On Fri, 2013-11-01 at 11:59 +0100, Carlos E. R. wrote:
On 2013-11-01 10:32, lynn wrote:
Sorry. Here are the apparmor messages:
It is telling you exactly what to do.
2013-11-01T09:45:47.551447+01:00 altea kernel: [ 36.449978] type=1400 audit(1383295547.544:34): apparmor="DENIED" operation="open" parent=1 profile="/usr/sbin/smbd" name="/var/lib/sss/pubconf/kdcinfo.HH3.SITE"
You need to allow open file /var/lib/sss/pubconf/kdcinfo.HH3.SITE in profile /usr/sbin/smbd
2013-11-01T09:46:04.195179+01:00 altea kernel: [ 53.093252] type=1400 audit(1383295564.188:42): apparmor="DENIED" operation="file_lock" parent=673 profile="/usr/sbin/smbd" name="/etc/krb5.keytab" pid=908 comm="smbd" requested_mask="k" denied_mask="k" fsuid=0 ouid=0
You need to allow lock of /etc/krb5.keytab
etc.
Hi Yeah. OK, thanks. I've added the files. openSUSE always seems to overlook anything that's kerberized. Even Samba! L x -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org