2F340-016D-11D2-945F-00C04FB984F9} > > {6AC1786C-016F-11D2-945F-00C04fB984F9} > > You can delete any others, but you will need to use an admin user with > the required rights i.e. by adding '-U Administrator' > > I also hope you mean that you are going to delete the zentyal DC rather > than the domain ;-) > > Rowland > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba |
Re: samba-tool ntacl sysvolcheck ERROR
|
|
On Thu, 14 Dec 2017 13:53:36 -0500
"Lic. Liusmer Martínez Q via samba" <[hidden email]> wrote: > so how can I synchronize GPOs stored under the sysvol directory and > stored in AD. > > > Replication will take care of AD, for sysvol see here: https://wiki.samba.org/index.php/SysVol_replication_(DFS-R) Take your choice of the ways to sync sysvol Rowland -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba |
«
Return to Samba - General
|
1 view|%1 views
| Free forum by Nabble | Edit this page |