OMV7 beta +Active Directory

    Just a bit more info... the LDAP user is also present in /etc/samba/smb.conf in the valid users = directive.


    I changed the samba log level in OMV and now I'm getting some more useful messages in the system logs.


    Code
    smbd[782573]:   check_ntlm_password:  Authentication for user [my-ldap-user] -> [my-ldap-user] FAILED with error NT_STATUS_NO_SUCH_USER, authoritative=1


    I've just read somewhere that samba uses sambaNTPassword attribute from the user's LDAP info to check for the samba password... So now I'm trying to add that and see if it works... (and if that works next step will be to somehow instruct samba to use the "normal" password or somehow keep that in sync with sambaNTPassword, so there's no need for 2 passwords...)

    One more update... The package smbldap-tools (from Debian repos) has some more valuable info on it's README.Debian.gz file about how to configure both samba and slapd in order to get them to play along with each other... The info there seems to be a bit outdated, but I think I can get the necessary info from it...


    My main worry now is that one of steps involves editing smb.conf and I'm afraid those changes will be overwritten by OMV since it controls smb.conf, but lets see how that goes...


    I'll report back my findings...

    • Official Post
    Quote from bgravato

    My main worry now is that one of steps involves editing smb.conf and I'm afraid those changes will be overwritten by OMV since it controls smb.conf, but lets see how that goes...

    The changes will be overwritten. Put the changes in the extra options box in the plugin.

    omv 8.0.6-2 synchrony | 6.17 proxmox kernel

    plugins :: omvextrasorg 8.0.2 | kvm 8.0.2 | compose 8.1.2 | cterm 8.0 | borgbackup 8.0.2 | cputemp 8.0 | mergerfs 8.0 | scripts 8.0.1 | writecache 8.1


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

    Like 1
    • Official Post

    Another option to save settings threw an update is to add mkdir /etc/samba/smb.conf.d. Create *.conf files there.


    Then add "include = /etc/samba/smb.conf.d" to "Extra options".


    testparm is a useful tool.

    Dabbling back with OMV after a long absence.


    It seems every time I restart samba (via the web interface after adding a share), it joins my AD Windows Server 2022 via winbind even though it was already domain joined from sssd.

    So now I have the same AD domain listed twice, once via winbind and once via sssd. This appears to be causing login issues for any of the Samba shares.

    Maybe I am misunderstanding something, but why is OMV joining the domain again via winbind, when it is already connected via sssd? Trying to figure out what is triggering the winbind join.

    One strange thing that is happening to my OMV 7.x instance is that sometimes, when user accesses the User GUI, users appear, after some load, then navigating somewhere else and then coming back, the users just dissapear. I think it's a cache problem, but I already tried a lot of combinations without any success .

    wbinfo -u list no users also after this.

    'systemctl restart winbind' makes the users appear again (both, in gui and wbinfo). Dunno why this happens and don't know if this is a winbind cache bug or OMV bug.

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!

Register Yourself Login