Hi,
we have set up FreeNAS-9.10.2-U4 (27ae72978) and trying to configure directory service in FreeNAS with corporate ActiveDirectory(which has 1000+ users).
when i click on save after configuring AD service with realm name, domain user and password (with kerberos realm) it takes forever(have waited for 10+ hours) to load and never show a success message. however,
even on the "change permission" on the share do not show/recommend AD users as i type.
below is my messages log where we can see it get stuck at " cachetool.py: [common.pipesubr:66] Popen()ing: klist" for a long time and later displays "cachetool.py: [common.freenasusers:346] Directory Users could not be retrieved: {'desc': "Can't contact LDAP server"}"
Any leads/help would be greatly appreciated.
Thanks,
Sharath TS
we have set up FreeNAS-9.10.2-U4 (27ae72978) and trying to configure directory service in FreeNAS with corporate ActiveDirectory(which has 1000+ users).
when i click on save after configuring AD service with realm name, domain user and password (with kerberos realm) it takes forever(have waited for 10+ hours) to load and never show a success message. however,
wbinfo -u, wbinfo -g, wbinfo -t and net ads join -S dcname -U username
all gives a positive output with user and group names. But "getent passwd" and "getent group" shows only local users and groups.even on the "change permission" on the share do not show/recommend AD users as i type.
below is my messages log where we can see it get stuck at " cachetool.py: [common.pipesubr:66] Popen()ing: klist" for a long time and later displays "cachetool.py: [common.freenasusers:346] Directory Users could not be retrieved: {'desc': "Can't contact LDAP server"}"
Code:
Oct 18 09:49:59 BLRCM-FREENAS ActiveDirectory: AD_join_domain: net -k ads join ABCD.NET -S blrdc03.abcd.net -p 389 Oct 18 09:50:03 BLRCM-FREENAS ActiveDirectory: AD_join_domain: Successful Oct 18 09:50:03 BLRCM-FREENAS ActiveDirectory: /usr/sbin/service ix-activedirectory status Oct 18 09:50:03 BLRCM-FREENAS ActiveDirectory: activedirectory_status: checking status Oct 18 09:50:03 BLRCM-FREENAS ActiveDirectory: AD_status_domain: net -k ads status ABCD.NET Oct 18 09:50:04 BLRCM-FREENAS ActiveDirectory: AD_status_domain: Okay Oct 18 09:50:04 BLRCM-FREENAS ActiveDirectory: /usr/local/bin/python /usr/local/bin/midclt call notifier.stop cifs Oct 18 04:20:05 BLRCM-FREENAS notifier: Stopping winbindd. Oct 18 04:20:05 BLRCM-FREENAS notifier: Waiting for PIDS: 76697. Oct 18 04:20:05 BLRCM-FREENAS notifier: Stopping smbd. Oct 18 04:20:06 BLRCM-FREENAS notifier: Waiting for PIDS: 76691, 76691. Oct 18 04:20:06 BLRCM-FREENAS notifier: nmbd not running? (check /var/run/samba/nmbd.pid). Oct 18 09:50:06 BLRCM-FREENAS ActiveDirectory: /usr/local/bin/python /usr/local/bin/midclt call notifier.start cifs Oct 18 04:20:08 BLRCM-FREENAS notifier: Performing sanity check on Samba configuration: OK Oct 18 04:20:08 BLRCM-FREENAS notifier: Starting nmbd. Oct 18 04:20:08 BLRCM-FREENAS notifier: Starting smbd. Oct 18 04:20:08 BLRCM-FREENAS notifier: Starting winbindd. Oct 18 09:50:08 BLRCM-FREENAS ActiveDirectory: /usr/sbin/service ix-pam quietstart Oct 18 09:50:09 BLRCM-FREENAS ActiveDirectory: /usr/sbin/service ix-cache quietstart & Oct 18 09:50:10 BLRCM-FREENAS cachetool.py: [common.pipesubr:66] Popen()ing: klist Oct 18 10:27:59 BLRCM-FREENAS alert.py: [common.pipesubr:66] Popen()ing: /usr/local/sbin/dmidecode -s system-product-name Oct 18 10:27:59 BLRCM-FREENAS alert.py: [common.pipesubr:66] Popen()ing: /usr/local/sbin/dmidecode -s baseboard-product-name Oct 18 11:28:22 BLRCM-FREENAS alert.py: [common.pipesubr:66] Popen()ing: /usr/local/sbin/dmidecode -s system-product-name Oct 18 11:28:22 BLRCM-FREENAS alert.py: [common.pipesubr:66] Popen()ing: /usr/local/sbin/dmidecode -s baseboard-product-name Oct 18 11:44:21 BLRCM-FREENAS cachetool.py: [common.freenasusers:346] Directory Users could not be retrieved: {'desc': "Can't contact LDAP server"} Oct 18 11:44:21 BLRCM-FREENAS cachetool.py: [common.pipesubr:66] Popen()ing: klist Oct 18 11:50:11 BLRCM-FREENAS cachetool.py: [common.freenasusers:346] Directory Users could not be retrieved: {'desc': "Can't contact LDAP server"} Oct 18 11:50:11 BLRCM-FREENAS cachetool.py: [common.pipesubr:66] Popen()ing: klist Oct 18 12:28:45 BLRCM-FREENAS alert.py: [common.pipesubr:66] Popen()ing: /usr/local/sbin/dmidecode -s system-product-name Oct 18 12:28:45 BLRCM-FREENAS alert.py: [common.pipesubr:66] Popen()ing: /usr/local/sbin/dmidecode -s baseboard-product-name Oct 18 13:29:08 BLRCM-FREENAS alert.py: [common.pipesubr:66] Popen()ing: /usr/local/sbin/dmidecode -s system-product-name Oct 18 13:29:08 BLRCM-FREENAS alert.py: [common.pipesubr:66] Popen()ing: /usr/local/sbin/dmidecode -s baseboard-product-name Oct 18 13:44:24 BLRCM-FREENAS cachetool.py: [common.freenasusers:229] Directory Groups could not be retrieved: {'desc': "Can't contact LDAP server"} Oct 18 13:44:25 BLRCM-FREENAS ActiveDirectory: kerberos_status: klist -t Oct 18 13:44:25 BLRCM-FREENAS ActiveDirectory: kerberos_status: Successful Oct 18 13:44:25 BLRCM-FREENAS ActiveDirectory: activedirectory_status: checking status Oct 18 13:44:25 BLRCM-FREENAS ActiveDirectory: AD_status_domain: net -k ads status ABCD.NET Oct 18 13:44:26 BLRCM-FREENAS ActiveDirectory: AD_status_domain: Okay Oct 18 13:44:26 BLRCM-FREENAS manage.py: [common.pipesubr:66] Popen()ing: klist Oct 18 13:50:11 BLRCM-FREENAS cachetool.py: [common.freenasusers:229] Directory Groups could not be retrieved: {'desc': "Can't contact LDAP server"} Oct 18 13:50:12 BLRCM-FREENAS ActiveDirectory: kerberos_status: klist -t Oct 18 13:50:12 BLRCM-FREENAS ActiveDirectory: kerberos_status: Successful Oct 18 13:50:12 BLRCM-FREENAS ActiveDirectory: activedirectory_status: checking status Oct 18 13:50:12 BLRCM-FREENAS ActiveDirectory: AD_status_domain: net -k ads status ABCD.NET Oct 18 13:50:13 BLRCM-FREENAS ActiveDirectory: AD_status_domain: Okay Oct 18 13:50:13 BLRCM-FREENAS manage.py: [common.pipesubr:66] Popen()ing: klist
Any leads/help would be greatly appreciated.
Thanks,
Sharath TS