Hi all,
I have an installation of Freenas 9.3 which has been running for a while now. It was joined to a 2008 Active Directory Domain Server.
I've recently moved to Zentyal as my authentication server.
When plummbing the Zentyal directory details into Freenas' AD page and hit Save, I get the below output.
A few other notes:
winbind -u returns a list of expected users.
net join -U domain.admin joins the domain - the computer entry is also visible in my authentication servers directory.
Any help would be appreciated.
A few config files that may help:
I have an installation of Freenas 9.3 which has been running for a while now. It was joined to a 2008 Active Directory Domain Server.
I've recently moved to Zentyal as my authentication server.
When plummbing the Zentyal directory details into Freenas' AD page and hit Save, I get the below output.
A few other notes:
winbind -u returns a list of expected users.
net join -U domain.admin joins the domain - the computer entry is also visible in my authentication servers directory.
Any help would be appreciated.
Code:
Nov 25 20:46:18 nas1 manage.py: [common.pipesubr:71] Popen()ing: klist Nov 25 20:46:27 nas1 manage.py: [common.pipesubr:71] Popen()ing: klist Nov 25 20:46:27 nas1 ActiveDirectory: /usr/local/bin/python /usr/local/www/freenasUI/middleware/notifier.py stop cifs Nov 25 20:46:29 nas1 notifier: Stopping winbindd. Nov 25 20:46:29 nas1 winbindd[11731]: STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1) Nov 25 20:46:29 nas1 winbindd[11737]: STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0) Nov 25 20:46:29 nas1 notifier: Waiting for PIDS: 11731. Nov 25 20:46:29 nas1 notifier: Stopping smbd. Nov 25 20:46:30 nas1 notifier: Waiting for PIDS: 11727, 11727. Nov 25 20:46:30 nas1 notifier: Stopping nmbd. Nov 25 20:46:30 nas1 nmbd[11723]: STATUS=daemon 'nmbd' finished starting up and ready to serve connectionsGot SIGTERM: going down... Nov 25 20:46:30 nas1 notifier: Waiting for PIDS: 11723. Nov 25 20:46:31 nas1 ActiveDirectory: /usr/sbin/service ix-kerberos quietstop Nov 25 20:46:31 nas1 ActiveDirectory: /usr/sbin/service ix-nsswitch quietstop Nov 25 20:46:33 nas1 ActiveDirectory: /usr/sbin/service ix-pam quietstop Nov 25 20:46:33 nas1 ActiveDirectory: /usr/sbin/service ix-activedirectory forcestop Nov 25 20:46:39 nas1 adtool: [common.pipesubr:71] Popen()ing: klist Nov 25 20:46:39 nas1 ActiveDirectory: /usr/sbin/service ix-cache quietstop & Nov 25 20:46:41 nas1 ActiveDirectory: /usr/sbin/service samba_server forcestop Nov 25 20:46:41 nas1 ActiveDirectory: /usr/local/bin/python /usr/local/www/freenasUI/middleware/notifier.py start cifs Nov 25 20:46:45 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: /usr/local/bin/net -d 0 getlocalsid Nov 25 20:46:46 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: /sbin/sysctl -n 'kern.maxfilesperproc' Nov 25 20:46:46 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:46:46 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:46:46 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:46:46 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:46:46 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:46:46 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:46:46 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:46:46 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:46:46 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: /usr/local/bin/net -d 0 getlocalsid Nov 25 20:46:46 nas1 notifier: Performing sanity check on Samba configuration: OK Nov 25 20:46:46 nas1 notifier: Starting nmbd. Nov 25 20:46:46 nas1 notifier: Starting smbd. Nov 25 20:46:46 nas1 nmbd[15252]: [2015/11/25 20:46:46.807770, 0] ../lib/util/become_daemon.c:136(daemon_ready) Nov 25 20:46:46 nas1 notifier: Starting winbindd. Nov 25 20:46:46 nas1 smbd[15256]: [2015/11/25 20:46:46.857024, 0] ../lib/util/become_daemon.c:136(daemon_ready) Nov 25 20:46:46 nas1 winbindd[15260]: [2015/11/25 20:46:46.882832, 0] ../source3/winbindd/winbindd_cache.c:3196(initialize_winbindd_cache) Nov 25 20:46:46 nas1 winbindd[15260]: initialize_winbindd_cache: clearing cache and re-creating with version number 2 Nov 25 20:46:46 nas1 winbindd[15260]: [2015/11/25 20:46:46.886333, 0] ../lib/util/become_daemon.c:136(daemon_ready) Nov 25 20:46:47 nas1 ActiveDirectory: /usr/sbin/service ix-kinit forcestop Nov 25 20:46:47 nas1 ActiveDirectory: /usr/sbin/service ix-hostname quietstart Nov 25 20:46:50 nas1 adtool: [common.pipesubr:71] Popen()ing: klist Nov 25 20:46:50 nas1 adtool: [common.pipesubr:71] Popen()ing: /usr/bin/kinit --renewable --password-file=/tmp/tmpfpBrNs domain.admin@JAMESCOYLE.NET Nov 25 20:46:52 nas1 ActiveDirectory: /usr/local/bin/python /usr/local/www/freenasUI/middleware/notifier.py stop cifs Nov 25 20:46:54 nas1 notifier: Stopping winbindd. Nov 25 20:46:54 nas1 winbindd[15260]: STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1) Nov 25 20:46:54 nas1 winbindd[15262]: STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0) Nov 25 20:46:54 nas1 notifier: Waiting for PIDS: 15260. Nov 25 20:46:54 nas1 notifier: Stopping smbd. Nov 25 20:46:55 nas1 notifier: Waiting for PIDS: 15256, 15256. Nov 25 20:46:55 nas1 notifier: Stopping nmbd. Nov 25 20:46:55 nas1 nmbd[15252]: STATUS=daemon 'nmbd' finished starting up and ready to serve connectionsGot SIGTERM: going down... Nov 25 20:46:55 nas1 notifier: Waiting for PIDS: 15252. Nov 25 20:46:55 nas1 ActiveDirectory: /usr/sbin/service ix-hostname quietstart Nov 25 20:46:56 nas1 ActiveDirectory: /usr/sbin/service ix-kerberos quietstart default JAMESCOYLE.NET Nov 25 20:46:58 nas1 generate_krb5_conf.py: [common.pipesubr:71] Popen()ing: klist Nov 25 20:46:58 nas1 ActiveDirectory: /usr/sbin/service ix-nsswitch quietstart Nov 25 20:47:00 nas1 ActiveDirectory: /usr/sbin/service ix-ldap quietstart Nov 25 20:47:00 nas1 ActiveDirectory: /usr/sbin/service ix-kinit quietstart Nov 25 20:47:03 nas1 ActiveDirectory: /usr/sbin/service ix-kinit status Nov 25 20:47:05 nas1 ActiveDirectory: /usr/local/bin/python /usr/local/www/freenasUI/middleware/notifier.py start cifs Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: /usr/local/bin/net -d 0 getlocalsid Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: /sbin/sysctl -n 'kern.maxfilesperproc' Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: klist Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:09 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: /usr/local/bin/net -d 0 getlocalsid Nov 25 20:47:10 nas1 notifier: Performing sanity check on Samba configuration: OK Nov 25 20:47:10 nas1 notifier: Starting nmbd. Nov 25 20:47:10 nas1 notifier: Starting smbd. Nov 25 20:47:10 nas1 nmbd[17180]: [2015/11/25 20:47:10.355438, 0] ../lib/util/become_daemon.c:136(daemon_ready) Nov 25 20:47:10 nas1 notifier: Starting winbindd. Nov 25 20:47:10 nas1 smbd[17184]: [2015/11/25 20:47:10.407310, 0] ../lib/util/become_daemon.c:136(daemon_ready) Nov 25 20:47:10 nas1 winbindd[17188]: [2015/11/25 20:47:10.444843, 0] ../lib/util/become_daemon.c:136(daemon_ready) Nov 25 20:47:10 nas1 winbindd[17194]: STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsKinit failed: Clients credentials have been revoked Nov 25 20:47:10 nas1 winbindd[17194]: [2015/11/25 20:47:10.554301, 0] ../source3/libads/kerberos_util.c:74(ads_kinit_password) Nov 25 20:47:10 nas1 winbindd[17194]: kerberos_kinit_password NAS1$@JAMESCOYLE.NET failed: Clients credentials have been revoked Nov 25 20:47:10 nas1 winbindd[17188]: STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsCould not receive trustdoms Nov 25 20:47:11 nas1 ActiveDirectory: /usr/sbin/service ix-activedirectory quietstart Nov 25 20:47:15 nas1 generate_ldap_conf.py: [common.pipesubr:71] Popen()ing: klist Nov 25 20:47:16 nas1 ActiveDirectory: /usr/sbin/service ix-activedirectory status Nov 25 20:47:23 nas1 ActiveDirectory: /usr/local/bin/python /usr/local/www/freenasUI/middleware/notifier.py stop cifs Nov 25 20:47:25 nas1 notifier: Stopping winbindd. Nov 25 20:47:25 nas1 winbindd[17188]: [2015/11/25 20:47:25.804176, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler) Nov 25 20:47:25 nas1 winbindd[17188]: Got sig[15] terminate (is_parent=1) Nov 25 20:47:25 nas1 winbindd[17194]: [2015/11/25 20:47:25.806930, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler) Nov 25 20:47:25 nas1 winbindd[17194]: Got sig[15] terminate (is_parent=0) Nov 25 20:47:25 nas1 winbindd[17659]: [2015/11/25 20:47:25.807030, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler) Nov 25 20:47:25 nas1 winbindd[17659]: Got sig[15] terminate (is_parent=0) Nov 25 20:47:25 nas1 notifier: Waiting for PIDS: 17188. Nov 25 20:47:25 nas1 notifier: Stopping smbd. Nov 25 20:47:26 nas1 notifier: Waiting for PIDS: 17184, 17184. Nov 25 20:47:26 nas1 notifier: Stopping nmbd. Nov 25 20:47:26 nas1 nmbd[17180]: STATUS=daemon 'nmbd' finished starting up and ready to serve connectionsGot SIGTERM: going down... Nov 25 20:47:26 nas1 notifier: Waiting for PIDS: 17180. Nov 25 20:47:27 nas1 ActiveDirectory: /usr/local/bin/python /usr/local/www/freenasUI/middleware/notifier.py start cifs Nov 25 20:47:30 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: /usr/local/bin/net -d 0 getlocalsid Nov 25 20:47:30 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: /sbin/sysctl -n 'kern.maxfilesperproc' Nov 25 20:47:31 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: klist Nov 25 20:47:31 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:31 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:31 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:31 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:31 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:31 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:31 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:31 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: zfs list -H -o mountpoint Nov 25 20:47:31 nas1 generate_smb4_conf.py: [common.pipesubr:71] Popen()ing: /usr/local/bin/net -d 0 getlocalsid Nov 25 20:47:31 nas1 notifier: Performing sanity check on Samba configuration: OK Nov 25 20:47:31 nas1 notifier: Starting nmbd. Nov 25 20:47:31 nas1 notifier: Starting smbd. Nov 25 20:47:31 nas1 nmbd[18307]: [2015/11/25 20:47:31.822047, 0] ../lib/util/become_daemon.c:136(daemon_ready) Nov 25 20:47:31 nas1 notifier: Starting winbindd. Nov 25 20:47:31 nas1 smbd[18311]: [2015/11/25 20:47:31.873884, 0] ../lib/util/become_daemon.c:136(daemon_ready) Nov 25 20:47:31 nas1 winbindd[18315]: [2015/11/25 20:47:31.911062, 0] ../lib/util/become_daemon.c:136(daemon_ready) Nov 25 20:47:32 nas1 ActiveDirectory: /usr/sbin/service ix-pam quietstart Nov 25 20:47:35 nas1 ActiveDirectory: /usr/sbin/service ix-cache quietstart & Nov 25 20:47:37 nas1 cachetool.py: [common.pipesubr:71] Popen()ing: klist Nov 25 20:47:37 nas1 cachetool.py: [common.freenasusers:385] Directory Users could not be retrieved: 'nETBIOSName' Nov 25 20:47:37 nas1 cachetool.py: [common.pipesubr:71] Popen()ing: klist Nov 25 20:47:37 nas1 cachetool.py: [common.freenasusers:247] Directory Groups could not be retrieved: 'nETBIOSName' Nov 25 20:47:46 nas1 manage.py: [common.pipesubr:71] Popen()ing: klist
A few config files that may help:
Code:
cat /usr/local/etc/smb4.conf
[global]
server max protocol = SMB3
encrypt passwords = yes
dns proxy = no
strict locking = no
oplocks = yes
deadtime = 15
max log size = 51200
max open files = 232256
load printers = no
printing = bsd
printcap name = /dev/null
disable spoolss = yes
getwd cache = yes
guest account = nobody
map to guest = Bad User
obey pam restrictions = yes
directory name cache size = 0
kernel change notify = no
panic action = /usr/local/libexec/samba/samba-backtrace
nsupdate command = /usr/local/bin/samba-nsupdate -g
server string = NAS1 Server
ea support = yes
store dos attributes = yes
lm announce = yes
unix extensions = no
acl allow execute always = true
acl check permissions = true
dos filemode = yes
multicast dns register = no
domain logons = no
idmap config *: backend = tdb
idmap config *: range = 1000-999999
server role = member server
netbios name = NAS1
workgroup = JAMESCOYLE
realm = JAMESCOYLE.NET
security = ADS
client use spnego = yes
cache directory = /var/tmp/.cache/.samba
local master = no
domain master = no
preferred master = no
winbind cache time = 7200
winbind offline logon = yes
winbind enum users = yes
winbind enum groups = yes
winbind nested groups = yes
winbind use default domain = yes
winbind refresh tickets = yes
idmap config JAMESCOYLE: backend = rid
idmap config JAMESCOYLE: range = 20000-90000000
allow trusted domains = yes
client ldap sasl wrapping = plain
template shell = /bin/sh
template homedir = /home/%U
pid directory = /var/run/samba
create mask = 0666
directory mask = 0777
client ntlmv2 auth = yes
dos charset = CP437
unix charset = UTF-8
log level = 1
[SHARES...]Code:
cat /etc/krb5.conf
[appdefaults]
pam = {
forwardable = true
ticket_lifetime = 86400
renew_lifetime = 86400
}
[libdefaults]
dns_lookup_realm = true
dns_lookup_kdc = true
ticket_lifetime = 24h
clockskew = 300
forwardable = yes
default_realm = JAMESCOYLE.NET
[domain_realm]
jamescoyle.net = JAMESCOYLE.NET
.jamescoyle.net = JAMESCOYLE.NET
JAMESCOYLE.NET = JAMESCOYLE.NET
.JAMESCOYLE.NET = JAMESCOYLE.NET
[realms]
JAMESCOYLE.NET = {
kdc = mail3.jamescoyle.net
admin_server = mail3.jamescoyle.net
kpasswd_server = mail3.jamescoyle.net
default_domain = JAMESCOYLE.NET
}
[logging]
default = SYSLOG:INFO:LOCAL7
Code:
/usr/local/www/freenasUI/tools/cachetool.py keys
Traceback (most recent call last):
File "/usr/local/www/freenasUI/tools/cachetool.py", line 731, in <module>
main()
File "/usr/local/www/freenasUI/tools/cachetool.py", line 728, in main
(cache_funcs[sys.argv[1]])(**kwargs)
File "/usr/local/www/freenasUI/tools/cachetool.py", line 245, in cache_keys
_cache_keys_ActiveDirectory(**kwargs)
File "/usr/local/www/freenasUI/tools/cachetool.py", line 143, in _cache_keys_ActiveDirectory
workgroup = d['nETBIOSName']
KeyError: 'nETBIOSName'
