Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - grolon

Pages: 1 2 [3]
31
Hi all,
I've been working zentyal i am trying to change my dashboard user  called "administrador" .
This user is what it created when installing.

Tryed accesing wiht installation password and is working fine.
Went to system General Password Change and type "administrador", then actual password and repeated new password, it says passwd changed sucessfully, but it never changes,

I 've tryed command passwd and get :

# passwd administrador
passwd: Authentication token manipulation error
passwd: password unchanged

any idea ?

TIA

32
Installation and Upgrades / Re: LDAP Master/Slave usercorner
« on: March 21, 2011, 01:25:57 pm »
i'm trying to do something similar to your scenario.

I was planning to have two zentyal servers. 1 master a 1 slave, sync users, etc,
I have read in Zentyal DOC (spanish) that zentyal master server can be ONLY used to LDAP and DNS service, cant be used to samba shares.

My plans are, have 2 server, users & groups sunc'ed, samba shares on both of them,

This can't be done, ehh

Somebody pls help
G.

33
hi, maybe if you can provide more detailed info about procedure you follow we can be more help.

regards, saludos
G.

34
Finally i solved my problem;

I've found this site and follow it:
-----------------------------
http://us.generation-nt.com/answer/samba-windows-7-issues-help-190101051.html

Hi!
Now i could join in a samba domain with windows7. I did the follow changes
in my Win7:

0 - I had to upgrade my samba server to version 3.4.7

1- I did this changes in the registry

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Parameters]
"DomainCompatibilityMode"=dword:00000001
"DNSNameResolutionRequired"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Netlogon\Parameters]
"Update"="no"
"DisablePasswordChange"=dword:00000000
"MaximumPasswordAge"=dword:0000001e
"RequireSignOrSeal"=dword:00000001
"RequireStrongKey"=dword:00000001
"SealSecureChannel"=dword:00000001
"SignSecureChannel"=dword:00000001

2 - I changed this network adapter configurations:
2.a - Wins server should be the samba server address.
2.b - Primary DNS server should be the samba server address.
3.c - Configure the primary DNS Suffix with the same samba server address.

This worked for me. thanks all.
--------------------------------------------

What i did;
Windows 7 x64 Ultimate Spanish
Zentyal 2.0-3 x86 as a PDC; Samba 3.4.9

Windows 7 Registry changes to Join a Samba Domain


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Parameters]
"DomainCompatibilityMode"=dword:00000001
"DNSNameResolutionRequired"=dword:00000000

Windows 7 Registry changes to add Domain User Accounts to Local Machine


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Netlogon\Parameters]
"RequireSignOrSeal"=dword:00000001
"RequireStrongKey"=dword:00000001

Windows 7 Registry changes to avoid a 30 days password change problem

Client-Registry:
[HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters]
"DisablePasswordChange"=dword:00000001

or

Client-Registry:
[HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters]
"MaximumPasswordAge"=dword:1000000

Here is it.

Now i'll install SP1 to my Windows 7 installation.
an let you know what happens.

Regards.

G.

EDITION Monday, 14th March 2011, 7:30am

Removed all TEST Domain users added to my local machine,
Removed my local machine from TEST Domain
Rebooted my local machine.

Applyed Windows 7 x64 Service Pack 1 to my local machine.

After various reboot,
Re Join my local machine to TEST Domain, Everything OK.
What is new, no more domain suffix error. Just Reboot.

Added my two test users from TEST Domain to my local machine,
Looged in with my test domain user, OK.

Feel free to contact me.

grolon [at] gmail [dot] com

35
I'm having the same problem.
I can join domain, but i can't add domain user to local machine.

i'll try what it says in samba howto.
http://wiki.samba.org/index.php/Windows7

I think some Windows Update changed something.
Because some time ago this worked OK.

Regards
G.

36
Puede ser que el LDAP del ebox no te este escuchando. Porque solo escucha en el 127.0.0.1, deberias modificarlo para que escuche al IP de tu LAN.
Yo lo hice para poder acceder al LDAP de mi zentyal desde mi notebook para poder usar el LDAP Manager desde Windows.

.G.
grolon at gmail dot com

37
Spanish / Re: Tips: ¿Como autenticar Squid contra un ldap de ebox?
« on: September 24, 2010, 11:18:29 pm »
gracias amigos, me respondo solo.
En la configuracion del firewall de zentyal server modifique el item que se relaciona con el ldap para permitir el acceso a la red local.


root@mib:~# /usr/lib/squid/ldap_auth -b  "ou=Users,dc=zentyal,dc=hs,dc=com,dc=py" -v 3 -H ldap://192.168.1.136
nombre_usuario clave_usuario
OK
^C

muchas gracias.

38
Spanish / Re: Tips: ¿Como autenticar Squid contra un ldap de ebox?
« on: September 23, 2010, 12:07:28 am »
Hola elav,
Estoy tratando de autenticar un servidor Ubuntu Linux 9.04 Server con Squid siguiendo tus sugerencias aqui, contra un servidor zentyal 2.0 instalado hoy mismo.

No logro que el comando funcione correctamente
root@mib:~# /usr/lib/squid/ldap_auth -b  "ou=Users,dc=hs,dc=com,dc=py" -v 3 -H ldap://192.168.1.136
nombre_usuario
ERR

Si lo escribo mal de entrada me sale ERR.
Pero cuando escribo el usuario y contraseña correctas la primera vez no logro obtener nada, solo me queda teclear Control_C para terminar el comando.

root@mib:~# /usr/lib/squid/ldap_auth -b  "ou=Users" -v 3 -H ldap://192.168.1.136
nombre_usuario clave_usuario
<ENTER>
<ENTER>
^C

Alguna idea?
Gracias de antemano

El objetivo es que el servidor con Squid, autentique contra el servidor con Ebox, algo que según me dijeron no se podía hacer, porque Ebox no lo permitía.. Pues bien existe un comando que nos permite comprobar si podemos loguearnos con un usuario en un server ldap:

Code: [Select]
/usr/lib/squid/ldap_auth -b  "ou=Users,dc=dominio,dc=com" -v 3 -H ldap://x.x.x.1
Al ejecutar eso luego ponemos:

Code: [Select]
usuario password
Si el usuario y el password es correcto nos pone OK.. Le muestro un ejemplo de como sería...

Code: [Select]
/usr/lib/squid/ldap_auth -b  "ou=Users,dc=dominio,dc=com" -v 3 -H ldap://x.x.x.1
wilfredo pass
OK
pepe passfalsa
ERR Success

Entonces, al ver que funciona solo tuve que agregarle a mi configuración del squid lo siguiente:

Code: [Select]
# Autenticación de Squid contra LDAP
auth_param basic program /usr/lib/squid/ldap_auth -b  "ou=Users,dc=dominio,dc=com" -v 3 -H ldap://x.x.x.1

# Para usar grupos del LDAP.
external_acl_type ldap_group %LOGIN /usr/lib/squid/squid_ldap_group -b "ou=Groups,dc=dominio,dc=com" -f "(&(cn=%a)(memberUid=%v)(objectClass=posixGroup))" -h x.x.x.1

Luego reinicié Squid y funcionó perfectamente... Espero que ayude a más de uno.

Pages: 1 2 [3]