someone1
Dabbler
- Joined
- Jun 17, 2013
- Messages
- 37
Hello All,
I've been researching the myriad of Active Directory issues found in the forum but I don't think anything is quite like what I'm experiencing. I just did a fresh, new installation of FreeNAS (Build: FreeNAS-9.2.1.3-RELEASE-x64 (dc0c46b)) and joined my domain (from what it looks like, succesfully). Quick breakdown of my setup:
1. Install FreeNAS on USB stick
2. On First load, setup static IP on NIC, set gateway, DNS, Domain, etc. via CLI menu - reboot
3. Login to web GUI, reset ADMIN password
4. Go to Network >> Global Config >> put in new hostname and verify other settings, save - reboot
5. Setup (under settings) "Directory Service" as "Active Directory"
6. Add configuration to Services >> Directory Service >> Active Directory (basic mode only fields)
7. Verify configuration for CIFS service (only had to change the WORKGROUP)
8. Turn on Active Directory service (CIFS turned on but not Directory Service) - reboot
8a. Verified that computer was in Active Directory Users and Computers snap-in as well as in DNS snap-in - manually added reverse PTR record.
9. Both CIFS and Directory Services not started, try to start (seemed like both failed)
10. Try step 9 again - This time both worked - reboot
11. Verified services started up correctly (yes!)
12. wbinfo -u/wbinfo -g both output correctly. getent users/getent groups both look like they have users/groups from domain. `net ads join` command worked fine
13. Create new ZFS volume (ZFS RAID 10) and create new dataset under new volume
14. Try and set permissions on the dataset: users dropdown has all users listed, groups only has local groups
I hope I wasn't too verbose but I hope that if I messed the setup process then it would be easy for someone to point it out. I'm dumbfounded as to why its not showing up in the groups drop down when it appears to exist everywhere else.
Now what's really weird (or maybe its expected and I'm just misinformed) is that if I check (enable) the Active Directory Advanced setting "Use default domain" the groups drop down populates just fine. Oddly enough, I get most things working like this but am running into a very weird permission issue this way and thought that maybe having this setting unchecked would solve my issue, though now I have a new issue to deal with.
I'd appreciate any insight on how to troubleshoot this issue!
Thank you.
I've been researching the myriad of Active Directory issues found in the forum but I don't think anything is quite like what I'm experiencing. I just did a fresh, new installation of FreeNAS (Build: FreeNAS-9.2.1.3-RELEASE-x64 (dc0c46b)) and joined my domain (from what it looks like, succesfully). Quick breakdown of my setup:
1. Install FreeNAS on USB stick
2. On First load, setup static IP on NIC, set gateway, DNS, Domain, etc. via CLI menu - reboot
3. Login to web GUI, reset ADMIN password
4. Go to Network >> Global Config >> put in new hostname and verify other settings, save - reboot
5. Setup (under settings) "Directory Service" as "Active Directory"
6. Add configuration to Services >> Directory Service >> Active Directory (basic mode only fields)
7. Verify configuration for CIFS service (only had to change the WORKGROUP)
8. Turn on Active Directory service (CIFS turned on but not Directory Service) - reboot
8a. Verified that computer was in Active Directory Users and Computers snap-in as well as in DNS snap-in - manually added reverse PTR record.
9. Both CIFS and Directory Services not started, try to start (seemed like both failed)
10. Try step 9 again - This time both worked - reboot
11. Verified services started up correctly (yes!)
12. wbinfo -u/wbinfo -g both output correctly. getent users/getent groups both look like they have users/groups from domain. `net ads join` command worked fine
13. Create new ZFS volume (ZFS RAID 10) and create new dataset under new volume
14. Try and set permissions on the dataset: users dropdown has all users listed, groups only has local groups
I hope I wasn't too verbose but I hope that if I messed the setup process then it would be easy for someone to point it out. I'm dumbfounded as to why its not showing up in the groups drop down when it appears to exist everywhere else.
Now what's really weird (or maybe its expected and I'm just misinformed) is that if I check (enable) the Active Directory Advanced setting "Use default domain" the groups drop down populates just fine. Oddly enough, I get most things working like this but am running into a very weird permission issue this way and thought that maybe having this setting unchecked would solve my issue, though now I have a new issue to deal with.
I'd appreciate any insight on how to troubleshoot this issue!
Thank you.