Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
1
Installation and Upgrades / Re: Zentyal and FreeNAS LDAP setup
« on: October 23, 2013, 06:01:48 pm »
This is to close the topic.
I have given up, no revision of freenas could reliably maintain the connection to zentyal.
I am no longer using Zentyal since the 3.0 and samba 4 release, it is too much for my company, and I feel the project has moved to far away from it's beginning.
I am running SME and Synology, the LDAP setup took me 10 minutes to complete and the damn thing is pretty much bulletproof.
If anyone wants a dropbox replacement for enterprise or personal use on your own server contact me through nofolder.com
Thanks for all you've done ebox team.
dan
I have given up, no revision of freenas could reliably maintain the connection to zentyal.
I am no longer using Zentyal since the 3.0 and samba 4 release, it is too much for my company, and I feel the project has moved to far away from it's beginning.
I am running SME and Synology, the LDAP setup took me 10 minutes to complete and the damn thing is pretty much bulletproof.
If anyone wants a dropbox replacement for enterprise or personal use on your own server contact me through nofolder.com
Thanks for all you've done ebox team.
dan
2
Installation and Upgrades / Re: [SOLVED] Zentyal 3 - Cannot join Domain with Windows 7 pro client
« on: April 03, 2013, 04:22:55 pm »
Ralf whats the latest?
3
Installation and Upgrades / Re: zentyal 3 remove user home drive
« on: April 01, 2013, 03:59:33 pm »
Not really, it just disappeared. But now I cannot edit the Group Policy:
"The specified domain either does not exist or could not be contacted."
Even though I can browse the users
It will be in the Group Policy edits found in the link posted from Jase above
I don't know. I really don't want to deal with M$. I run freeNAS in a small office and cannot get it to authenticate to the zentyal, even after my other post. I cant even add another computer to the domain now. Too busy with real work to play with this stupid thing
"The specified domain either does not exist or could not be contacted."
Even though I can browse the users
It will be in the Group Policy edits found in the link posted from Jase above
same answer as your login.bat post
ie
Hi dan
see http://trac.zentyal.org/wiki/Documentation/Community/Development/singlez and scroll down to the "Editing GPOs and other AD attributes" follow the MS link to the RSAT tools and install (other tools are available if you don't meet MS licence requirments)
Once AD tools installed you can set policies and add/edit/set the home folder and login.bat from here.
need anymore info?
regards
jase
and with that post I'm now jase the monk, cheers
I don't know. I really don't want to deal with M$. I run freeNAS in a small office and cannot get it to authenticate to the zentyal, even after my other post. I cant even add another computer to the domain now. Too busy with real work to play with this stupid thing
4
Installation and Upgrades / Re: Zentyal 3 - Cannot join Domain with Windows 7 pro client
« on: January 18, 2013, 09:51:04 pm »
I recently joined 10 windows 7 machines to my new zentyal 3 machine.
i had to follow these steps exactly:
my domain name is like this "domain.local"
i type "domain.local" in the box when trying to join the domain, not just "domain"
you need a user in zentyal, not the "administrator" user, that is a member of "DNS Admins" or whatever its' called in zentyal. I just use my account and add myself to the group.
During the initial setup, i make the server use a static ip. i have found that this is crucial and i wish that the server would not even allow DHCP but understand that under certain conditions it's needed. If this is a new machine and you didn't go static during the initial setup maybe think about a format :/ (this is just what i would do)
hope this helps
i had to follow these steps exactly:
- login to client as local administrator
- sync NTP with zentyal server
- set first (primary) DNS as the zentyal server
- open up CMD and ipconfig /release, /renew, /flushdns
- then try to join the domain
my domain name is like this "domain.local"
i type "domain.local" in the box when trying to join the domain, not just "domain"
you need a user in zentyal, not the "administrator" user, that is a member of "DNS Admins" or whatever its' called in zentyal. I just use my account and add myself to the group.
During the initial setup, i make the server use a static ip. i have found that this is crucial and i wish that the server would not even allow DHCP but understand that under certain conditions it's needed. If this is a new machine and you didn't go static during the initial setup maybe think about a format :/ (this is just what i would do)
hope this helps
5
Installation and Upgrades / zentyal 3 remove user home drive
« on: January 18, 2013, 09:42:12 pm »
I have a zentyal 3+ server and i would like to NOT give each user a mapped home drive or at least change the drive letter. We are already using H: in our company and the server is forcing H: to be the user's home.
How can i stop this behavior? I cannot find it in the smb.conf.mas file
this is related to this topic: http://forum.zentyal.org/index.php/topic,13730.0.html
thanks
How can i stop this behavior? I cannot find it in the smb.conf.mas file
this is related to this topic: http://forum.zentyal.org/index.php/topic,13730.0.html
thanks
6
Installation and Upgrades / Zentyal 3 user logon.bat
« on: January 18, 2013, 09:32:22 pm »
I'm trying to implement a logon.bat script like I had on my 2.0 machine. The old one was /home/samba/netlogon/zentyal-logon.bat
from reading the smb.conf.mas in 3.0 i gather the logon.bat file should be placed in /var/lib/samba/sysvol/domain/scripts/ and named as logon.bat. i have done this and chmod 664 the file. well, its not working.
how do i apply a "logon.bat" file to my domain members in zentyal 3+
~dan
from reading the smb.conf.mas in 3.0 i gather the logon.bat file should be placed in /var/lib/samba/sysvol/domain/scripts/ and named as logon.bat. i have done this and chmod 664 the file. well, its not working.
how do i apply a "logon.bat" file to my domain members in zentyal 3+
~dan
7
Installation and Upgrades / (CLOSED) Zentyal and FreeNAS LDAP setup
« on: November 07, 2012, 08:55:47 pm »
Ok kids, I've figured it out. There were a few things I kept getting hung up on. This works for me:
Setup your Zentyal box
During the initial install i chose DHCP. DON'T DO THAT
Configure you're static IP for the server, PLEASE GO STATIC DURING THE INITIAL INSTALL NOT AFTER. Enter your information, gateway, dns etc... correctly during the setup.
I then choose the Office setup and accepted the changes, reboot updated.
Make sure your modules are enabled under "Core > Module Status" in the Zentyal web interface. Need to at least have "Users and Groups" and "File Sharing" do be able to use LDAP
Change the firewall "Gateway > Firewall > Packet Filter" "Filtering rules from internal networks to Zentyal" and edit LDAP changing it to "ACCEPT" so you can bind to the LDAP in zentyal on port 390 and browse users.
Make a few users so we can check that we are binding later. You can delete the user after things are working if you like.
Go to "Office > Users and Groups > LDAP Settings" and leave this page open. This is the info you will need in the FreeNAS box
Setup your FreeNAS 8.3+ box
Nothing special here just go to services after install, click on the wrench next to LDAP to configure it.
Hostname: 10.0.0.10:390 (enter the ip address of the Zentyal box and the port 390)
BaseDN: from the LDAP Settings page in Zentyal
Allow Anonymous Binding: Unchecked
Root bind DN: from the LDAP Settings page in Zentyal
Root bind password: from the LDAP Settings page in Zentyal
Password encryption: clear
User Suffix: ou=Users
Group Suffix: ou-Groups
Password Suffix: leave blank
Machine Suffix: leave blank
Encryption Mode: Off
Self signed certificate: not needed
Auxiliary Parameters: defaults from FreeNAS are fine
Click OK,
and enable the LDAP service. If it starts then all should be good. if not, check your IP and port numbers.
Click on "Shell" in the menu of FreeNAS and type
Look for the users you made in the Zentyal box. If you see them than everything should be ok with LDAP now.
make your shares and turn on your sharing services and then test that you can browse to them.
best,
dan
Setup your Zentyal box
During the initial install i chose DHCP. DON'T DO THAT
Configure you're static IP for the server, PLEASE GO STATIC DURING THE INITIAL INSTALL NOT AFTER. Enter your information, gateway, dns etc... correctly during the setup.
I then choose the Office setup and accepted the changes, reboot updated.
Make sure your modules are enabled under "Core > Module Status" in the Zentyal web interface. Need to at least have "Users and Groups" and "File Sharing" do be able to use LDAP
Change the firewall "Gateway > Firewall > Packet Filter" "Filtering rules from internal networks to Zentyal" and edit LDAP changing it to "ACCEPT" so you can bind to the LDAP in zentyal on port 390 and browse users.
Make a few users so we can check that we are binding later. You can delete the user after things are working if you like.
Go to "Office > Users and Groups > LDAP Settings" and leave this page open. This is the info you will need in the FreeNAS box
Setup your FreeNAS 8.3+ box
Nothing special here just go to services after install, click on the wrench next to LDAP to configure it.
Hostname: 10.0.0.10:390 (enter the ip address of the Zentyal box and the port 390)
BaseDN: from the LDAP Settings page in Zentyal
Allow Anonymous Binding: Unchecked
Root bind DN: from the LDAP Settings page in Zentyal
Root bind password: from the LDAP Settings page in Zentyal
Password encryption: clear
User Suffix: ou=Users
Group Suffix: ou-Groups
Password Suffix: leave blank
Machine Suffix: leave blank
Encryption Mode: Off
Self signed certificate: not needed
Auxiliary Parameters: defaults from FreeNAS are fine
Click OK,
and enable the LDAP service. If it starts then all should be good. if not, check your IP and port numbers.
Click on "Shell" in the menu of FreeNAS and type
Code: [Select]
getent passwdLook for the users you made in the Zentyal box. If you see them than everything should be ok with LDAP now.
make your shares and turn on your sharing services and then test that you can browse to them.
best,
dan
8
Installation and Upgrades / Re: [SOLVED] LDAP cannot bind using the info from zentyal ldap information
« on: November 07, 2012, 08:31:03 pm »
I would like the read only user and password to be displayed on the LDAP information page
9
Installation and Upgrades / Re: LDAP cannot bind using the info from zentyal ldap information
« on: November 02, 2012, 03:49:08 pm »
Awesome, progress to post!!!
changing the firewall "Gateway > Firewall > Packet Filter" i can now bind to the LDAP in zentyal on port 390 and browse users.
changing the firewall "Gateway > Firewall > Packet Filter" i can now bind to the LDAP in zentyal on port 390 and browse users.
10
Installation and Upgrades / Re: LDAP cannot bind using the info from zentyal ldap information
« on: November 02, 2012, 04:48:54 am »
@ichat the file sharing is enabled, is there any other samba4 related config??
@christian 389 binds anon but not with the credentials listed in the LDAP info (see first post for screenshot)
port 390 does not work, cannot connect. what does this mean?
thanks
@christian 389 binds anon but not with the credentials listed in the LDAP info (see first post for screenshot)
port 390 does not work, cannot connect. what does this mean?
thanks
11
Installation and Upgrades / [SOLVED] LDAP cannot bind using the info from zentyal ldap information
« on: November 01, 2012, 04:31:39 pm »
I'm trying to get my freenas to get its users from the Zentyal LDAP server.
I can bind Anonymous and see the tree but cannot get user info while Anonymous.
I tried to use the info from https://ip/Users/Composite/Settings
but they don't work in the freenas or in Softerra LDAP Administrator, I get invalid credentials and cannot get any further. I have tried multiple combinations of the Root DN without success.
What am I missing?
Best,
dan
I can bind Anonymous and see the tree but cannot get user info while Anonymous.
I tried to use the info from https://ip/Users/Composite/Settings
but they don't work in the freenas or in Softerra LDAP Administrator, I get invalid credentials and cannot get any further. I have tried multiple combinations of the Root DN without success.
What am I missing?
Best,
dan
12
Installation and Upgrades / Re: Zentyal 3 samba 4 DNS configuration cannot enable file sharing. Initial setup
« on: October 31, 2012, 05:10:01 pm »
ok i resolved this. during the initial install i chose DHCP. DON'T DO THAT
configure you're static IP for the server, PLEASE GO STATIC DURING THE INITIAL INSTALL NOT AFTER. enter your information, gateway, dns etc... correctly during the setup
after doing this and picking the office suite everything came up enabled and working correctly.
configure you're static IP for the server, PLEASE GO STATIC DURING THE INITIAL INSTALL NOT AFTER. enter your information, gateway, dns etc... correctly during the setup
after doing this and picking the office suite everything came up enabled and working correctly.
13
Installation and Upgrades / Re: Zentyal 3 samba 4 DNS configuration cannot enable file sharing. Initial setup
« on: October 27, 2012, 03:43:37 am »
why do i have a -1 karma??
those scientologists did say i have a high lack of accord!?
those scientologists did say i have a high lack of accord!?
14
Installation and Upgrades / Re: Zentyal 3 samba 4 DNS configuration cannot enable file sharing. Initial setup
« on: October 27, 2012, 03:41:36 am »
The other question I forgot to mention and realized after talking with ichat on the irc is that my router/firewall (pfsnese) is the current domain name server for the network. My zen2.0 box is the PDC for company 1 and company 2 and 3 are using a m$ workgroup. This is a multi tenant signal gateway building. The zen 2.0 box has never done anything but be the PDC for company 1 (netlogon and roaming profiles).
The pfsense if forwarding dns to the building and is the dhcp server. its doing alot of other trick stuff and is not going away. My biggest want for the zen3 box is LDAP that is working correctly, so I can authenticate the users for the freenas box instead of hand entering their crap in freenas. for some reason my zen2.0 box wont 1). connect to the zen cloud to backup, 2). accept the freenas LDAP connection, 3). upgrade correctly with the upgrade scripts. so i'm forced (happily) to upgrade to zen3.
So...
so here is my sanitized current configuration:
company.com (fqdn, web presence)
office.company.com (fqdn, dyndns to the physical building)
10.0.0.1 alpha (gateway, dhcp, dns, firewall, openvpn, traffic shaping, etc...) alpha.office.company.com will resolve correctly
10.0.0.2 echo (freepbx server whole building)
10.0.1.1 zulu (zen 2.0 box. PDC company 1)
10.0.1.254 whiskey (freenas box with zfs pool for company 1)
10.0.1.0/24 company 1 subnet
10.0.2.0/24 company 2 subnet
10.0.3.0/24 company 3 subnet
i know this will help someone else once we can detail it out.
best,
dan
The pfsense if forwarding dns to the building and is the dhcp server. its doing alot of other trick stuff and is not going away. My biggest want for the zen3 box is LDAP that is working correctly, so I can authenticate the users for the freenas box instead of hand entering their crap in freenas. for some reason my zen2.0 box wont 1). connect to the zen cloud to backup, 2). accept the freenas LDAP connection, 3). upgrade correctly with the upgrade scripts. so i'm forced (happily) to upgrade to zen3.
So...
so here is my sanitized current configuration:
company.com (fqdn, web presence)
office.company.com (fqdn, dyndns to the physical building)
10.0.0.1 alpha (gateway, dhcp, dns, firewall, openvpn, traffic shaping, etc...) alpha.office.company.com will resolve correctly
10.0.0.2 echo (freepbx server whole building)
10.0.1.1 zulu (zen 2.0 box. PDC company 1)
10.0.1.254 whiskey (freenas box with zfs pool for company 1)
10.0.1.0/24 company 1 subnet
10.0.2.0/24 company 2 subnet
10.0.3.0/24 company 3 subnet
i know this will help someone else once we can detail it out.
best,
dan
15
Installation and Upgrades / [SOLVED] Zentyal 3 samba 4 DNS configuration cannot enable file sharing
« on: October 26, 2012, 04:43:27 pm »
Fresh install, i cannot get file sharing enabled so i can setup zentyal as a Domain Controller for a windows domain.
I've been using zentyal since it was eBox (1.2 i think) and the samba 4 implementation has me puzzled.
Can someone provide good examples for the DNS configuration and anything else to be able to get this thing running correctly. i have no idea what to put in here.
best,
dan