I have Redhat 5 playing nice as it authenticates against windows server 2008. But I ran into issues trying to get Redhat 6 to do it as well.
Here is where I stand on my redhat 6 box:
I have my certificates working between the windows and the redhat box.
From Root user I can SU to an Active Directory user. getent works. I can see all the users info. ldapsearch works with the CA certificate so my SSL handshake is working. I do not suspect cert issues
But when I try to login as active directory on my Redhat 6 box I get told I used an invalid password. The password works just fine on the windows server, so I didn't fat finger anything. I am just confused as to why I can have getent and ldapsearching but can not login.
I have turned off iptables on redhat and the firewall on 2008 server to see if that would change the situation but no luck.
I noted that in Redhat 6 I need to config SSSD rather then NSCD.
Let me know if you need to see my:
ldap.conf
nsswitch.conf
sssd.conf
var messages
What I maybe doing wrong or leaving out in my configurations.
I can get a connection to Windows server 2008 using rdesktop 1.6, but after a few seconds the connection is dropped and I get a message of and internal licensing error. I think rdesktop 1.6 uses rdp 5.x, and WIndows server 2008 uses rdp 6, but there must be some way to get a linux terminal server client to connect to Windows Server 2008.
I was trying to connect to Windows server from 11.04 I knew the connection worked from a Windows 7 PC
terminal services client (rdp or rdpv5)An error has occurred Details: recv: ~Connection reset by peer
Fix I'd forgotten about the Windows server security. Control Panel, System & Security, System Remote Settings, Remote Desktop has 3 radio buttons. I changed from most secure to medium security.
I have too many problems to join my OpenSuSE 11.2 with Samba 3.5.4 in a Windows 2008 Active directory Forest (MYDOMAIN.LOCAL). I have updated Samba to 3.5.4 after read that default 11.2 version have too many bugs. Now, when I try to join the Domain MYDOMAIN.LOCAL via yast i have only an undebuggable error "unknown error". For yast, my Suse is joined but i'm unable to authenticate, i can't see "MYDOMAIN.LOCAL" at KDM login and if i try to lookup forest i have this error:
Code: wbinfo -u Error looking up domain users but i'm able to retrive ticket via kinit Code: # kinit Administrator Password for Administrator@MYDOMAIN.LOCAL:
[Code]...
have you a samba version tested against Active Directory 2008? can you link me the repository or help me to solve this?
I am trying to mount a shared drive on a Windows Server 2008 machine using a Linux machine (Fedora 13). I try mounting by
# mount //HOSTNAME/SHARENAME /mnt/FOLDER
and I get mount error(13): Permission denied.
I have tried other options like # mount -t nfs //HOSTNAME/SHARENAME /mnt/FOLDER -o username=USERNAME and the same thing with different filesystem types (ntfs, smbfs, cifs).
I have:
checked all firewall configurations. verified security/sharing settings for the drive verified registry keys under HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesNfsSvrParameters verified NFS server is running
I am familiar with Windows Server 2008 but I have never configured a system from scratch on my own. The computer I'm using used to have Windows 7 for sharing folders to a Linux server. I have just switched to Server 2008 and have not been able to mount anymore.
One thing that I think is that I tried setting up an identity mapping solution; however, I do not have a domain controller setup. I am still functioning on a workgroup.
I want to dual boot Windows Server 2008 r2 and Ubuntu 10.10 . First, I installed Server 2008 r2 then Ubuntu. After the installation, Grub only found Ubuntu, and "Windows Recovery Enviroment (loader)" on dev/sda1. The Windows OS is installed on dev/sda2. When i load "Windows Recovery Enviroment (loader)" it does a chdsk, then reboot the PC.
How can i make grub find the Windows OS?
Edit: The partition on dev/sda1 is called System Reserved
I am having issues mounting a share on a Windows 2008 Server from all of our Redhat 4 machines. I am trying to back up files before wiping and upgrading them to 5. I will try and post as much information that I gathered after trying different things. I am a newer hire for this network and a Linux newbie.
The scenario is this:
1. Windows 2008 Active Directory. 2. Redhat Enterprise 4 machines
I have root access and I tried entering at the terminal:
" smbclient -L "servername" -U "username"
get the "password" prompt I enter my password and get:
I check event viewer on the 2008 box and last week was seeing:
Event ID: 4625 Keywords: Audit Failure etc, etc "Account for which Logon failed: Security ID: NULL SID Account name: anonymous Account Domain:MYGROUP Failure Information: Failure Reason: Uknown user name or bad password etc, etc
Now the last couple of days the audit failures have not shown up on the 2008 Server box even though I attempted to log in.
The end users used to just use Konquerer smb://"servername"/"share" and it worked but for some reason starting last week this no longer works. Nothing was changed that I know of, this network is in a sealed classified environment with no external access. All additions to the network are monitored and no unapproved software is installed. The lab is in a vault type environment and only a few people know the combination and alarm pass codes so no chance of somebody adding stuff without me knowing it.
I would think with the locked out message it was an issue with my user account but that works fine on the Windows side so I tried my Linux credentials with no success when trying to mount the directory.
Is there something anybody can suggest Linux or Windows side to check? No user accounts work connecting to the Windows share.
p.s. I am aware the above command is only to see the Windows shares but i get the same thing when I just try and mount using CIFS or SMBFS.
I am useing open suse 11.2 dual boot with windows server 2008. Could anybody give some suggestion do I need to upgrade to open suse 11.3. And How I can deal with that and keep my windows.
I have Windows 2008R2 Server acting as Domain Controller for Windows7/XP clients. and CentOS 5.3 Installed configured as Samba Server, I want to make it as ADS member server so any user to login to any machine, and be able to access their Samba share.
Will there be any issues installing and then subsequently running a Microsoft Windows Server 2008 R2 installation on a VirtualBox VM on a Linux host (Ubuntu 11.04 64-bit)? I require Windows Server 2008 R2 for a course I'm taking, and I dont have any systems to install/deploy it onto.
Host Machine Specs:
Ubuntu 11.04 64-bit 4GB RAM 350GB Disk Space Nvidia Quadro system
Using the following command, I can access a windows 2008 server: rdesktop -u myusername -d mydomain -p - -fP -r sound:local -r disk:myhome=/home/myhome serveraddress
connection works fine, and to start with I can see my local disk "\tsclientmyhome" and navigate around + open files. If I try to delete a file or rename a folder, I get an Error 0x8007048F:The device is not connected.
After this, I can no longer access the local disk. It says: "\tsclientmyhome is not accessible. You might not have permission to use this network resource. Contact the administrator of this server to find out if you have access permissions. Attempt to access invalid address." As I understand it, I should be contacting myself about permissions... Can anyone tell me what I need to do on my local ubuntu machine to fix this?
I was getting ubuntu grub menu, and i was able to login to windows xp, windows server 2008 and ubuntu 10.10. Recently there was some problem with windows server 2008 and i had to reinstall it, once i did that i lost my grub menu. now i am getting plain windows menu with option of login into windows xp and windows 2008. So how can i restore the grub menu, so that i can login into all the three os from one point.
Just installed openldap server on a VM CentOS called 'ldapsrv', it works fine, ldapsearch returns all ldap information.
Installed openldap client on another VM CentOS called 'ldapclient1', configured it with most basic configuration, no ssl/tls etc. but ldapsearch returns error:
we have a weird problem with our opensuse 11.2 server installation.
We want to set up a LDAP Server using the Yast-LDAP Server configuriation tool.
This indeed already worked weeks ago until....this week. Maybe some updates??!
I do not know what happend exactly. The server just does not want to start again and throws following error:
Starting ldap-serverstartproc: exit status of parent of /usr/lib/openldap/slapd: 1 failed
This happend after a little check of the configuration, but without a change, with Yast. Google delivered only "reinstall your box"-answers.
So.. i did that. And now the "mystical" part: The SAME ERROR occurs with a fresh vanilla system with a brand new and simple configuration (certificats, database, pw...the first Yast config dialog...). I did not change the way i set it up.
I remember, when i did this the first time with 11.2 on that machine, when no problems occured...everything was running out of the box (except the "use commen server certificate" option...).
right now, my machine runs ubuntu 10.10 due to work issue, i need to use windows server 2008 R2 (its a windows exclusive company) but i never used any of the active directory or anything from the windows server (only experience with windows is visual studio and those GAMES!), so i figure i need to practice a bit on my own b4 starting the job and just at the same time I found out as a univ student i get it for free! And plus, I am finding opensuse a better option for me than ubuntu So im wondering what i should do regarding these 2 systems here s some option
1). Install openSuse 11.4, and install VirtualBox and use windows server 2008 R2 on vbox 2). Install windows server 2008 R2 and then install openSuse alongside with it 3). Install windows server 2008 R2 and install openSuse in virtualBox
I have been using linux as my primary OS for more than a year now and I rlly need it for both school and my own entertainment. So wondering which option would best work out for me
wat are your opinions? PS: my machine is about 2 years ago a Dell laptop, with core 2 duo p8700 (2.53ghz) 4GB ram, and nvidia gfx, which even tho is still fast, but isnt rlly that snappy when it comes to virtualization even running xp in a virtual machine is quite laggy at times :S
I installed Slackware 13.1 and Windows server 2008, I also installed LILO in MBR, I Found I can boot into slackware, but can't boot into Server 2008. then I use command bootsect/fixmbr. now I can boot into server 2008, but the problem is I can't boot into slackware. I try to install lilo to supper sector. it's not works. I only can boot my slackware by a USB stick.who can help me to solve this problem? I really need these two systems.
I have LDAP server, it is configured and all is very well, I use it to make some authentication for our Servers and routers. Also I integrates LDAP with Radius and all is work, so LDAP is powerful to the company. Last week my manager ask me to try making these authentication for all of Company computers which is windows. So, can I use LDAP, or Active Directory? I wish to use LDAP.
i have configured ldapserver on rhel4 for creating address book
following are configuration files on ldap server /etc/openldap/slapd.conf include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/nis.schema
i am able to import this ldif file into database.also when i perform the ldapsearch on this server with command"ldapsearch �x �W �D �cn=manager, dc=example, dc =com� �b �dc=example, dc=com�" i get correct output.
but when i am trying to search from another client machine, i am getting "error ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)"
also when i configured address book on mozilla on server., it is working fine.but not working on another machine.is any configuration is missing on client machine.both ldap server and client are configured on rhel4es without any firewall or selinux.
I am using RackMonkey to map out my lab. Unfortunately, due to RM limitations, every user who accesses the site has write access UNLESS they are logged in as a user named "guest". I currently have Apache allowing only the users (sysadmins) in an LDAP group access to RM, but I would like to allow read-only access for other users as well.I found mod_authn_anon, but I am having trouble combining the two authentication methods. I am using Apache 2.2.18 (compiled myself) on SLES 11.1.
This is the common part:
Code:
AuthType Basic AuthBasicProvider ldap anon Order allow,deny Allow from all
This part by itself works for the LDAP authentication:
Anonymous guest Anonymous_VerifyEmail Off Anonymous_MustGiveEmail Off Anonymous_LogEmail on Require valid-user
But if I have both of the previous blocks enabled at once, then guest access does not work. If I throw in a "Satisfy any", then I am not prompted for a username at all. How can I allow access to this LDAP group and to a user named "guest", but not allow all valid LDAP users to log in?
I'm trying to set up a Linux server and I am new to this. I have gone through most of the configuration using SAMBA 3.0 and when I populate the ldap directory all I get this error before the password request:
Then when I perform an ldapsearch to see if the directory is populated I get this message:
I'm checking with a sniffer and there's activity going on between the client and the LDAP server... as a matter of fact, the sniffer shows that the search is producing one ldap item, however, php says it can't contact the ldap server (after it has bound and everything):
The script is working beautifully on another host with debian.
I am looking for ideas for getting windows users into an ldap server. I am currently running a Linux server for my department and need to create an LDAP server which mirrors the username/password information for all of us as they are stored in the windows server here. I have the openldap server up and running on Ubuntu 8.04 and it works great; I now need to find some way to import user info into this from windows. I've seen discussions of using ldifde.exe to export the AD users into an ldif file. Is this the simplest way to go about it?
Our Linux server is currently providing us with much needed services using apache, and apache is authenticating using LDAP to our windows server (Using our windows username / password is required functionality). This windows server has some problem which causes it to delay for inordinate amounts of time between authentication requests and responses. The situation is such that this problem will not be addressed by IT staff. However, I have control over the Linux server so I am looking to just mirror the windows server on an LDAP server of my own. I could get away with updating the passwords in the Linux server.
In the past I found some great help on this forum, so here goes. Bare with me because it's a long story. I'll try to be as complete as possible. I've installed and configured OpenLdap on a virtual machine with ip 192.168.39.134. I've added 2 users via LAM. In the ou WikiUsers and the domain is wiki.local.
I've then created another host with ip 192.168.39.133 with mediawiki installed on it. Then I added the extension LDAPAuthenthication. In the LdapAuthentication file I added this code (only the last paragraph is mine, I added the others to show it's location in the script):
I know I'm close because I can't register any new users or accounts on the mediawiki site. Although I could before I added the LDAP service. This is indeed all just to test and get to know how LDAP works. That's why it's all virtual in VMWare. I did not really configure anything on the LDAP, i just installed it and chose a domain (wiki.local).
