Hi,
I tried, our samba 4.14 server to add AD, but not able to, showed below ...

file01:/ # net ads join -U sadomjoin
ADS support not compiled in
file01:/ #

I am able to do kinit fine, with password.
file01:/ # kinit sadomjoin@HDMC.HARLEY-DAVIDSON.COM
Password for sadomjoin@HDMC.HARLEY-DAVIDSON.COM:
file01:/ #

below are our smb.conf
[global]
security = ADS
workgroup = HDMC
realm = HDMC.HARLEY-DAVIDSON.COM
log file = /var/log/samba/samba.log
log level = 3
dos filemode = yes


passdb backend = tdbsam:/var/lib/samba/private/passdb.tdb


template shell = /bin/bash
template homedir = /home/%U

socket options = TCP_NODELAY SO_KEEPALIVE TCP_KEEPIDLE=240 TCP_KEEPCNT=4 TCP_KEEPINTVL=15


idmap config * : backend = tdb
idmap config * : range = 3000-7999


idmap config HDMC : backend = rid



idmap config HDMC : range = 10000-9999999

idmap config HDMC : unix_nss_info = yes

idmap config HDMC : unix_primary_group = yes


winbind use default domain = Yes

winbind refresh tickets = Yes


map acl inherit = yes



[BODS]
path = /usr/sap/interfacesHCM/BODS
valid user = "@HDMC\GRP-HDMC-HDAQFILE01-BODS-RW"
read only = no
vfs objects = aixacl2

.... .... ....

Any idea how to resolve this?


Thanks,

------------------------------
Harley AIX
------------------------------

See this and last years's tutorial from SambaXP conference on exactly your issues:

https://www.youtube.com/watch?v=FwQpcnb-jTs
https://www.youtube.com/watch?v=JevcJ1_vbf0

Cheers

------------------------------
--
Samba Support: https://samba.plus
SAMBA+ for AIX: https://samba.plus/samba-aix
phone: +49-551-370000-0
mailto:samba@sernet.de
------------------------------

Original Message:
Sent: Wed September 21, 2022 02:00 PM
From: Harley AIX
Subject: samba server not able to join AD

Hi,
I tried, our samba 4.14 server to add AD, but not able to, showed below ...

file01:/ # net ads join -U sadomjoin
ADS support not compiled in
file01:/ #

I am able to do kinit fine, with password.
file01:/ # kinit sadomjoin@HDMC.HARLEY-DAVIDSON.COM
Password for sadomjoin@HDMC.HARLEY-DAVIDSON.COM:
file01:/ #

below are our smb.conf
[global]
security = ADS
workgroup = HDMC
realm = HDMC.HARLEY-DAVIDSON.COM
log file = /var/log/samba/samba.log
log level = 3
dos filemode = yes


passdb backend = tdbsam:/var/lib/samba/private/passdb.tdb


template shell = /bin/bash
template homedir = /home/%U

socket options = TCP_NODELAY SO_KEEPALIVE TCP_KEEPIDLE=240 TCP_KEEPCNT=4 TCP_KEEPINTVL=15


idmap config * : backend = tdb
idmap config * : range = 3000-7999


idmap config HDMC : backend = rid



idmap config HDMC : range = 10000-9999999

idmap config HDMC : unix_nss_info = yes

idmap config HDMC : unix_primary_group = yes


winbind use default domain = Yes

winbind refresh tickets = Yes


map acl inherit = yes



[BODS]
path = /usr/sap/interfacesHCM/BODS
valid user = "@HDMC\GRP-HDMC-HDAQFILE01-BODS-RW"
read only = no
vfs objects = aixacl2

.... .... ....

Any idea how to resolve this?


Thanks,

------------------------------
Harley AIX
------------------------------

Hi,
I stopped all samba process, then removed all old samba conf file, removed all new samba rpm packages, then re-installed all new samba rpm packages.
Then did the conf again for new samba rpm. and this time my samba server join AD fine.
Thanks for all your assistance.

------------------------------
Harley AIX
------------------------------

Original Message:
Sent: Thu September 22, 2022 04:25 AM
From: Samba Support SerNet
Subject: samba server not able to join AD

See this and last years's tutorial from SambaXP conference on exactly your issues:

https://www.youtube.com/watch?v=FwQpcnb-jTs
https://www.youtube.com/watch?v=JevcJ1_vbf0

Cheers

------------------------------
--
Samba Support: https://samba.plus
SAMBA+ for AIX: https://samba.plus/samba-aix
phone: +49-551-370000-0
mailto:samba@sernet.de

Original Message:
Sent: Wed September 21, 2022 02:00 PM
From: Harley AIX
Subject: samba server not able to join AD

Hi,
I tried, our samba 4.14 server to add AD, but not able to, showed below ...

file01:/ # net ads join -U sadomjoin
ADS support not compiled in
file01:/ #

I am able to do kinit fine, with password.
file01:/ # kinit sadomjoin@HDMC.HARLEY-DAVIDSON.COM
Password for sadomjoin@HDMC.HARLEY-DAVIDSON.COM:
file01:/ #

below are our smb.conf
[global]
security = ADS
workgroup = HDMC
realm = HDMC.HARLEY-DAVIDSON.COM
log file = /var/log/samba/samba.log
log level = 3
dos filemode = yes


passdb backend = tdbsam:/var/lib/samba/private/passdb.tdb


template shell = /bin/bash
template homedir = /home/%U

socket options = TCP_NODELAY SO_KEEPALIVE TCP_KEEPIDLE=240 TCP_KEEPCNT=4 TCP_KEEPINTVL=15


idmap config * : backend = tdb
idmap config * : range = 3000-7999


idmap config HDMC : backend = rid



idmap config HDMC : range = 10000-9999999

idmap config HDMC : unix_nss_info = yes

idmap config HDMC : unix_primary_group = yes


winbind use default domain = Yes

winbind refresh tickets = Yes


map acl inherit = yes



[BODS]
path = /usr/sap/interfacesHCM/BODS
valid user = "@HDMC\GRP-HDMC-HDAQFILE01-BODS-RW"
read only = no
vfs objects = aixacl2

.... .... ....

Any idea how to resolve this?


Thanks,

------------------------------
Harley AIX
------------------------------