samba domain integration
-
@Uncle-Frank said:
We use samba without AD (but LDAP!) and domain joining is done via FOG client (Win7/10) without trouble! As Tom said: Domain does not have to be Active Directory…
I’m using samba also with ldap and i’m very interesting . Could you explain me the way you use ?
Does samba integration is made automaticcaly without snapin ?
Thanks for your answer -
@plegrand said:
Does samba integration is made automaticcaly without snapin ?
Yes! I guess you’ve setup samba kind of like this using smbldap-tools and all the rest: http://www.unixmen.com/setup-samba-domain-controller-with-openldap-backend-in-ubuntu-13-04/
Pay attention to the last couple of screenshots. Windows clients join that domain exactly as if they would join an AD! So from the clients’ point of view there is no difference. Use the FOG clients’ AD settings (edit host and then click ‘Active Directory’ on the left menu).
Prerequisites: FOG client installed and working and domain join for that client should work (try by hand at first).
-
@Uncle-Frank said:
@plegrand said:
Does samba integration is made automaticcaly without snapin ?
Yes! I guess you’ve setup samba kind of like this using smbldap-tools and all the rest
Hello,
i’m using samba with ldap without smbldap-tools but i think it’s not a problem.
I can integrate the windows client manually without problem
Can you explain me what fields you use in the “Active directory” configuration?Domain name
Organizational Unit
Domain Username
Domain Password
Domain Password LegacyThanks for your help
-
@Uncle-Frank
i made some tests this morning without success and i’ve got that in the fog.log file :
HostnameChanger Checking Hostname
HostnameChanger Hostname is correct
HostnameChanger Registering host with active directory
HostnameChanger Logon failure: unknown username or bad password, code = 1326
HostnameChanger Activing host with product keyBut i can integrate manually the windows 7 client
Could you help me ?
What client version are you using?
Thanks -
@plegrand I think the better question to be asked is what fog version are you use? Particularly the client version. Are you using the legacy client or the new client?
Have you ensured your passwords (FOG Crypted in the ADPassLegacy vield) and (Plaintext in the ADPass field as it will auto encrypt for you) are correct?
-
@Tom-Elliott May be the problem is because i’ve got some specials caracters into the password ?
-
@Tom-Elliott sorry i made some tests with the legacy client and some with the new one.
Actually i try with the new client -
@Tom-Elliott
To summarize i use a trunk version of fog : In th e litle cloud at the top of the page : 4700
I use the “new client”
I’m sure of my user wich is able to join windows client into samba domain.
I can join my windows machine test manually and with powershell script
On the “Active Directory” Host configuration i dont use the “Domain Password Legacy” field only the “Domain Password”.
Here is how i do :
Join Domain after image task “checked”
Domain name “samba_domain”
Organizational Unit “blanck”
Domain Username administrateur
Domain Password : contain this " ’ "
i’ve got this error message :
HostnameChanger Logon failure: unknown username or bad password, code = 1326I didnt configure anything else on fog server
Thanks for your help
-
@Tom-Elliott Is it possible that the problem comes from an apostrophe in the password of the Samba domain administrator?
-
@plegrand said:
@Tom-Elliott Is it possible that the problem comes from an apostrophe in the password of the Samba domain administrator?
Can you try with an account test with a simple password ?
-
@ch3i YESSSS it works with a password without apostrophe
May be it could be possible to correct the client to make possible the utilization of specials characters in the password ?Thanks for your help
-
@Tom-Elliott As i said just before it seems that the problem come from an apostrophe into the domain administrator password, it works if i use an other domain admin test without apostrophe .
Is it a bug ? -
@Tom-Elliott Hello, Is it planned to correct the problem concerning specials characters in the domain administrator password ? Or do i have to use a password without special characters ?
I’ve got another little problem, on the host page : i’ve got “No response” with an exclamation point in a red circle as fog didnt see the host .
Nevertheless i can see the host add snapins etc…
Thanks for your helpFor informations, for each tests i make on fog (installation, download, upload, samba domain, snapins…), i write a little (french) procedure, are you interested by that ?
Thanks again -
New problem with the last svn version to join samba domain i’ve got this error message in fog.log file :
The specified domain either does not exist or could not be contacted , code = 1355And this in the apache error log :
PHP Warning: strpos(): needle is not a string or an integer in /var/www/fog/lib/client/HostnameChanger.class.php on line 12I use an admin password without special characters, and it works manually
Thanks for your help
-
Do you specify the ADuser like this: domain\user ??
There is a little coding error in HostnameChanger.class.php on line 12 which would cause trouble then. You could try to just put in the user as FOG can handle this by adding the domain by itself (see in the code).@Tom-Elliott I think you had this correct in an earlier version. Find some examples on how to do strpos with array here: http://stackoverflow.com/questions/11514302/searching-for-array-of-needle-values-with-strpos
@plegrand According your question about special characters in the password, I reckon that apostrophe is pretty special that way. It’s often used to begin and end strings in PHP and SQL. So it definitely can cause a lot of trouble. I think it would take quite some time to get this fixed and tested through all the layers of FOG/webinterface/database/client… I am sorry but I don’t find the time at the moment. Maybe you want to look through the code and see if you can find where it actually fails. Would be of great help.
-
@Uncle-Frank You are correct. For some idiotic reason I tried to pass through an array. Even though the php manual states the needle to search for can be a mixed sort, I’m guessing strpos just wasn’t smart enough. I’ve now fixed this issue. Now I suppose I really need to try figuring out the whole apostrophe in the password bit.
-
@Uncle-Frank Thanks a lot for your answer, for the moment i use a “classic” password and it works fine.
This morning it didnt works anymore with a classic password. If i understand i’ve got upgrade svn and it will work again?
Thanks again -
@Tom-Elliott i upgraded to 4059 but i cant join domain, there is no more error message in apache error.log
do i have to use domain\user ? -
@Uncle-Frank sorry but it’s not very clear for me, do i have to use domain\user now ?
I’ve got again this error message in fog.log :
The specified domain either does not exist or could not be contacted , code = 1355
But i can join domain manually
Thanks again -
@Tom-Elliott Hello i think it’s not fixed because i’ve got the same error.
There is no more error in error.log apache file but the same in fog.log
It worked with an older svn version
Thanks