Page 9 of 11 FirstFirst ... 7891011 LastLast
Results 81 to 90 of 103

Thread: Zimbra Integration With Samba - Ubuntu Based

  1. #81
    rosch is offline Special Member
    Join Date
    Sep 2010
    Posts
    112
    Rep Power
    4

    Default

    Quote Originally Posted by maxxer View Post
    try posting smb.conf and the zimlet's config_template.xml
    All files are in post #81.
    I just now added the xml files too.

    many thanks
    Last edited by rosch; 03-11-2011 at 04:32 AM. Reason: adding quote
    --
    cheers

  2. #82
    marchand is offline Junior Member
    Join Date
    Apr 2010
    Location
    Romania
    Posts
    6
    Rep Power
    5

    Default

    Quote Originally Posted by rosch View Post
    All files are in post #81.
    I just now added the xml files too.

    many thanks
    I think your ldap setup in smb.conf is wrong

    PHP Code:
    ldap admin dn "cn=config" 
    should be

    PHP Code:
    ldap admin dn "uid=zmposixroot,cn=appaccts,cn=zimbra" 

  3. #83
    rosch is offline Special Member
    Join Date
    Sep 2010
    Posts
    112
    Rep Power
    4

    Default not yet there

    Quote Originally Posted by marchand View Post
    I think your ldap setup in smb.conf is wrong

    PHP Code:
    ldap admin dn "cn=config" 
    should be

    PHP Code:
    ldap admin dn "uid=zmposixroot,cn=appaccts,cn=zimbra" 
    Yes that makes sense, I tried that but the domain is still not showing up.
    By the way I am getting this:
    Code:
    lib/smbldap.c:1086(smbldap_connect_system)
    failed to bind to server ldap://mail.heem.local/ with dn="uid=zmposixroot,cn=appaccts,cn=zimbra" Error: Invalid credentials
      	(unknown)
    in the samba log..so there is still something messy.
    I did tell samba about the ldap password though with smbpasswd -w "verysecret"..and I put it in /etc/ldap.conf too (bindpw verysecret):
    Code:
    base dc=heem,dc=local
    uri ldap://192.168.1.41
    ldap_version 3
    binddn uid=zmposix,cn=appaccts,cn=zimbra
    bindpw verysecret
    rootbinddn uid=zmposixroot,cn=appaccts,cn=zimbra
    port 389
    bind_policy soft
    nss_reconnect_tries 2
    #ssl start_tls
    #tls_cacertdir /opt/zimbra/conf/ca
    #tls_checkpeer no
    pam_password md5
    #nss
    nss_base_passwd	ou=people,dc=heem,dc=local?one
    nss_base_shadow	ou=people,dc=heem,dc=local?one
    nss_base_group	ou=groups,dc=heem,dc=local?one
    nss_base_hosts	ou=machines,dc=heem,dc=local?one
    nss_initgroups_ignoreusers backup,bin,bind,daemon,games,gnats,irc,landscape,libuuid,list,lp,ma
    il,man,news,openldap,proxy,root,sshd,sync,sys,syslog,uucp,www-data
    global part of smb.conf:
    Code:
    [global]
    	workgroup = HEEM
    	netbios name = SAMBA
    	server string = %h server (Samba, Ubuntu)
    	passdb backend = ldapsam:ldap://mail.heem.local/
    	passwd program = /usr/bin/passwd %u
    	passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n *
    password\supdated\ssuccessfully* .
    	log level = 3
    	syslog = 0
    	log file = /var/log/samba/log.%m
    	max log size = 1000
    	name resolve order = wins bcast hosts
    	add user script = /usr/sbin/adduser --quiet --disabled-password --gecos "" %u
    	add machine script = /usr/sbin/useradd  -c "Workstation (%u)" -M -d /nohome -s /bin/fa
    lse "%u"
    	logon script = logon.cmd
    	logon path = \\mail.heem.local\%U\profile
    	logon home = \\mail.heem.local\%U
    	domain logons = Yes
    	os level = 33
    	preferred master = Yes
    	domain master = Yes
    	dns proxy = No
    	wins support = Yes
    	ldap admin dn = "uid=zmposixroot,cn=appaccts,cn=zimbra"
    	ldap group suffix = ou=groups
    	ldap machine suffix = ou=machines
    	ldap passwd sync = yes
    	ldap suffix = dc=heem,dc=local
    	ldap user suffix = ou=people
    	ldap ssl = no
    	panic action = /usr/share/samba/panic-action %d
    --
    cheers

  4. #84
    maxxer's Avatar
    maxxer is offline Trained Alumni
    Join Date
    Feb 2009
    Location
    Lecco, Italy
    Posts
    526
    Rep Power
    7

    Default

    Quote Originally Posted by rosch View Post
    By the way I am getting this:
    Code:
    lib/smbldap.c:1086(smbldap_connect_system)
    failed to bind to server ldap://mail.heem.local/ with dn="uid=zmposixroot,cn=appaccts,cn=zimbra" Error: Invalid credentials
      	(unknown)
    in the samba log..so there is still something messy.
    this is your problem!

    Quote Originally Posted by rosch View Post
    I did tell samba about the ldap password though with smbpasswd -w "verysecret"..and I put it in /etc/ldap.conf too (bindpw verysecret):
    did you use the zmposixroot pw for this command?
    YetOpen S.r.l. ~ Your open source partner
    Lecco (LC) - ITALY
    http://www.yetopen.it

  5. #85
    rosch is offline Special Member
    Join Date
    Sep 2010
    Posts
    112
    Rep Power
    4

    Default finally working!

    Quote Originally Posted by maxxer View Post
    this is your problem!
    did you use the zmposixroot pw for this command?
    No I didn't, silly me.

    Thank you very much for your patience, you made my day!
    There is still more to be done but at least I am seeing the samba domain now in the zimlet.

    ps: next time I'm close to Lecco I owe you a drink.
    --
    cheers

  6. #86
    mickier is offline Loyal Member
    Join Date
    Dec 2007
    Posts
    84
    Rep Power
    7

    Default

    Quote Originally Posted by maxxer View Post
    I did a deployment last week, and worked perfectly, just like 6 do!

    No particular issues, except the zimlets icon not showing up in admin interface.
    Was that an Install or an upgrade?

    and did you then successfully install the zimlets in admin?

  7. #87
    maxxer's Avatar
    maxxer is offline Trained Alumni
    Join Date
    Feb 2009
    Location
    Lecco, Italy
    Posts
    526
    Rep Power
    7

    Default

    Quote Originally Posted by mickier View Post
    Was that an Install or an upgrade?

    and did you then successfully install the zimlets in admin?
    yes they installed fine. I just don't see the zimlet icon left to them, in admin console.

    I tried both a brand new installa and upgrade, in each case zimlets were deployed correctly
    YetOpen S.r.l. ~ Your open source partner
    Lecco (LC) - ITALY
    http://www.yetopen.it

  8. #88
    nmirceac is offline Intermediate Member
    Join Date
    Feb 2011
    Location
    Cape Town
    Posts
    19
    Rep Power
    4

    Default

    Quote Originally Posted by maxxer View Post
    yes they installed fine. I just don't see the zimlet icon left to them, in admin console.

    I tried both a brand new installa and upgrade, in each case zimlets were deployed correctly
    Just tried to do the samba/posix integration... have some issues though:

    1. that example of installing samba is just confusing, it's actually not working [the sources are in samba-x.y.z/sources (or sources3 / sources4)] and with the configure options from that example smbd and nmbd are not building.

    2. updated ldap (the ldifs) and indexed and deployed the admin extension
    -> was able to add a samba domain and a posix group
    -> was able to create a new user and was able to ssh login using it's details
    [two small issues: "I have no name!@server" and groups is sending a message saying that no name was found for group ID 10001]

    The big issue is with the already existing users... cannot give them sambaSID or uis / gid... in fact i cannot update any details of those users anymore.

    [it's very similar to this: modify existing user to have Samba attributes

    This is a solution

    PHP Code:
    $id=10005;

    function 
    checkReal($email)
    {
    $forbidden=array('virus','spam','wiki');
        foreach(
    $forbidden as $search)
        {
            if(
    strpos(' '.$email,$search)>0) return false;
        }
    return 
    true;
    }

    #you have to have these domains as samba domains
    $domains=array('domain1.tld','domain2.tld');
    foreach(
    $domains as $domain)
    {
    exec('su - zimbra -c "zmprov -l getAllAccounts '.$domain.'"',$users);

    foreach(
    $users as $email)
        {
    if(!
    checkReal($email)) continue;
    echo  
    'Fixing '.$email."\n";

    $username=reset(explode('@',$email));
    $homeDir='/home/'.$username;
    if(!
    file_exists($homeDir)) mkdir($homeDir);
    system('chown '.$username.' '.$homeDir);
    #in the documentation sambaSID was a really long, apparently random, number ]S-1-5-21-3745602466-621825477-2613676135-21006]
    system('su - zimbra -c "zmprov ma '.$email.' +objectClass sambaSamAccount sambaSID '.$id.' sambaDomainName '.$domain.'" sambaAcctFlags [UX]');
    #the problem, at least in zimbra 7, is that in the web admin interface, the domain is not set... not sure what the problem is [also there are some ugly javascript bugs when selecting the right domain]
    system('su - zimbra -c "zmprov ma '.$email.' +objectClass posixAccount uidNumber '.$id.' gidNumber 10001 homeDirectory '.$homeDir.' loginShell /dev/null"');
    $id++;
        }


    I find strange the fact that nobody else had this problem till now.

    3. samba is up and running but the auth is not working, not sure how to check where the problem is

    Code:
    [2011/03/20 15:00:32,  3] smbd/sesssetup.c:1202(reply_sesssetup_and_X_spnego)
      NativeOS=[] NativeLanMan=[] PrimaryDomain=[]
    [2011/03/20 15:00:32,  3] libsmb/ntlmssp.c:745(ntlmssp_server_auth)
      Got user=[samba] domain=[CMCBN002] workstation=[CMCBN002] len1=24 len2=282
    [2011/03/20 15:00:38,  3] smbd/oplock.c:911(init_oplocks)
      init_oplocks: initializing messages.
    [2011/03/20 15:00:38,  3] smbd/oplock_linux.c:223(linux_init_kernel_oplocks)
      Linux kernel oplocks enabled
    [2011/03/20 15:00:38,  3] smbd/process.c:1459(process_smb)
      Transaction 0 of length 72 (0 toread)
    [2011/03/20 15:00:38,  2] smbd/reply.c:456(reply_special)
      netbios connect: name1=ZIMBRA          name2=CMCBN002       
    [2011/03/20 15:00:38,  2] smbd/reply.c:463(reply_special)
      netbios connect: local=zimbra remote=cmcbn002, name type = 0
    
    [2011/03/20 15:02:50,  3] lib/smbldap.c:694(smb_ldap_start_tls)
      StartTLS issued: using a TLS connection
    [2011/03/20 15:02:50,  2] lib/smbldap.c:890(smbldap_open_connection)
      smbldap_open_connection: connection opened
    [2011/03/20 15:02:50,  0] passdb/secrets.c:914(fetch_ldap_pw)
      fetch_ldap_pw: neither ldap secret retrieved!
    [2011/03/20 15:02:50,  0] lib/smbldap.c:1046(smbldap_connect_system)
      ldap_connect_system: Failed to retrieve password from secrets.tdb
    [2011/03/20 15:02:50,  1] lib/smbldap.c:1265(another_ldap_try)
      Connection to LDAP server failed for the 3 try!
    thank you for your time

    kind regards,
    mircea
    Last edited by nmirceac; 03-20-2011 at 07:36 AM. Reason: php script update
    # ZIMBRAEND -- DO NOT EDIT ANYTHING BETWEEN THIS LINE AND ZIMBRASTART

  9. #89
    cocasal is offline New Member
    Join Date
    Mar 2011
    Posts
    3
    Rep Power
    4

    Default Supported Samba Integration

    Hello all,
    Does anyone have an idea of when this integration with Samba will it be officialy supported?

    Thanks

  10. #90
    mickier is offline Loyal Member
    Join Date
    Dec 2007
    Posts
    84
    Rep Power
    7

    Default

    Quote Originally Posted by maxxer View Post
    yes they installed fine. I just don't see the zimlet icon left to them, in admin console.

    I tried both a brand new installa and upgrade, in each case zimlets were deployed correctly
    Sorry to ask again, but I'm trying to clarify my question; I'm running single server zcs (opensource) 6.0.12 with smbldap installed. Does upgrading to 7.0.1 work re: smbldap after upgrading? or will I have to do "stuff"?

Page 9 of 11 FirstFirst ... 7891011 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. /tmp filling
    By Nutz in forum Administrators
    Replies: 8
    Last Post: 02-22-2008, 02:00 AM
  2. Major Issue - 5.0RC2 NE to 5.0GA NE failed
    By DougWare in forum Installation
    Replies: 7
    Last Post: 01-06-2008, 09:56 PM
  3. Replies: 22
    Last Post: 12-02-2007, 05:05 PM
  4. Zimbra shutdowns every n hours.
    By Andrewb in forum Administrators
    Replies: 13
    Last Post: 08-14-2007, 08:55 AM
  5. port 7071 not listening OS X install
    By leeimber in forum Installation
    Replies: 7
    Last Post: 03-21-2006, 10:47 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •