[Bug 480820] New: yast2-samba-server module is not writing smb.conf correctly
https://bugzilla.novell.com/show_bug.cgi?id=480820 Summary: yast2-samba-server module is not writing smb.conf correctly Classification: openSUSE Product: openSUSE 11.1 Version: Final Platform: x86 OS/Version: openSUSE 11.1 Status: NEW Severity: Normal Priority: P5 - None Component: YaST2 AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: tb53820@hotmail.com QAContact: jsrain@novell.com Found By: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.6) Gecko/2009012700 SUSE/3.0.6-0.1.2 Firefox/3.0.6 1) When using ldap for the Samba passdb backend, the following config. options are left blank after yast2-samba-server writes out smb.conf: ldap suffix = ldap admin dn = ldap user suffix = ldap group suffix = ldap idmap suffix = ldap machine suffix = 2) When the option “Use WINS for Hostname Resolution” is checked, “wins support = yes” is not written to the smb.conf file. Reproducible: Always Steps to Reproduce: 1) Setup a new Certificate Authority using yast2-ca-management. Export the certificate to a "Common Server Certificate". 2) Setup a new ldap database using yast2-ldap-server. Enable TLS and choose “Common Server Certificate”. 3) Setup a ldap client using yast2-ldap-client. Select “Create Default Configuration Objects”. After the configuration objects are created, use the yast2-ldap-client module to set the “User Map”, “Password Map”, and “Group Map”. 4) Setup a new Samba PDC using yast2-samba-server. Select “Use WINS for Hostname Resolution”. Under "Advanced Settings", change the User Authentication Source to LDAP. Actual Results: [global] add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s /bin/false %m$ domain logons = Yes domain master = Yes ldap admin dn = ldap delete dn = No ldap group suffix = ldap idmap suffix = ldap machine suffix = ldap passwd sync = No ldap replication sleep = 1000 ldap ssl = Start_tls ldap suffix = ldap timeout = 5 ldap user suffix = local master = Yes netbios name = PDC os level = 65 passdb backend = ldapsam:ldap://pdc.domain.corp preferred master = Yes security = user workgroup = test Expected Results: [global] add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s /bin/false %m$ domain logons = Yes domain master = Yes ldap admin dn = cn=Administrator,dc=domain,dc=corp ldap delete dn = No ldap group suffix = ou=group ldap idmap suffix = ou=idmap ldap machine suffix = ou=computers ldap passwd sync = No ldap replication sleep = 1000 ldap ssl = Start_tls ldap suffix = dc=domain,dc=corp ldap timeout = 5 ldap user suffix = ou=people local master = Yes netbios name = PDC os level = 65 passdb backend = ldapsam:ldap://pdc.domain.corp preferred master = Yes security = user workgroup = test -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 Josef Reidinger <jreidinger@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jreidinger@novell.com AssignedTo|bnc-team-screening@forge.pr |locilka@novell.com |ovo.novell.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User locilka@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c1 Lukas Ocilka <locilka@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |jsuchome@novell.com --- Comment #1 from Lukas Ocilka <locilka@novell.com> 2009-03-04 07:06:32 MST --- It seems it works (doesn't work?) as designed. "ldap admin dn" and friends are not set if ldapsam:ldap://pdc.domain.corp is not considered to be a localhost. It also doesn't install the Samba LDAP Schema in this case. Jiri, can you, please, see what's wrong here? I have no clue. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User jsuchome@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c2 Jiří Suchomel <jsuchome@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jsuchome@novell.com Info Provider|jsuchome@novell.com |tb53820@hotmail.com --- Comment #2 from Jiří Suchomel <jsuchome@novell.com> 2009-03-04 08:19:21 MST --- Uhm... I don't know the code, I'd assume these values are actually stored somwhere on the LDAP server. Could you check? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User asimonelli@acacorp.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c3 Anthony Simonelli <asimonelli@acacorp.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |asimonelli@acacorp.com --- Comment #3 from Anthony Simonelli <asimonelli@acacorp.com> 2009-03-05 09:02:55 MST --- This is not the only part of the yast2-samba module that doesn't update the smb.conf file properly. When in the Expert Global Settings Configuration section, trying to edit the security from user to domain yields no results. In fact, YaST seems to not change it at all because after I change set security to domain, I click OK and go immediately back into the Expert Global Settings and it still says user. Of course this means that this module unusable because if I manually change the smb.conf file, it will reset the smb.conf file and destroys all of my manual changes. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User jsuchome@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c4 --- Comment #4 from Jiří Suchomel <jsuchome@novell.com> 2009-03-05 12:17:42 MST --- Please, if you want to report another problem, file it as a separate bug. In this one, it is still not sure that the module doesn't update smb.conf file properly. I assume it is correct behavior that with LDAP backend, some values are intentionally only in LDAP. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User locilka@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c5 Lukas Ocilka <locilka@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Info Provider|tb53820@hotmail.com |llipavsky@novell.com --- Comment #5 from Lukas Ocilka <locilka@novell.com> 2009-03-06 09:23:56 MST --- Lukas, have you tested SambaSer/ver with Users in LDAP? Could you provide some more details for this behavior, please? Thanks. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User llipavsky@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c7 --- Comment #7 from Lukas Lipavsky <llipavsky@novell.com> 2009-03-12 09:06:26 MST --- (In reply to comment #0)
2) When the option “Use WINS for Hostname Resolution” is checked, “wins support = yes” is not written to the smb.conf file.
This is correct, setting the “wins support = yes” in smb.conf means that samba should become WINS server, which is not what “Use WINS for Hostname Resolution” means. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User llipavsky@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c8 Lukas Lipavsky <llipavsky@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW Info Provider|llipavsky@novell.com | --- Comment #8 from Lukas Lipavsky <llipavsky@novell.com> 2009-03-12 09:15:28 MST --- The other problem is really a bug - the user should be able to set up LDAP settings in more details. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User tb53820@hotmail.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c11 Travis Bean <tb53820@hotmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW Info Provider|ast@novell.com | --- Comment #11 from Travis Bean <tb53820@hotmail.com> 2009-03-12 10:24:34 MST --- I finally figured out what is causing this bug. The /etc/YaST2/ProductFeatures file needs to be updated – under [globals] the ui_mode = ”simple” needs to be changed to ui_mode = ”expert”. Once this change is made, two new tabs appear in the yast2-samba-server module (“Trusted Domains” and “LDAP Settings”) and the Samba Plug-Ins show up in the yast2-users module (“Manage samba account parameters” and “Manage Samba attribute of LDAP groups”). Once the ui_mode is updated, the yast2-samba-server module writes the smb.conf file correctly. I am so relieved I finally figured this out. I have been trying for months to get Samba, User and Group Management, Dynamic DNS, and Dynamic DHCP, integrated with LDAP and TLS/SSL, without any success. Finally, today I was successful at joining a Windows XP Pro client to a openSUSE primary domain controller without using any third party software such as smbldap-tools. I am so happy about this, that I have started a how-to guide and will submit this to the openSUSE Wiki. It is amazing this entire complex system can be setup with the YaST GUI. The only time I had to use the terminal is to store the LDAP admin password in secrets.tbd with “smbpasswd -w secret”, store the Samba SID in secrets.tdb with “net rpc getsid”, and "touch /etc/named.conf.include" to workaround Bug #455888 - named.conf.include missing. It is truly amazing that YaST can setup this complex system with just a few clicks of a mouse. After working with RedHat Enterprise Linux for years and spending so much time tediously working at the command-line, it is refreshing working with YaST on the SUSE platform. There is nothing better than a well-polished, intuitive GUI to rapidly configure the underlying parts of the operating system. All I can say is thank you to all the developers who work on the SUSE project and release openSUSE to the public for free. SUSE Linux is going to make Novell #1 someday. I predict in the future the “big three” in the software industry will be Novell, RedHat, and Microsoft, in that order. Microsoft is not going to be #1 forever. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User locilka@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c12 Lukas Ocilka <locilka@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |ast@novell.com --- Comment #12 from Lukas Ocilka <locilka@novell.com> 2009-03-12 10:28:16 MST --- Please, do not remove the NEEDINFO flag. And yes, you're right. A hotfix is to replace "simple" with "expert" in /etc/YaST2/ProductFeatures... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User locilka@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c13 --- Comment #13 from Lukas Ocilka <locilka@novell.com> 2009-03-12 10:30:08 MST --- BTW, thanks for testing :) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard| |maint:planned:update -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User swamp@suse.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c15 Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:planned:update |maint:running:23088 --- Comment #15 from Swamp Workflow Management <swamp@suse.com> 2009-03-13 05:56:18 MST --- The SWAMPID for this issue is 23088. Please submit the patch and patchinfo file using this ID. (https://swamp.suse.de/webswamp/wf/23088) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User locilka@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c17 --- Comment #17 from Lukas Ocilka <locilka@novell.com> 2009-03-13 06:59:22 MST --- Created an attachment (id=279425) --> (https://bugzilla.novell.com/attachment.cgi?id=279425) Patch for openSUSE 11.1 1.) cd /usr/share/YaST2/include/samba-server/ 2.) patch < /path/to/samba-server-openSUSE11_1-ui_mode.patch -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=480820 User locilka@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=480820#c22 --- Comment #22 from Lukas Ocilka <locilka@novell.com> 2009-03-30 08:34:10 MDT --- Fixed in yast2-installation-2.18.1 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com