Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / Re: openvpn and firewall
« on: February 08, 2010, 09:34:05 am »
Hi,
thank you for your help. I had already checked this option, but this is not my issue here.
The issue again is the data flow between a vpn client and my internal private network which is not allowed.
Regards
alex
thank you for your help. I had already checked this option, but this is not my issue here.
The issue again is the data flow between a vpn client and my internal private network which is not allowed.
Regards
alex
2
Installation and Upgrades / openvpn and firewall
« on: February 04, 2010, 03:48:21 pm »
Hi,
I have successfull installed openvpn and get connected to it with my client. I cqn ping ebox internal address but that s about it and can acces to ebox web interface aswell. Unfortunately the firewall blocks every connections from my openvpn client network (tap0 to eth1) to internal ebox network. I went to the firewall config but I can t find the way to permit this traffic . any idea?
Alex
I have successfull installed openvpn and get connected to it with my client. I cqn ping ebox internal address but that s about it and can acces to ebox web interface aswell. Unfortunately the firewall blocks every connections from my openvpn client network (tap0 to eth1) to internal ebox network. I went to the firewall config but I can t find the way to permit this traffic . any idea?
Alex
3
Installation and Upgrades / samba home users and ldap
« on: February 03, 2010, 11:07:43 pm »
Hi,
I m running the latest 1.3 ebox package.
I finally got my pdc working but I m having an other tiny issue compared to the one before.
Actually for one user I can access to his home share (it says Access denied)and I think I found the problem but not the solution.
I went to /home/samba/users and listed all the users folders and one of them has the wrong id (2018 instead of my userid "user3")
/home/samba/users$ ls -ltarsh
total 28K
4,0K drwxr-xr-x 7 root root 4,0K 2010-01-24 17:30 ..
4,0K drwx-----x 2 user1 Domain Users 4,0K 2010-01-24 17:51 user1
4,0K drwx-----x 2 user2 Domain Users 4,0K 2010-02-02 21:40 user2
4,0K drwxr-xr-x 7 root root 4,0K 2010-02-02 21:40 .
4,0K drwx-----x 2 2018 Domain Users 4,0K 2010-02-02 21:44 user3
4,0K drwx-----x 4 admin Domain Users 4,0K 2010-02-02 22:05 admin
4,0K drwx-----x 2 user4 Domain Users 4,0K 2010-02-03 19:20 user4
when I list the ldap users (smbldap-userlist) I get this :
2002 |admin
2021 |user3
Even It the wrong id it should be 2021 instead of 2018 (I deleted and added the user). How do I turn the folder owner to user3 instead of the ID 2018?
regards,
alex
I m running the latest 1.3 ebox package.
I finally got my pdc working but I m having an other tiny issue compared to the one before.
Actually for one user I can access to his home share (it says Access denied)and I think I found the problem but not the solution.
I went to /home/samba/users and listed all the users folders and one of them has the wrong id (2018 instead of my userid "user3")
/home/samba/users$ ls -ltarsh
total 28K
4,0K drwxr-xr-x 7 root root 4,0K 2010-01-24 17:30 ..
4,0K drwx-----x 2 user1 Domain Users 4,0K 2010-01-24 17:51 user1
4,0K drwx-----x 2 user2 Domain Users 4,0K 2010-02-02 21:40 user2
4,0K drwxr-xr-x 7 root root 4,0K 2010-02-02 21:40 .
4,0K drwx-----x 2 2018 Domain Users 4,0K 2010-02-02 21:44 user3
4,0K drwx-----x 4 admin Domain Users 4,0K 2010-02-02 22:05 admin
4,0K drwx-----x 2 user4 Domain Users 4,0K 2010-02-03 19:20 user4
when I list the ldap users (smbldap-userlist) I get this :
2002 |admin
2021 |user3
Even It the wrong id it should be 2021 instead of 2018 (I deleted and added the user). How do I turn the folder owner to user3 instead of the ID 2018?
regards,
alex
4
News and Announcements / Re: First release candidate of eBox Platform 1.4 is out!
« on: February 01, 2010, 04:41:11 pm »
Hi,
Good news congratulation to your team.
How dop we upgrade from 1.2 to 1.4. Shall we modify the apt sources.list file with new links pointing to 1.4 or can we go straight to 1.4 using the web interface administration panel ?
regards
Alex
Good news congratulation to your team.
How dop we upgrade from 1.2 to 1.4. Shall we modify the apt sources.list file with new links pointing to 1.4 or can we go straight to 1.4 using the web interface administration panel ?
regards
Alex
5
Installation and Upgrades / Re: samba: Windows 7 the trust relationship between this workstation and the primary
« on: February 01, 2010, 01:51:17 pm »
can i upgrade from 1.2 to 1.4?
here is what I read on your website : http://trac.ebox-platform.com/wiki/Document/Announcement/1.3_Development_Series
Upgrading from 1.2 to 1.3 is not supported. We recommend to install 1.3 from scratch in a new machine for testing purposes.
regarsd
alex
here is what I read on your website : http://trac.ebox-platform.com/wiki/Document/Announcement/1.3_Development_Series
Upgrading from 1.2 to 1.3 is not supported. We recommend to install 1.3 from scratch in a new machine for testing purposes.
regarsd
alex
6
Installation and Upgrades / Re: samba: Windows 7 the trust relationship between this workstation and the primary
« on: February 01, 2010, 01:31:54 pm »
It s meant to be production server which has not yet been in production because of tyhis problem!!
I m quite sceptical about upgrading straight forward to 1.4RC1 to solve the problem. Let s say I upgrade it to 1.3 first and then to 1.4, Would I be able to rollback to 1.2.6 afterwise.
Why do you think 1.4RC1 should fix my problem? Is 1.3 or 1.4 supported by EBOX developpers in terms of service contract?
Reagards
Alex
I m quite sceptical about upgrading straight forward to 1.4RC1 to solve the problem. Let s say I upgrade it to 1.3 first and then to 1.4, Would I be able to rollback to 1.2.6 afterwise.
Why do you think 1.4RC1 should fix my problem? Is 1.3 or 1.4 supported by EBOX developpers in terms of service contract?
Reagards
Alex
7
Installation and Upgrades / Re: samba: Windows 7 the trust relationship between this workstation and the primary
« on: February 01, 2010, 10:57:00 am »
Hi I did what you suggested deleted the machines and added again. I seems to be going better, I m not seeing the message but still can t get access to shares and the network driver doesn t come up.
samba version is 3.4.5 and ebox engine 1.2.6. Perhaps there is an incompatibility between lastest samba version and ebox 1.2.6. I can t write (save) any file on the shares or home user share m getting this error message from W7 client "Not enought space"
Also When I issue the command pdbedit -vL I see the users and machine connected to the domain logon and logoff fields keep set to "never" whereas the users had logon and logoff and I could see them on ebox control panel.
It looks like the system permitts logon even if machine authentication fails. The NT_STATUS_ACCESS_DENNIED is repeated many times.
Perhaps it a bug between ebox 1.2.6 and the newest samba version 3.4.5. Should I upgrade to ebox 1.3 ?
Don t know what to do now I m really stuck.
any input will be much appreciated.
regards,
alex
samba version is 3.4.5 and ebox engine 1.2.6. Perhaps there is an incompatibility between lastest samba version and ebox 1.2.6. I can t write (save) any file on the shares or home user share m getting this error message from W7 client "Not enought space"
Also When I issue the command pdbedit -vL I see the users and machine connected to the domain logon and logoff fields keep set to "never" whereas the users had logon and logoff and I could see them on ebox control panel.
It looks like the system permitts logon even if machine authentication fails. The NT_STATUS_ACCESS_DENNIED is repeated many times.
Perhaps it a bug between ebox 1.2.6 and the newest samba version 3.4.5. Should I upgrade to ebox 1.3 ?
Don t know what to do now I m really stuck.
any input will be much appreciated.
regards,
alex
8
Installation and Upgrades / Re: samba: Windows 7 the trust relationship between this workstation and the primary
« on: January 27, 2010, 11:34:24 pm »
Ok here is the output result:
smbldap-userlist
uid |username
2001 |gbavard
2002 |admin
2003 |gbavard-pc$
2004 |fgourion
2005 |jwaknine
2006 |fgourion-pc$
2007 |dmoyal
2008 |jwaknine-pc$
The PCs are listed !
I will try to delete them and add them again but what is your thoughts behind this deletion?
Could it be a dns resolution problem , suffix or something like that? I m wondering if windows 7 attempts to lookup the domain name and can t find it for some reason
Do I need to install enable DHCP/DNS server on the ebox-platform?
is there any other troubleshooting I can make to get it work?
regards,
Alex
smbldap-userlist
uid |username
2001 |gbavard
2002 |admin
2003 |gbavard-pc$
2004 |fgourion
2005 |jwaknine
2006 |fgourion-pc$
2007 |dmoyal
2008 |jwaknine-pc$
The PCs are listed !
I will try to delete them and add them again but what is your thoughts behind this deletion?
Could it be a dns resolution problem , suffix or something like that? I m wondering if windows 7 attempts to lookup the domain name and can t find it for some reason
Do I need to install enable DHCP/DNS server on the ebox-platform?
is there any other troubleshooting I can make to get it work?
regards,
Alex
9
Installation and Upgrades / Re: samba: Windows 7 the trust relationship between this workstation and the primary
« on: January 27, 2010, 08:57:33 pm »
I made the upgrade but still the same problem iusing the latest samba package version 3.4.5:
Could be related to the machine not added properly to ldap ?
rpc_server/srv_netlog_nt.c:603(_netr_ServerAuthenticate3)
_netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client FGOURION-PC machine account FGOURION-PC$
[2010/01/27 20:39:48, 0] lib/util_sock.c:539(read_fd_with_timeout)
[2010/01/27 20:39:48, 0] lib/util_sock.c:1491(get_peer_addr_internal)
getpeername failed. Error was Transport endpoint is not connected
read_fd_with_timeout: client 0.0.0.0 read error = Connection reset by peer.
[2010/01/27 20:39:51, 1] smbd/service.c:1047(make_connection_snum)
fgourion-pc (10.45.100.25) connect to service profiles initially as user fgourion (uid=2004, gid=1901) (pid 1496)
[2010/01/27 20:39:51, 1] smbd/service.c:1047(make_connection_snum)
fgourion-pc (10.45.100.25) connect to service netlogon initially as user fgourion (uid=2004, gid=1901) (pid 1496)
[2010/01/27 20:39:52, 1] smbd/service.c:1047(make_connection_snum)
fgourion-pc (10.45.100.25) connect to service fgourion initially as user fgourion (uid=2004, gid=1901) (pid 1496)
[2010/01/27 20:40:06, 1] smbd/service.c:1226(close_cnum)
fgourion-pc (10.45.100.25) closed connection to service profiles
[2010/01/27 20:40:06, 1] smbd/service.c:1226(close_cnum)
fgourion-pc (10.45.100.25) closed connection to service fgourion
[2010/01/27 20:40:06, 1] smbd/service.c:1226(close_cnum)
fgourion-pc (10.45.100.25) closed connection to service netlogon
[2010/01/27 20:40:36, 0] lib/util_sock.c:539(read_fd_with_timeout)
[2010/01/27 20:40:36, 0] lib/util_sock.c:1491(get_peer_addr_internal)
getpeername failed. Error was Transport endpoint is not connected
read_fd_with_timeout: client 0.0.0.0 read error = Connection reset by peer.
Could be related to the machine not added properly to ldap ?
rpc_server/srv_netlog_nt.c:603(_netr_ServerAuthenticate3)
_netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client FGOURION-PC machine account FGOURION-PC$
[2010/01/27 20:39:48, 0] lib/util_sock.c:539(read_fd_with_timeout)
[2010/01/27 20:39:48, 0] lib/util_sock.c:1491(get_peer_addr_internal)
getpeername failed. Error was Transport endpoint is not connected
read_fd_with_timeout: client 0.0.0.0 read error = Connection reset by peer.
[2010/01/27 20:39:51, 1] smbd/service.c:1047(make_connection_snum)
fgourion-pc (10.45.100.25) connect to service profiles initially as user fgourion (uid=2004, gid=1901) (pid 1496)
[2010/01/27 20:39:51, 1] smbd/service.c:1047(make_connection_snum)
fgourion-pc (10.45.100.25) connect to service netlogon initially as user fgourion (uid=2004, gid=1901) (pid 1496)
[2010/01/27 20:39:52, 1] smbd/service.c:1047(make_connection_snum)
fgourion-pc (10.45.100.25) connect to service fgourion initially as user fgourion (uid=2004, gid=1901) (pid 1496)
[2010/01/27 20:40:06, 1] smbd/service.c:1226(close_cnum)
fgourion-pc (10.45.100.25) closed connection to service profiles
[2010/01/27 20:40:06, 1] smbd/service.c:1226(close_cnum)
fgourion-pc (10.45.100.25) closed connection to service fgourion
[2010/01/27 20:40:06, 1] smbd/service.c:1226(close_cnum)
fgourion-pc (10.45.100.25) closed connection to service netlogon
[2010/01/27 20:40:36, 0] lib/util_sock.c:539(read_fd_with_timeout)
[2010/01/27 20:40:36, 0] lib/util_sock.c:1491(get_peer_addr_internal)
getpeername failed. Error was Transport endpoint is not connected
read_fd_with_timeout: client 0.0.0.0 read error = Connection reset by peer.
10
Installation and Upgrades / Re: samba: Windows 7 the trust relationship between this workstation and the primary
« on: January 27, 2010, 01:14:45 pm »
Hi,
Thank you for your advise but it should also work with the version 3.4.3 as other people did.
I read the release note of 3.4.5 and they don t say anything about fixing a bug related to this issue.
Also assuming I upgrade to 3.4.5, the prompt will ask for overwritting the ebox smb file with the newest one, should I overwrite it with the newest version coming from the package?
regards,
alex
Thank you for your advise but it should also work with the version 3.4.3 as other people did.
I read the release note of 3.4.5 and they don t say anything about fixing a bug related to this issue.
Also assuming I upgrade to 3.4.5, the prompt will ask for overwritting the ebox smb file with the newest one, should I overwrite it with the newest version coming from the package?
regards,
alex
11
Installation and Upgrades / samba: Windows 7 the trust relationship between this workstation and the primary
« on: January 26, 2010, 10:35:18 am »
Hi,
I m experiencing a problem with creating a domain and getting connected my windows 7 stations.
The Windows 7 PC gives a DNS extension error, but joins the domain succesfully.
I get the following error when an user attempt to logon:
lib/util_sock.c:read_socket_with_timeout(939)
lib/util_sock.c:get_peer_addr_internal(1676)
getpeername failed. Error was Transport endpoint is not connected
read_socket_with_timeout: client 0.0.0.0 read error = Connection reset by peer.
netlogon_creds_server_check: credentials check failed.
I changed the workstation's registry with the file found on your website with these value:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Parameters]
"DomainCompatibilityMode"=dword:00000001
"DNSNameResolutionRequired"=dword:00000000
Do i need to turn this keys to 0 ?:
HKLM\SYSTEM\CurrentControlSet\services\Netlogon\Parameters
DWORD RequireStrongKey = 1
DWORD RequireSignOrSeal = 1
What do I need to do or chaneg in the config, what esle could be wrong?
samba version is 3.4.3
thanks in advance for your support
regards,
alex
I m experiencing a problem with creating a domain and getting connected my windows 7 stations.
The Windows 7 PC gives a DNS extension error, but joins the domain succesfully.
I get the following error when an user attempt to logon:
lib/util_sock.c:read_socket_with_timeout(939)
lib/util_sock.c:get_peer_addr_internal(1676)
getpeername failed. Error was Transport endpoint is not connected
read_socket_with_timeout: client 0.0.0.0 read error = Connection reset by peer.
netlogon_creds_server_check: credentials check failed.
I changed the workstation's registry with the file found on your website with these value:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Parameters]
"DomainCompatibilityMode"=dword:00000001
"DNSNameResolutionRequired"=dword:00000000
Do i need to turn this keys to 0 ?:
HKLM\SYSTEM\CurrentControlSet\services\Netlogon\Parameters
DWORD RequireStrongKey = 1
DWORD RequireSignOrSeal = 1
What do I need to do or chaneg in the config, what esle could be wrong?
samba version is 3.4.3
thanks in advance for your support
regards,
alex
Pages: [1]