Alterar estado do servidor para ROLE_DOMAIN_MEMBER
1. Alterar estado do servidor para ROLE_DOMAIN_MEMBER
removido
(usa Nenhuma)
Enviado em 07/01/2013 - 11:11h
Pessoal,Tenho um servidor de impressão que não está entrando no domínio (net ads join). Alguma coisa está errada no meu smb.conf que o servidor está com o status ROLE_STANDALONE:
#################################################################################################
root@impserver# testparm
Load smb config files from /etc/samba/smb.conf
Processing section "[PDFs]"
NOTE: Service PDFs is flagged unavailable.
Processing section "[Meus PDFs]"
Processing section "[Gerador de PDFs]"
Global parameter keepalive found in service section!
Global parameter load printers found in service section!
Global parameter local master found in service section!
Global parameter log file found in service section!
Global parameter log level found in service section!
Global parameter lpq cache time found in service section!
Global parameter map to guest found in service section!
Global parameter guest account found in service section!
Global parameter max log size found in service section!
Global parameter name resolve order found in service section!
Global parameter netbios aliases found in service section!
Global parameter password server found in service section!
Global parameter preferred master found in service section!
Global parameter printcap cache time found in service section!
Global parameter printcap name found in service section!
Global parameter realm found in service section!
Global parameter remote announce found in service section!
Global parameter remote browse sync found in service section!
Global parameter security found in service section!
Global parameter server string found in service section!
Global parameter socket options found in service section!
Global parameter Syslog found in service section!
Global parameter template shell found in service section!
Global parameter template homedir found in service section!
Global parameter unix charset found in service section!
Global parameter winbind enum users found in service section!
Global parameter winbind enum groups found in service section!
Global parameter winbind cache time found in service section!
Global parameter winbind max clients found in service section!
Global parameter winbind offline logon found in service section!
Global parameter winbind refresh tickets found in service section!
Global parameter winbind separator found in service section!
Global parameter winbind use default domain found in service section!
Global parameter wins proxy found in service section!
Global parameter wins server found in service section!
Global parameter workgroup found in service section!
NOTE: Service Gerador de PDFs is flagged unavailable.
Processing section "[printers]"
Processing section "[print$]"
Processing section "[private$]"az.
Processing section "[logs$]"
Loaded services file OK.
Server role: ROLE_STANDALONE <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
Press enter to see a dump of your service definitions
#################################################################################################
Segue meu smb.conf:
#################################################################################################
[global]
admin users = @Printers_Admin
client schannel = No
cups options = raw
deadtime = 5
domain master = No
dns proxy = No
force printername = Yes
idmap config DOMINIO:backend = rid
idmap config DOMINIO:range = 10000-2000000
idmap gid = 10000-1000000
idmap uid = 10000-1000000
include = /etc/samba/smb-pdfs.conf
keepalive = 30
load printers = Yes
local master = No
log file = /var/log/samba/%m.log
log level = 1
lpq cache time = 15
map to guest = bad user
guest account = guest
max log size = 1024
name resolve order = wins lmhosts bcast host
netbios aliases = IMPRESSAO
password server = meudc meudc01 *
preferred master = No
printcap cache time = 300
printcap name = /etc/printcap
printing = cups
queuepause command = /usr/sbin/cupsdisable %p
queueresume command = /usr/sbin/cupsenable %p
realm = DOMINIO.BIZ
remote announce = *
remote browse sync = *
security = ads
server string = IMPSERVER, Servidor Linux de Impressao
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 SO_REUSEADDR=1
Syslog = -1
template shell = /bin/false
template homedir = /home/%D/%u
unix charset = ISO8859-15
winbind enum users = No
winbind enum groups = No
winbind cache time = 3600
winbind max clients = 500
winbind offline logon = Yes
winbind refresh tickets = Yes
winbind separator = +
winbind use default domain = No
wins proxy = Yes
wins server = 10.10.10.10 172.172.172.172
workgroup = DOMINIO
[printers]
comment = All Printers
browseable = No
invalid users = nobody
path = /var/spool/samba
printable = Yes
[print$]
comment = Printer Drivers
create mask = 0777
directory mask = 0777
force directory mode = 0777
guest ok = Yes
invalid users = nobody
path = /etc/samba/drivers/
read only = Yes
write list = @admin_server , root , @Printers_Admin
[private$]
comment = Private Share
create mask = 0775
map system = Yes
path = /usr/share/printconf/scripts
valid users = @Printers_Admin
write list = @Printers_Admin
[logs$]
path = /usr/share/printconf/logMap
writable = Yes
create mask = 0777
#################################################################################################
Nos outros servidores o server role está como "ROLE_DOMAIN_MEMBER". Outra coisa, não estou conseguindo colocar a máquina no domínio, dá esse erro:
---------------------
root@impserver# net ads testjoin
[2013/01/07 09:52:31.665090, 0] utils/net_ads.c:285(ads_startup_int)
ads_connect: No logon servers
Join to domain is not valid: No logon servers
---------------------
A mesma saída acontece com o "net ads join".
Meu krb5.conf:
#################################################################################################
[logging]
kdc = FILE:/var/log/krb5kdc.log
default = FILE:/var/log/krb5libs.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
default_realm = DOMINIO.BIZ
dns_lookup_realm = true
dns_lookup_kdc = true
ticket_lifetime = 24h
forwardable = yes
default_tkt_enctypes = rc4-hmac des-cbc-md5 des-cbc-crc
default_tgs_enctypes = rc4-hmac des-cbc-md5 des-cbc-crc
[realms]
DOMINIO.BIZ = {
kdc = meudc.dominio.biz:88
admin_server = meudc.dominio.biz
default_domain = dominio.biz
kdc = *
}
[domain_realm]
.dominio.biz = DOMINIO.BIZ
dominio.biz = DOMINIO.BIZ
[kdc]
profile = /var/kerberos/krb5kdc/kdc.conf
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
#################################################################################################
Fico grato quem puder dar uma força. Abraço.
Patrocínio
Site hospedado pelo provedor RedeHost.
Destaques
Atenção a quem posta conteúdo de dicas, scripts e tal (6)
Artigos
Configuração para desligamento automatizado de Computadores em um Ambiente Comercial
O mínimo que você precisa saber sobre o terminal (parte 2)
O mínimo que você precisa saber sobre o terminal (parte 1)
Como iniciar uma máquina virtual do VirtualBox automaticamente no boot do LUbuntu 18 LTS
Dicas
Como deixar as abas do Firefox mais fininhas
Mudar o gerenciador de login (GDM para SDDM)
"Tentando" fazer com que programas rodem no Wayland e no X11
Tópicos
Erro ao iniciar Ubuntu 24.04.1 LTS - Management Owner Key - MoK (2)
Notebook instalado com Linux Debian de fábrica dando problema (3)
Top 10 do mês
-
Xerxes
1° lugar - 66.760 pts -
Fábio Berbert de Paula
2° lugar - 43.150 pts -
Clodoaldo Santos
3° lugar - 31.395 pts -
Sidnei Serra
4° lugar - 19.588 pts -
Buckminster
5° lugar - 16.752 pts -
Mauricio Ferrari
6° lugar - 13.615 pts -
Daniel Lara Souza
7° lugar - 12.552 pts -
Diego Mendes Rodrigues
8° lugar - 12.350 pts -
Alberto Federman Neto.
9° lugar - 11.439 pts -
edps
10° lugar - 9.631 pts
Scripts
A maior comunidade GNU/Linux da América Latina! Artigos, dicas, tutoriais, fórum, scripts e muito mais. Ideal para quem busca auto-ajuda.
Site hospedado por:
