Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / Invalid username or password.
« on: February 01, 2013, 08:48:41 pm »
I had my zent 3 box working just fine (yay!) joined a windows 8 vm to the domain, it worked, all shinny and pretty.
I then proceeded to install other services into the box (zarafa, jabber, etc..) and then I got a windows 7 VM up and tried to join the domain, says my username or password are invalid/wrong ....
I removed the win8vm from the domain, tried to join again, same error...
has anybody ran into these issues? theres no error messages on zentyal.log
samba.log is full off these errors
and when I put in my login and password to join the vm to the domain these pop up a couple times.
slowly getting there
I then proceeded to install other services into the box (zarafa, jabber, etc..) and then I got a windows 7 VM up and tried to join the domain, says my username or password are invalid/wrong ....
I removed the win8vm from the domain, tried to join again, same error...
has anybody ran into these issues? theres no error messages on zentyal.log
samba.log is full off these errors
Code: [Select]
[2013/01/31 17:35:24, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:24, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:24, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:24, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
and when I put in my login and password to join the vm to the domain these pop up a couple times.
Code: [Select]
[2013/01/31 17:35:29, 2] ../source4/rpc_server/drsuapi/getncchanges.c:1395(getncchanges_collect_objects)
../source4/rpc_server/drsuapi/getncchanges.c:1395: getncchanges on DC=ForestDnsZones,DC=myrealm,DC=lan using filter (uSNChanged>=3983)
[2013/01/31 17:35:29, 3] ../source4/rpc_server/drsuapi/getncchanges.c:1915(dcesrv_drsuapi_DsGetNCChanges)
UpdateRefs on getncchanges for 6b169f37-13ba-44b0-8b9c-0ae850b00c76
[2013/01/31 17:35:29, 2] ../source4/rpc_server/drsuapi/getncchanges.c:2007(dcesrv_drsuapi_DsGetNCChanges)
DsGetNCChanges with uSNChanged >= 3983 flags 0x00000074 on <GUID=ccc85a1f-7b46-40da-bab1-2aab2fe4a47d>;DC=ForestDnsZones,DC=myrealm,DC=lan gave 0 objects (done 0/0) 0 links (done 0/0 (as S-1-5-21-2342228453-1215186423-3515574736-1107))
[2013/01/31 17:35:29, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:29, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:29, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:29, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:29, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:32, 2] ../source4/rpc_server/drsuapi/getncchanges.c:1395(getncchanges_collect_objects)
../source4/rpc_server/drsuapi/getncchanges.c:1395: getncchanges on DC=DomainDnsZones,DC=myrealm,DC=lan using filter (uSNChanged>=4004)
[2013/01/31 17:35:32, 3] ../source4/rpc_server/drsuapi/getncchanges.c:1915(dcesrv_drsuapi_DsGetNCChanges)
UpdateRefs on getncchanges for 6b169f37-13ba-44b0-8b9c-0ae850b00c76
[2013/01/31 17:35:32, 2] ../source4/rpc_server/drsuapi/getncchanges.c:2007(dcesrv_drsuapi_DsGetNCChanges)
DsGetNCChanges with uSNChanged >= 4004 flags 0x00000074 on <GUID=23d45899-6c0e-40e7-895e-0016c2ae8867>;DC=DomainDnsZones,DC=myrealm,DC=lan gave 0 objects (done 0/0) 0 links (done 0/0 (as S-1-5-21-2342228453-1215186423-3515574736-1107))
[2013/01/31 17:35:35, 2] ../source4/rpc_server/drsuapi/getncchanges.c:1395(getncchanges_collect_objects)
../source4/rpc_server/drsuapi/getncchanges.c:1395: getncchanges on DC=myrealm,DC=lan using filter (uSNChanged>=4006)
[2013/01/31 17:35:35, 3] ../source4/rpc_server/drsuapi/getncchanges.c:1915(dcesrv_drsuapi_DsGetNCChanges)
UpdateRefs on getncchanges for 6b169f37-13ba-44b0-8b9c-0ae850b00c76
[2013/01/31 17:35:35, 2] ../source4/rpc_server/drsuapi/getncchanges.c:2007(dcesrv_drsuapi_DsGetNCChanges)
DsGetNCChanges with uSNChanged >= 4006 flags 0x00000074 on <GUID=bc1d303f-6955-4095-93c5-f1b516c3b3a1>;<SID=S-1-5-21-2342228453-1215186423-3515574736>;DC=myrealm,DC=lan gave 0 objects (done 0/0) 0 links (done 0/0 (as S-1-5-21-2342228453-1215186423-3515574736-1107))
[2013/01/31 17:35:36, 3] ../source4/smbd/service_stream.c:63(stream_terminate_connection)
Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_IO_TIMEOUT'
[2013/01/31 17:35:36, 3] ../source4/smbd/process_single.c:104(single_terminate)
single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_IO_TIMEOUT]
[2013/01/31 17:35:38, 2] ../source4/rpc_server/drsuapi/getncchanges.c:1395(getncchanges_collect_objects)
../source4/rpc_server/drsuapi/getncchanges.c:1395: getncchanges on CN=Schema,CN=Configuration,DC=myrealm,DC=lan using filter (uSNChanged>=3689)
[2013/01/31 17:35:38, 3] ../source4/rpc_server/drsuapi/getncchanges.c:1915(dcesrv_drsuapi_DsGetNCChanges)
UpdateRefs on getncchanges for 6b169f37-13ba-44b0-8b9c-0ae850b00c76
[2013/01/31 17:35:38, 2] ../source4/rpc_server/drsuapi/getncchanges.c:2007(dcesrv_drsuapi_DsGetNCChanges)
DsGetNCChanges with uSNChanged >= 3689 flags 0x00000074 on <GUID=61a74f83-8fda-4d60-973f-96b507e8836a>;CN=Schema,CN=Configuration,DC=myrealm,DC=lan gave 0 objects (done 0/0) 0 links (done 0/0 (as S-1-5-21-2342228453-1215186423-3515574736-1107))
[2013/01/31 17:35:39, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:39, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:39, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:39, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:39, 3] ../source4/libcli/resolve/dns_ex.c:489(pipe_handler)
dns child failed to find name '6b169f37-13ba-44b0-8b9c-0ae850b00c76._msdcs.myrealm.lan' of type A
[2013/01/31 17:35:41, 2] ../source4/rpc_server/drsuapi/getncchanges.c:1395(getncchanges_collect_objects)
../source4/rpc_server/drsuapi/getncchanges.c:1395: getncchanges on CN=Configuration,DC=myrealm,DC=lan using filter (uSNChanged>=3999)
[2013/01/31 17:35:41, 3] ../source4/rpc_server/drsuapi/getncchanges.c:1915(dcesrv_drsuapi_DsGetNCChanges)
UpdateRefs on getncchanges for 6b169f37-13ba-44b0-8b9c-0ae850b00c76
[2013/01/31 17:35:41, 2] ../source4/rpc_server/drsuapi/getncchanges.c:2007(dcesrv_drsuapi_DsGetNCChanges)
DsGetNCChanges with uSNChanged >= 3999 flags 0x00000074 on <GUID=1a344a5f-3f18-4e46-87bf-4203c357a087>;CN=Configuration,DC=myrealm,DC=lan gave 0 objects (done 0/0) 0 links (done 0/0 (as S-1-5-21-2342228453-1215186423-3515574736-1107))
[2013/01/31 17:35:41.827249, 2] ../source3/smbd/server.c:436(remove_child_pid)
Could not find child 12941 -- ignoring
slowly getting there
2
Installation and Upgrades / [SOLVED] Unable to reach any KDC
« on: January 30, 2013, 02:44:31 pm »
I downloaded the latest zent iso from the website 3.0-1 and proceeded to do a clean install of everything to see if I finally can get this working for once.
I followed step by step the instructions on http://trac.zentyal.org/wiki/Documentation/Community/Development/singlez on a brand new VM and set up my main server.
Joined a windows 8 computer to the domain to test and it worked just fine.
Then I followed the steps on http://trac.zentyal.org/wiki/Documentation/Community/Development/multiplez and set up my second box, and when I get to the point I enabled my file sharing module I get an error message "The following modules failed while saving their changes, their state is unknown: samba" so I go check the last couple lines on /var/log/zentyal/zentyal.log and see this:
Error output: kinit: krb5_get_init_creds: unable to reach any KDC in realm MYREALM.LAN
I've followed the instructions to the letter, so DNS is set up properly, both are on the same domain, different hostnames, can ping each other by their hostnames just fine.
I am really at a loss about what to do to get this working. If even following the devs directions I cant get it to work what should I do?
I followed step by step the instructions on http://trac.zentyal.org/wiki/Documentation/Community/Development/singlez on a brand new VM and set up my main server.
Joined a windows 8 computer to the domain to test and it worked just fine.
Then I followed the steps on http://trac.zentyal.org/wiki/Documentation/Community/Development/multiplez and set up my second box, and when I get to the point I enabled my file sharing module I get an error message "The following modules failed while saving their changes, their state is unknown: samba" so I go check the last couple lines on /var/log/zentyal/zentyal.log and see this:
Error output: kinit: krb5_get_init_creds: unable to reach any KDC in realm MYREALM.LAN
I've followed the instructions to the letter, so DNS is set up properly, both are on the same domain, different hostnames, can ping each other by their hostnames just fine.
I am really at a loss about what to do to get this working. If even following the devs directions I cant get it to work what should I do?
3
Installation and Upgrades / Users synchronization password error.
« on: January 23, 2013, 08:26:50 pm »
I had a couple servers syncing users from my main server for a month or so working just fine.
After the servers had their IPs changed, I removed the slaves on the main server, on the slaves I removed synchronization, and when I tried to add them again I get a "Couldn't configure Zentyal as slave: Invalid password." message.
I am 500% sure the password is correct, heck it even worked before.
After the IP on the servers changed I updated all packages, so they're on their latest version.
Any ideas?
Package list from main server.
After the servers had their IPs changed, I removed the slaves on the main server, on the slaves I removed synchronization, and when I tried to add them again I get a "Couldn't configure Zentyal as slave: Invalid password." message.
I am 500% sure the password is correct, heck it even worked before.
After the IP on the servers changed I updated all packages, so they're on their latest version.
Any ideas?
Package list from main server.
Code: [Select]
ii zentyal 3.0 Zentyal - Core metapackage
ii zentyal-ca 3.0.2 Zentyal - Certification Authority
ii zentyal-common 3.0.6 Zentyal - Common Library
ii zentyal-core 3.0.11 Zentyal - Core
ii zentyal-dhcp 3.0.2 Zentyal - DHCP Service
ii zentyal-dns 3.0.4 Zentyal - DNS Service
ii zentyal-firewall 3.0.1 Zentyal - Firewall
ii zentyal-jabber 3.0.1 Zentyal - Jabber (Instant Messaging)
ii zentyal-mail 3.0.4 Zentyal - Mail Service
ii zentyal-monitor 3.0.2 Zentyal - Monitor
ii zentyal-network 3.0.1 Zentyal - Network Configuration
ii zentyal-ntp 3.0 Zentyal - NTP Service
ii zentyal-objects 3.0 Zentyal - Network Objects
ii zentyal-samba 3.0.12 Zentyal - File Sharing and Domain Services
ii zentyal-services 3.0.1 Zentyal - Network Services
ii zentyal-software 3.0.3 Zentyal - Software Management
ii zentyal-usercorner 3.0.3 Zentyal - User Corner
ii zentyal-users 3.0.7 Zentyal - Users and Groups
ii zentyal-webserver 3.0.2 Zentyal - Web Server
ii zentyal-zarafa 3.0.2 Zentyal - Groupware (Zarafa)
4
Installation and Upgrades / Zarafa, mail aliases.
« on: November 21, 2012, 01:44:00 pm »
I've installed the groupware module and zarafa looks awesome.
I noticed there isnt support for brazilian portuguese on the webapp yet, so if I manage to find some time I'll hop on and try to help on that, but the /webaccess still has brazilian portuguese so for now I am saved
I have a bunch of questions about functionality so I hope someone can give me a hand.
On my old setup (samba3+lam+postfix+courier) I could go on mail aliases in LAM (ldap acc manager) and setup a mail alias like group@domain.com that would forward email to a set group of users.
From what I could test, the only way to do it on zent/zarafa right now would be to create an user group and assign a mail alias to it right?
I'm worried that I might end up bloating my group list with a bunch of groups with one or two users just for that.
The global address book is really neat, but is there any way I can hide some groups from showing up on it? Its hardly a good idea to have an Everyone group listed there.
On a related note, is there any way to limit who can send mail to a group? If I could limit who can send mail to the group mails it would be awesome (I guess that sounds kinda like a mailing list :/)
I noticed there isnt support for brazilian portuguese on the webapp yet, so if I manage to find some time I'll hop on and try to help on that, but the /webaccess still has brazilian portuguese so for now I am saved
I have a bunch of questions about functionality so I hope someone can give me a hand.
On my old setup (samba3+lam+postfix+courier) I could go on mail aliases in LAM (ldap acc manager) and setup a mail alias like group@domain.com that would forward email to a set group of users.
From what I could test, the only way to do it on zent/zarafa right now would be to create an user group and assign a mail alias to it right?
I'm worried that I might end up bloating my group list with a bunch of groups with one or two users just for that.
The global address book is really neat, but is there any way I can hide some groups from showing up on it? Its hardly a good idea to have an Everyone group listed there.
On a related note, is there any way to limit who can send mail to a group? If I could limit who can send mail to the group mails it would be awesome (I guess that sounds kinda like a mailing list :/)
5
Installation and Upgrades / Right way to install Proxy and Firewall?
« on: November 21, 2012, 12:55:32 pm »
Since I gave up on complicating my life trying to have everything in separate servers I got my zentyal instalation working quite well. Thanks for all the advice from people here in the forums.
Right now I got my firewall working on one box, and everything else (ldap, samba, dns, blablabla) on another box.
What I was wondering is, do I need to have the proxy on the same box as the firewall? or should I put it together with everything else?
I have barelly 150 users on this network, and I intend to use the proxy with user authentication and a good amount of filtering based on categories.
So I was wondering if I should put it together on the firewall (almost no cpu use there), or together with my main box?
Are there any recomendations when deciding where to put the proxy?
Right now I got my firewall working on one box, and everything else (ldap, samba, dns, blablabla) on another box.
What I was wondering is, do I need to have the proxy on the same box as the firewall? or should I put it together with everything else?
I have barelly 150 users on this network, and I intend to use the proxy with user authentication and a good amount of filtering based on categories.
So I was wondering if I should put it together on the firewall (almost no cpu use there), or together with my main box?
Are there any recomendations when deciding where to put the proxy?
6
Installation and Upgrades / Multiple servers = multiple dns servers?
« on: November 12, 2012, 06:59:18 pm »
I'm pretty sure I'm doing something wrong here, at least it doesnt make any sense to me. Maybe I'm missing some concept or I am just stupid 
I have one zentyal box with ntp,dhcp,ldap/kerb/users n groups, another box with samba and another one for my firewall/proxy
I want to sync users and groups between the servers so I set the samba and proxy boxes as slaves and they sync just fine.
The problem is that they also require a local dns server, and when I installed them I informed my domain name as, lets say, mydomain.com
Thing is, my ldap box has the dns set in there to answer for this domain, but the other ones have their dns domain set to the same mydomain.com, and wont let me disable the dns server without disabling their main services (samba and proxy, and users and groups).
Of course with this setup the samba and proxy boxes wont solve anything for the domain, since its only properly set on the main box.
So.. what am I missing here? Shouldnt it be enough that I have a dns server on the main box?
How can I solve this mess? rsync the dns settings? (ugh!)
I have one zentyal box with ntp,dhcp,ldap/kerb/users n groups, another box with samba and another one for my firewall/proxy
I want to sync users and groups between the servers so I set the samba and proxy boxes as slaves and they sync just fine.
The problem is that they also require a local dns server, and when I installed them I informed my domain name as, lets say, mydomain.com
Thing is, my ldap box has the dns set in there to answer for this domain, but the other ones have their dns domain set to the same mydomain.com, and wont let me disable the dns server without disabling their main services (samba and proxy, and users and groups).
Of course with this setup the samba and proxy boxes wont solve anything for the domain, since its only properly set on the main box.
So.. what am I missing here? Shouldnt it be enough that I have a dns server on the main box?
How can I solve this mess? rsync the dns settings? (ugh!)
7
Installation and Upgrades / [SOLVED] Firewall rule refuses to work.
« on: November 05, 2012, 08:28:56 pm »
I have a zentyal 3 box running a bunch of mysql instances from ports ranging from 40000 to 50000.
I created a service called MySQL and informed the port range
I created an object with the IPs that will be able to access these mysql instances called Allowed_MySQL with 192.168.0.0/24 and 192.168.1.2/32 (one network and one user from another network).
If I create a rule as:
Decision: allow
Source: any
Service: MySQL
it works just fine.
If I change it to
Decision: allow
Source: Allowed_MySQL
Service: MySQL
I cant connect at all. Did I miss anything?
iptables -L -n shows the rules just fine, so I know it is applying the rules, but I cant figure out why its not working.
I created a service called MySQL and informed the port range
I created an object with the IPs that will be able to access these mysql instances called Allowed_MySQL with 192.168.0.0/24 and 192.168.1.2/32 (one network and one user from another network).
If I create a rule as:
Decision: allow
Source: any
Service: MySQL
it works just fine.
If I change it to
Decision: allow
Source: Allowed_MySQL
Service: MySQL
I cant connect at all. Did I miss anything?
iptables -L -n shows the rules just fine, so I know it is applying the rules, but I cant figure out why its not working.
8
Installation and Upgrades / Split DNS and LDAP servers.
« on: November 05, 2012, 06:42:06 pm »
I looked at the documentation, and tried searching the forum, if I missed an answer feel free to call me dumb and point me in the right direction.
Buuuut, if I didnt miss it, then someone please help me out
I have a zentyal 2.2 dns server (that I can upgrade to 3.0 if its needed) and I want a new box with just my ldap server on my internal network. Problem is, is there anyway I can get the users and groups module up without having a DNS server in the same box?
Is there even a reason to force the instalation of a DNS server on the same box of the users n groups module?
Buuuut, if I didnt miss it, then someone please help me out
I have a zentyal 2.2 dns server (that I can upgrade to 3.0 if its needed) and I want a new box with just my ldap server on my internal network. Problem is, is there anyway I can get the users and groups module up without having a DNS server in the same box?
Is there even a reason to force the instalation of a DNS server on the same box of the users n groups module?
9
Installation and Upgrades / Home folders, samba, windows and linux, what a mess.
« on: November 30, 2011, 07:42:37 pm »
Hi everyone. I stumbled accross zentyal a week ago and so far I was loving it, then i stumbled upon my first issue.
First things first, I apologize in advance for the huge wall of text, but I tried to detail everything that I could so its easier to get someone to help me out.
So here we go. What I wanted to do:
- central login for everything
- file server for windows and linux with roaming profiles
- one share per user (private folder)
- one share for each group of users
- boss user can see everything (not a tech guy, really, the department chief)
How I expected it to work
- main server with ldap
- secondary server with samba sharing files
- user logs in with linux or windows and has his shared folders and his data carries over to wherever he goes
How I tried to setup
- zentyal on first server, setup the server as instructed in the docs (users n groups only, primary server, etc, worked just fine)
- zentyal on second server, ldap slave as in the docs, then after that was done I enabled file sharing module.
- samba is the pdc (so i can join windows boxes to the domain and use their login/pass from ldap)
- made shares for each user, and groups, and public folders and gave permissions to the shares as:
- user share - user reads n writes, admin group has admin rights, boss group has read n write
- group shares - user group reads n writes, admin group has admin rights, boss group has read n write
- public folder - big group reads n writes, admin group has admin rights
- used the zentyal client on windows and on ubuntu 10.10
What happened
- users can log in just fine, the problem so far is with home shares
- system shares the homedir by default, I can turn it off editing the /usr/share/zentyal/stubs/samba/smb.conf.mas file to remove the [homes] share, but that breaks the login process (ubuntu gives errors saying it cant mount home blablabla, I figure its part of the roaming profile thingy so I reverted that change)
- files are everywhere! profile files are on /home/samba/profiles for windows stuff, if i log in from linux it saves on /home/user (all this on fileserver), and I just checked my ldap server and there are profile files there too -_- I suposed it would stay at the fileserver where it was suposed to be...
- example: i logged in with my ubuntu box and created a new folder on my desktop called "newfolder". i log out and go check the fileserver via ssh.
on the user /home/testuser folder theres a "newfolder" folder there.
i log on windows and create a new folder on my desktop called "newfolderwindows", I log off and go check the fileserver via ssh and find nothing at /home/samba/profiles/testuser/Desktop . I look at my ldap server and theres a windows profile on the /home/testuser folder with the "newfolderwindows" there...
weird thing is, (we use brazilian portuguese windows here) the testuser profile folders inside the home folder at the ldap server are in portuguese and the /home/samba/profiles/testuser/ profile folders at the fileserver are in english.
I thought about leaving it that way and use the standard home share to store the user files, but it would be a pain to setup so the bosses (the right bosses) could access those files. Also, it would confuse users when they went from a windows machine to a linux machine and not find their files... (linux is saving at the home folder, and windows at the profile folder.
For group folders I can just go and map them by hand or make login scripts, well, I dont want to bother with it right now. And yes I know I can make one folder automount per group, but it wont let me customize descriptions and stuff like on a regular share. Again, I can worry about this part later.
So.. my questions are:
1- what the heck is happening with the files spread around servers?
2- how can I have the files all at the same place for both ubuntu and windows?
First things first, I apologize in advance for the huge wall of text, but I tried to detail everything that I could so its easier to get someone to help me out.
So here we go. What I wanted to do:
- central login for everything
- file server for windows and linux with roaming profiles
- one share per user (private folder)
- one share for each group of users
- boss user can see everything (not a tech guy, really, the department chief)
How I expected it to work
- main server with ldap
- secondary server with samba sharing files
- user logs in with linux or windows and has his shared folders and his data carries over to wherever he goes
How I tried to setup
- zentyal on first server, setup the server as instructed in the docs (users n groups only, primary server, etc, worked just fine)
- zentyal on second server, ldap slave as in the docs, then after that was done I enabled file sharing module.
- samba is the pdc (so i can join windows boxes to the domain and use their login/pass from ldap)
- made shares for each user, and groups, and public folders and gave permissions to the shares as:
- user share - user reads n writes, admin group has admin rights, boss group has read n write
- group shares - user group reads n writes, admin group has admin rights, boss group has read n write
- public folder - big group reads n writes, admin group has admin rights
- used the zentyal client on windows and on ubuntu 10.10
What happened
- users can log in just fine, the problem so far is with home shares
- system shares the homedir by default, I can turn it off editing the /usr/share/zentyal/stubs/samba/smb.conf.mas file to remove the [homes] share, but that breaks the login process (ubuntu gives errors saying it cant mount home blablabla, I figure its part of the roaming profile thingy so I reverted that change)
- files are everywhere! profile files are on /home/samba/profiles for windows stuff, if i log in from linux it saves on /home/user (all this on fileserver), and I just checked my ldap server and there are profile files there too -_- I suposed it would stay at the fileserver where it was suposed to be...
- example: i logged in with my ubuntu box and created a new folder on my desktop called "newfolder". i log out and go check the fileserver via ssh.
on the user /home/testuser folder theres a "newfolder" folder there.
i log on windows and create a new folder on my desktop called "newfolderwindows", I log off and go check the fileserver via ssh and find nothing at /home/samba/profiles/testuser/Desktop . I look at my ldap server and theres a windows profile on the /home/testuser folder with the "newfolderwindows" there...
weird thing is, (we use brazilian portuguese windows here) the testuser profile folders inside the home folder at the ldap server are in portuguese and the /home/samba/profiles/testuser/ profile folders at the fileserver are in english.
I thought about leaving it that way and use the standard home share to store the user files, but it would be a pain to setup so the bosses (the right bosses) could access those files. Also, it would confuse users when they went from a windows machine to a linux machine and not find their files... (linux is saving at the home folder, and windows at the profile folder.
For group folders I can just go and map them by hand or make login scripts, well, I dont want to bother with it right now. And yes I know I can make one folder automount per group, but it wont let me customize descriptions and stuff like on a regular share. Again, I can worry about this part later.
So.. my questions are:
1- what the heck is happening with the files spread around servers?
2- how can I have the files all at the same place for both ubuntu and windows?
Pages: [1]