Hello everybody, i'm just setting up a samba server as pdc with ldap backend. everything but netbios works fine. The system is called aadmt00 and is a pdc (virtual) and is bound to the ip 192.168.53.180 hgest3201:~ # ip addr list 1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 brd 127.255.255.255 scope host lo inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: bond0: <BROADCAST,MULTICAST,MASTER,UP> mtu 1500 qdisc noqueue link/ether 00:c0:9f:56:f5:bf brd ff:ff:ff:ff:ff:ff inet 192.168.53.44/24 brd 192.168.53.255 scope global bond0 inet 192.168.53.180/24 brd 192.168.53.255 scope global secondary bond0 inet6 fe80::2c0:9fff:fe56:f5bf/64 scope link tentative valid_lft forever preferred_lft forever 3: eth0: <BROADCAST,MULTICAST,SLAVE,UP> mtu 1500 qdisc pfifo_fast master bond0 qlen 1000 link/ether 00:c0:9f:56:f5:bf brd ff:ff:ff:ff:ff:ff inet 192.168.53.44/24 brd 192.168.53.255 scope global eth0 inet6 fe80::2c0:9fff:fe56:f5bf/64 scope link valid_lft forever preferred_lft forever 4: eth1: <BROADCAST,MULTICAST,NOARP,SLAVE,UP> mtu 1500 qdisc pfifo_fast master bond0 qlen 1000 link/ether 00:c0:9f:56:f5:bf brd ff:ff:ff:ff:ff:ff inet 192.168.53.44/24 brd 192.168.53.255 scope global eth1 inet6 fe80::2c0:9fff:fe56:f5bf/64 scope link valid_lft forever preferred_lft forever 5: sit0: <NOARP> mtu 1480 qdisc noqueue link/sit 0.0.0.0 brd 0.0.0.0 Here's the smb.conf (testparm -s /samba/aadmt00/conf/etc/smb.conf) hgest3201:~ # testparm -s /samba/aadmt00/conf/etc/smb.conf Load smb config files from /samba/aadmt00/conf/etc/smb.conf Processing section "[netlogon]" Loaded services file OK. # Global parameters [global] unix charset = UTF8 workgroup = TOPTEST netbios name = AADMT00 server string = Backoffice Testsystem PDC interfaces = 192.168.53.180, 127.0.0.1 bind interfaces only = Yes smb passwd file = /samba/aadmt00/conf/private/smbpasswd private dir = /samba/aadmt00/conf/private passdb backend = ldapsam:ldap://hgest3201.dom.test, ldapsam:ldap://hgest3202.dom.test enable privileges = Yes passwd program = /opt/IDEALX/sbin/smbldap-passwd -o %u passwd chat = *New*password* %n\n *new*password* %n\n *successfully* username map = /samba/aadmt00/conf/private/smbusers unix password sync = Yes log level = 8 syslog = 0 log file = /samba/aadmt00/conf/log/%m.log max log size = 4096 smb ports = 139 445 name resolve order = wins lmhosts host bcast printcap name = CUPS show add printer wizard = No add user script = /opt/IDEALX/sbin/smbldap-useradd -a "%u" delete user script = /opt/IDEALX/sbin/smbldap-userdel "%u" add group script = /opt/IDEALX/sbin/smbldap-groupadd -p "%g" add user to group script = /opt/IDEALX/sbin/smbldap-groupmod -m "%u" "% g" delete user from group script = /opt/IDEALX/sbin/smbldap-groupmod -x "% u" "%g" set primary group script = /opt/IDEALX/sbin/smbldap-usermod -g '%g' '%u' add machine script = /opt/IDEALX/sbin/smbldap-useradd -t 5 -w "%u" -g 515 domain logons = Yes os level = 255 preferred master = Yes domain master = Yes wins support = Yes ldap admin dn = cn=Samba Server,cn=Samba,cn=Applications,o=dom ldap group suffix = ou=Groups ldap idmap suffix = ou=Idmaps ldap machine suffix = ou=Computers ldap passwd sync = Yes ldap replication sleep = 5000 ldap suffix = ou=TOPTEST,o=dom ldap timeout = 5 ldap user suffix = ou=Users lock directory = /samba/aadmt00/conf/locks pid directory = /samba/aadmt00/conf/pids utmp directory = /samba/aadmt00/conf/utmp wtmp directory = /samba/aadmt00/conf/wtmp socket address = 192.168.53.180 idmap backend = ldap:ldap://hgest3201.dom.test, ldap:ldap://hgest3202.dom.test idmap uid = 10000-20000 idmap gid = 10000-20000 template homedir = /samba/aadmt00/data/tmp/winbindjail winbind enum users = No winbind enum groups = No ldapsam:trusted = yes map acl inherit = Yes include = /samba/aadmt00/conf/etc/smb.conf.shares [netlogon] comment = netlogon share path = /samba/aadmt00/data/netlogon read only = No The following processes are running: domaina 3539 1 0 Jul06 ? 00:00:00 /sbin/startpar -f -- /etc/init.d/rc5.d/S08adaptec-smbe domaina 2461 1 0 13:19 ? 00:00:00 /usr/sbin/nmbd -D - s /samba/aadmt00/conf/etc/smb.conf -l /samba/aadmt00/conf/log domaina 2463 2461 0 13:19 ? 00:00:00 /usr/sbin/nmbd -D - s /samba/aadmt00/conf/etc/smb.conf -l /samba/aadmt00/conf/log domaina 2468 1 0 13:19 ? 00:00:00 /usr/sbin/smbd -D - s /samba/aadmt00/conf/etc/smb.conf -l /samba/aadmt00/conf/log domaina 2470 2468 0 13:19 ? 00:00:00 /usr/sbin/smbd -D - s /samba/aadmt00/conf/etc/smb.conf -l /samba/aadmt00/conf/log domaina 2474 1 0 13:19 ? 00:00:00 /usr/sbin/winbindd -B - s /samba/aadmt00/conf/etc/smb.conf -l /samba/aadmt00/conf/log domaina 2476 2474 0 13:19 ? 00:00:00 /usr/sbin/winbindd -B - s /samba/aadmt00/conf/etc/smb.conf -l /samba/aadmt00/conf/log domaina 2480 2468 0 13:19 ? 00:00:00 /usr/sbin/smbd -D - s /samba/aadmt00/conf/etc/smb.conf -l /samba/aadmt00/conf/log nmbd is DMB an LMB: become_domain_master_browser_wins: querying WINS server from IP 127.0.0.1 for domain master browser name TOPTEST<1b> on workgroup TOPTEST Our address (192.168.53.180) returned in query for name TOPTEST<1b> (domain master browser name) on subnet UNICAST_SUBNET. become_domain_master_stage1: Becoming domain master browser for workgroup TOPTEST on subnet UNICAST_SUBNET Samba server AADMT00 is now a domain master browser for workgroup TOPTEST on subnet UNICAST_SUBNET Attempting to become domain master browser on workgroup TOPTEST on subnet 192.168.53.180 become_domain_master_browser_bcast: querying subnet 192.168.53.180 for domain master browser on workgroup TOPTEST become_domain_master_stage1: Becoming domain master browser for workgroup TOPTEST on subnet 192.168.53.180 Samba server AADMT00 is now a domain master browser for workgroup TOPTEST on subnet 192.168.53.180 Samba name server AADMT00 is now a local master browser for workgroup TOPTEST on subnet 192.168.53.180 We are both a domain and a local master browser for workgroup TOPTEST. Do not announce to ourselves. Initiating sync with domain master browser AADMT00<20> at IP 192.168.53.180 for workgroup TOPTEST but it doesn't register itself as DMB. Here's the wins.dat: (#1d is missing..!!!) hgest3201:~ # cat /samba/aadmt00/conf/locks/wins.dat VERSION 1 0 "AADMT00#00" 1121426327 192.168.53.180 66R "AADMT00#03" 1121426327 192.168.53.180 66R "AADMT00#20" 1121426327 192.168.53.180 66R "AGEST001#00" 1121425649 192.168.84.73 64R "AGEST001#03" 1121425649 192.168.84.73 64R "AGEST001#20" 1121425649 192.168.84.73 64R "TOPTEST#00" 1121426327 255.255.255.255 e4R "TOPTEST#1b" 1121426327 192.168.53.180 64R "TOPTEST#1c" 1121426327 192.168.53.180 e4R "TOPTEST#1e" 1121426327 255.255.255.255 e4R I found these strange logentries in log.nmbd dump_workgroups() dump workgroup on subnet 192.168.53.180: netmask= 255.255.255.0: SZ_GESIS(4) current master browser = HGESSP33 SZ-STAHL(3) current master browser = ASFGWAVA HD(2) current master browser = AADM306 TOPTEST(1) current master browser = AADMT00 AADMT00 400c9b0b (Backoffice Testsystem PDC) [2005/07/12 13:09:14, 4] nmbd/nmbd_workgroupdb.c:dump_workgroups(284) dump_workgroups() dump workgroup on subnet UNICAST_SUBNET: netmask= 127.0.0.1: SZ_GESIS(4) current master browser = HGESSP39 TOPTEST(1) current master browser = UNKNOWN AADMT00 40099b0b (Backoffice Testsystem PDC) AGEST001 59b03 (Backoffice Testsystem dfsroot server) AGEST002 9b03 (Backoffice Testsystem Homedir Server) AGEST003 9b03 (Backoffice Testsystem Profiles Server) AGEST004 9b03 (Backoffice Testsystem File Server) On interface 127.0.0.1 the domain ist correctly listed, but not on 192.168.53.180? Why. Here's an smbclient excerpt: hgest3201:~ # smbclient -d0 -L aadmt00 -N Anonymous login successful Domain=[TOPTEST] OS=[Unix] Server=[Samba 3.0.14a-SerNet-SuSE] Sharename Type Comment --------- ---- ------- netlogon Disk netlogon share IPC$ IPC IPC Service (Backoffice Testsystem PDC) ADMIN$ IPC IPC Service (Backoffice Testsystem PDC) Anonymous login successful Domain=[TOPTEST] OS=[Unix] Server=[Samba 3.0.14a-SerNet-SuSE] Server Comment --------- ------- Workgroup Master --------- ------- Binding the system to the local ip doesn't change anything. I'm working on this issue for 4 days now, but nothing helps. I need really really help, cause browsing the domain doesn't work at all (net view).
<0x1d> is for the local master browser. The LMB is not registered with WINS IIRC. The <0x1b> record is for the DMB which is in your WINS database. Try connecting with smbclient as a real user to get the list of servers in the workgroup back. There's an open bug regarding this. And try $ nmblookup -B 192.168.53.255 -M TOPTEST to locate the local master browser for your segment.
Hi, nmblookup did not work. Here´s the output: nmblookup -s /samba/aadmt00/conf/etc/smb.conf -B 192.168.53.255 -M TOPTEST INFO: Current debug levels: all: True/8 tdb: False/0 printdrivers: False/0 lanman: False/0 smb: False/0 rpc_parse: False/0 rpc_srv: False/0 rpc_cli: False/0 passdb: False/0 sam: False/0 auth: False/0 winbind: False/0 vfs: False/0 idmap: False/0 quota: False/0 acls: False/0 doing parameter syslog = 0 doing parameter max log size = 4096 doing parameter smb ports = 139 445 doing parameter name resolve order = wins lmhosts host bcast doing parameter printcap name = CUPS doing parameter show add printer wizard = no doing parameter idmap uid = 10000-20000 doing parameter idmap gid = 10000-20000 doing parameter winbind enum users = No doing parameter winbind enum groups = No doing parameter map acl inherit = Yes doing parameter unix password sync = yes doing parameter include = /samba/aadmt00/conf/etc/smb.conf.aadmt00 params.c:pm_process() - Processing configuration file "/samba/aadmt00/conf/etc/smb.conf.aadmt00" doing parameter private dir = /samba/aadmt00/conf/private doing parameter pid directory = /samba/aadmt00/conf/pids doing parameter template homedir = /samba/aadmt00/data/tmp/winbindjail doing parameter wtmp directory = /samba/aadmt00/conf/wtmp doing parameter lock directory = /samba/aadmt00/conf/locks doing parameter username map = /samba/aadmt00/conf/private/smbusers doing parameter utmp directory = /samba/aadmt00/conf/utmp doing parameter smb passwd file = /samba/aadmt00/conf/private/smbpasswd doing parameter log file = /samba/aadmt00/conf/log/%m.log doing parameter workgroup = TOPTEST doing parameter netbios name = AADMT00 handle_netbios_name: set global_myname to: AADMT00 doing parameter server string = Backoffice Testsystem PDC doing parameter interfaces = 192.168.53.180 127.0.0.1 doing parameter socket address = 192.168.53.180 doing parameter bind interfaces only = yes doing parameter add user script = /opt/IDEALX/sbin/smbldap-useradd -a "%u" doing parameter delete user script = /opt/IDEALX/sbin/smbldap-userdel "%u" doing parameter add group script = /opt/IDEALX/sbin/smbldap-groupadd -p "%g" doing parameter add user to group script = /opt/IDEALX/sbin/smbldap-groupmod - m "%u" "%g" doing parameter delete user from group script = /opt/IDEALX/sbin/smbldap- groupmod -x "%u" "%g" doing parameter set primary group script = /opt/IDEALX/sbin/smbldap-usermod - g '%g' '%u' doing parameter add machine script = /opt/IDEALX/sbin/smbldap-useradd -t 5 -w "% u" -g 515 doing parameter passwd program = /opt/IDEALX/sbin/smbldap-passwd -o %u doing parameter domain logons = yes doing parameter os level = 255 doing parameter domain master = yes doing parameter preferred master = yes doing parameter local master = yes doing parameter security = user doing parameter passwd chat = *New*password* %n\n *new*password* %n\n *successfully* doing parameter wins support = yes doing parameter include = /samba/aadmt00/conf/etc/smb.conf.ldap params.c:pm_process() - Processing configuration file "/samba/aadmt00/conf/etc/smb.conf.ldap" doing parameter ldap admin dn = cn=Samba Server, cn=Samba,cn=Applications,o=Salzgitter AG doing parameter ldap suffix = ou=TOPTEST,o=Salzgitter AG doing parameter ldap group suffix = ou=Groups doing parameter ldap idmap suffix = ou=Idmaps doing parameter ldap machine suffix = ou=Computers doing parameter ldap user suffix = ou=Users doing parameter ldap passwd sync = yes doing parameter ldap replication sleep = 5000 doing parameter ldapsam:trusted = yes doing parameter ldap timeout = 5 doing parameter passdb backend = ldapsam:ldap://hgest3201.sz.salzgitter-ag.test ldapsam:ldap://hgest3202.sz.salzgitter-ag.test doing parameter idmap backend = ldap:ldap://hgest3201.sz.salzgitter-ag.test ldap:ldap://hgest3202.sz.salzgitter-ag.test doing parameter include = /samba/aadmt00/conf/etc/smb.conf.shares params.c:pm_process() - Processing configuration file "/samba/aadmt00/conf/etc/smb.conf.shares" pm_process() returned Yes lp_servicenumber: couldn't find homes Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE added interface ip=192.168.53.180 bcast=192.168.53.255 nmask=255.255.255.0 added interface ip=127.0.0.1 bcast=127.255.255.255 nmask=255.0.0.0 socket option SO_KEEPALIVE = 0 socket option SO_REUSEADDR = 1 socket option SO_BROADCAST = 1 Could not test socket option TCP_NODELAY. socket option IPTOS_LOWDELAY = 0 socket option IPTOS_THROUGHPUT = 0 socket option SO_SNDBUF = 111616 socket option SO_RCVBUF = 111616 socket option SO_SNDLOWAT = 1 socket option SO_RCVLOWAT = 1 socket option SO_SNDTIMEO = 0 socket option SO_RCVTIMEO = 0 Socket opened. querying TOPTEST on 192.168.53.255 Sending a packet of len 50 to (192.168.53.255) on port 137 Sending a packet of len 50 to (192.168.53.255) on port 137 Sending a packet of len 50 to (192.168.53.255) on port 137 name_query failed to find name TOPTEST#1d
Is there a firewall installed on the Samba host ?
No tere is no Firewall installed on the System. In addition i tried "nmblookup -B 192.168.53.180 -M TOPTEST - s /samba/aadmt00/conf/etc/smb.conf" and got a positive response. Here is the output: nmblookup -B 192.168.53.180 -M TOPTEST -s /samba/aadmt00/conf/etc/smb.conf INFO: Current debug levels: all: True/8 tdb: False/0 printdrivers: False/0 lanman: False/0 smb: False/0 rpc_parse: False/0 rpc_srv: False/0 rpc_cli: False/0 passdb: False/0 sam: False/0 auth: False/0 winbind: False/0 vfs: False/0 idmap: False/0 quota: False/0 acls: False/0 doing parameter syslog = 0 doing parameter max log size = 4096 doing parameter smb ports = 139 445 doing parameter name resolve order = wins lmhosts host bcast doing parameter printcap name = CUPS doing parameter show add printer wizard = no doing parameter idmap uid = 10000-20000 doing parameter idmap gid = 10000-20000 doing parameter winbind enum users = No doing parameter winbind enum groups = No doing parameter map acl inherit = Yes doing parameter unix password sync = yes doing parameter include = /samba/aadmt00/conf/etc/smb.conf.aadmt00 params.c:pm_process() - Processing configuration file "/samba/aadmt00/conf/etc/smb.conf.aadmt00" doing parameter private dir = /samba/aadmt00/conf/private doing parameter pid directory = /samba/aadmt00/conf/pids doing parameter template homedir = /samba/aadmt00/data/tmp/winbindjail doing parameter wtmp directory = /samba/aadmt00/conf/wtmp doing parameter lock directory = /samba/aadmt00/conf/locks doing parameter username map = /samba/aadmt00/conf/private/smbusers doing parameter utmp directory = /samba/aadmt00/conf/utmp doing parameter smb passwd file = /samba/aadmt00/conf/private/smbpasswd doing parameter log file = /samba/aadmt00/conf/log/%m.log doing parameter workgroup = TOPTEST doing parameter netbios name = AADMT00 handle_netbios_name: set global_myname to: AADMT00 doing parameter server string = Backoffice Testsystem PDC doing parameter interfaces = 192.168.53.180 127.0.0.1 doing parameter socket address = 192.168.53.180 doing parameter bind interfaces only = yes doing parameter add user script = /opt/IDEALX/sbin/smbldap-useradd -a "%u" doing parameter delete user script = /opt/IDEALX/sbin/smbldap-userdel "%u" doing parameter add group script = /opt/IDEALX/sbin/smbldap-groupadd -p "%g" doing parameter add user to group script = /opt/IDEALX/sbin/smbldap-groupmod - m "%u" "%g" doing parameter delete user from group script = /opt/IDEALX/sbin/smbldap- groupmod -x "%u" "%g" doing parameter set primary group script = /opt/IDEALX/sbin/smbldap-usermod - g '%g' '%u' doing parameter add machine script = /opt/IDEALX/sbin/smbldap-useradd -t 5 -w "% u" -g 515 doing parameter passwd program = /opt/IDEALX/sbin/smbldap-passwd -o %u doing parameter domain logons = yes doing parameter os level = 255 doing parameter domain master = yes doing parameter preferred master = yes doing parameter local master = yes doing parameter security = user doing parameter passwd chat = *New*password* %n\n *new*password* %n\n *successfully* doing parameter wins support = yes doing parameter include = /samba/aadmt00/conf/etc/smb.conf.ldap params.c:pm_process() - Processing configuration file "/samba/aadmt00/conf/etc/smb.conf.ldap" doing parameter ldap admin dn = cn=Samba Server, cn=Samba,cn=Applications,o=Salzgitter AG doing parameter ldap suffix = ou=TOPTEST,o=Salzgitter AG doing parameter ldap group suffix = ou=Groups doing parameter ldap idmap suffix = ou=Idmaps doing parameter ldap machine suffix = ou=Computers doing parameter ldap user suffix = ou=Users doing parameter ldap passwd sync = yes doing parameter ldap replication sleep = 5000 doing parameter ldapsam:trusted = yes doing parameter ldap timeout = 5 doing parameter passdb backend = ldapsam:ldap://hgest3201.sz.salzgitter-ag.test ldapsam:ldap://hgest3202.sz.salzgitter-ag.test doing parameter idmap backend = ldap:ldap://hgest3201.sz.salzgitter-ag.test ldap:ldap://hgest3202.sz.salzgitter-ag.test doing parameter include = /samba/aadmt00/conf/etc/smb.conf.shares params.c:pm_process() - Processing configuration file "/samba/aadmt00/conf/etc/smb.conf.shares" pm_process() returned Yes lp_servicenumber: couldn't find homes Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE Substituting charset 'UTF-8' for LOCALE added interface ip=192.168.53.180 bcast=192.168.53.255 nmask=255.255.255.0 added interface ip=127.0.0.1 bcast=127.255.255.255 nmask=255.0.0.0 socket option SO_KEEPALIVE = 0 socket option SO_REUSEADDR = 1 socket option SO_BROADCAST = 1 Could not test socket option TCP_NODELAY. socket option IPTOS_LOWDELAY = 0 socket option IPTOS_THROUGHPUT = 0 socket option SO_SNDBUF = 111616 socket option SO_RCVBUF = 111616 socket option SO_SNDLOWAT = 1 socket option SO_RCVLOWAT = 1 socket option SO_SNDTIMEO = 0 socket option SO_RCVTIMEO = 0 Socket opened. querying TOPTEST on 192.168.53.180 Sending a packet of len 50 to (192.168.53.180) on port 137 Received a packet of len 62 from (192.168.53.180) port 137 nmb packet from 192.168.53.180(137) header: id=7889 opcode=Query(0) response=Yes header: flags: bcast=No rec_avail=Yes rec_des=Yes trunc=No auth=Yes header: rcode=0 qdcount=0 ancount=1 nscount=0 arcount=0 answers: nmb_name=TOPTEST<1d> rr_type=32 rr_class=1 ttl=259200 answers 0 char `...5. hex 6000C0A835B4 Got a positive name query response from 192.168.53.180 ( 192.168.53.180 ) 192.168.53.180 TOPTEST<1d>
Its working after Update
Thanks for the update.