Discussion:
[Samba] tdbsam info
(too old to reply)
Tim Gessner
2006-12-18 23:10:10 UTC
Permalink
I am trying to support our network while the 'IT' guy is on vacation. I
have set up samba before, but it has been a few years so I'm very rusty.
The problem is a logon failure for a new user. The smb.conf file has



workgroup = DELTA

server string = File Server

security = DOMAIN

obey pam restrictions = Yes

password server = delta.deltacompsys.com

passdb backend = tdbsam

passwd program = /usr/bin/passwd %u

passwd chat = *Enter\snew\sUNIX\spassword:* %n\n
*Retype\snew\sUNIX\spassword:* %n\n *password\supdated\ssuccessfully* .



I am not familiar with tdbsam. Can anyone point me to some
documentation or give me the 5 second overview? Where do I go to debug
this problem?



The logon works fine for Windows, just fails with samba. This is
running on a debian distro. Thanx!
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Gary Dale
2006-12-19 01:10:10 UTC
Permalink
As a new user, did you enable his account? My usual advice is to use
SWAT for this. :)
Post by Tim Gessner
I am trying to support our network while the 'IT' guy is on vacation. I
have set up samba before, but it has been a few years so I'm very rusty.
The problem is a logon failure for a new user. The smb.conf file has
workgroup = DELTA
server string = File Server
security = DOMAIN
obey pam restrictions = Yes
password server = delta.deltacompsys.com
passdb backend = tdbsam
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\sUNIX\spassword:* %n\n
*Retype\snew\sUNIX\spassword:* %n\n *password\supdated\ssuccessfully* .
I am not familiar with tdbsam. Can anyone point me to some
documentation or give me the 5 second overview? Where do I go to debug
this problem?
The logon works fine for Windows, just fails with samba. This is
running on a debian distro. Thanx!
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Tim Gessner
2006-12-19 15:50:15 UTC
Permalink
As I understood it he should be authenticating the logon using the
windows server (active directory) and not storing users and passwords
locally (on the linux box). I didn't recognize the tdbsam entry in the
config file though.

If what I have said is true, do I still need to enable the account? If
so, how?

Thanx!

-----Original Message-----
From: Gary Dale [mailto:***@torfree.net]
Sent: Monday, December 18, 2006 4:58 PM
To: Tim Gessner; ***@samba.org
Subject: Re: [Samba] tdbsam info

As a new user, did you enable his account? My usual advice is to use
SWAT for this. :)
Post by Tim Gessner
I am trying to support our network while the 'IT' guy is on vacation.
I
Post by Tim Gessner
have set up samba before, but it has been a few years so I'm very rusty.
The problem is a logon failure for a new user. The smb.conf file has
workgroup = DELTA
server string = File Server
security = DOMAIN
obey pam restrictions = Yes
password server = delta.deltacompsys.com
passdb backend = tdbsam
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\sUNIX\spassword:* %n\n
*Retype\snew\sUNIX\spassword:* %n\n *password\supdated\ssuccessfully* .
I am not familiar with tdbsam. Can anyone point me to some
documentation or give me the 5 second overview? Where do I go to debug
this problem?
The logon works fine for Windows, just fails with samba. This is
running on a debian distro. Thanx!
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Gary Dale
2006-12-19 18:30:14 UTC
Permalink
I believe that the Windows server validates the username/password
combination. However, the SWAT help file has this to say about security
= domain:

/Note/ that a valid UNIX user must still exist as well as the account on
the Domain Controller to allow Samba to have a valid UNIX account to map
file access to.

//
I believe this would imply that the account needs to be enabled on your
Samba server. To do this through SWAT, just click on the PASSWORD icon,
enter the user name and click on Enable User (assuming you have added
the user).

The tdbsam is the default Samba database for mapping Windows to Unix
accounts. The user has be in the database and enabled.
Post by Tim Gessner
As I understood it he should be authenticating the logon using the
windows server (active directory) and not storing users and passwords
locally (on the linux box). I didn't recognize the tdbsam entry in the
config file though.
If what I have said is true, do I still need to enable the account? If
so, how?
Thanx!
-----Original Message-----
Sent: Monday, December 18, 2006 4:58 PM
Subject: Re: [Samba] tdbsam info
As a new user, did you enable his account? My usual advice is to use
SWAT for this. :)
Post by Tim Gessner
I am trying to support our network while the 'IT' guy is on vacation.
I
Post by Tim Gessner
have set up samba before, but it has been a few years so I'm very
rusty.
Post by Tim Gessner
The problem is a logon failure for a new user. The smb.conf file has
workgroup = DELTA
server string = File Server
security = DOMAIN
obey pam restrictions = Yes
password server = delta.deltacompsys.com
passdb backend = tdbsam
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\sUNIX\spassword:* %n\n
*Retype\snew\sUNIX\spassword:* %n\n *password\supdated\ssuccessfully*
.
Post by Tim Gessner
I am not familiar with tdbsam. Can anyone point me to some
documentation or give me the 5 second overview? Where do I go to
debug
Post by Tim Gessner
this problem?
The logon works fine for Windows, just fails with samba. This is
running on a debian distro. Thanx!
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Loading...