Bug 555579

Could you please attach y2logs according to http://en.opensuse.org/Bugs/YaST.
Thanks.

sorry, these logs seem to be huge and I don't actually have the time to clean the logs from unwanted information. 
I hope you still find it easy to reproduce the error

Created attachment 328386 [details]
y2log as requested

OK, requested logs are attached

Do you have an example of how the original smb.conf looked like and what was deleted?

BTW: The idmap feature is REALLY helpful for centralized, enterprise wide uid/gid management. 2 more options should be added to the yast applet 

1. configure a uid range for idmap entries
2. offer a choice for ActiveDirectory schema (legacy=sfu or Windows 2003 R2 and newer = rfc2307)


http://www.likewise.com/ offers these very useful features in their software but there is no need to purchase any extra software

sure, here you go:

BEFORE:

[global]
        workgroup = XXXXX
        passdb backend = tdbsam
        printing = cups
        printcap name = cups
        printcap cache time = 750
        cups options = raw
        map to guest = Bad User
        include = /etc/samba/dhcp.conf
        logon path = \\%L\profiles\.msprofile
        logon home = \\%L\%U\.9xprofile
        logon drive = P:
        usershare allow guests = No
        security = ADS
        idmap gid = 2000-4999
        idmap uid = 2000-4999
        realm = XXXXX.ORG
        template homedir = /home/%U
        template shell = /bin/bash
        winbind offline logon = yes
        winbind refresh tickets = yes
        ;log level = 3 winbind:5 idmap:5
        winbind enum users = Yes
        winbind enum groups = Yes
        winbind nss info = rfc2307
        winbind use default domain = yes
        ;idmap domains = XXXXX #not needed in latest samba
        idmap config XXXXX:cache time = 1800
        idmap config XXXXX:range = 5000-65000
        idmap config XXXXX:backend = ad
        idmap config XXXXX:schema_mode = rfc2307
        idmap config XXXXX:default = yes

AFTER

[global]
        workgroup = XXXXX
        passdb backend = tdbsam
        printing = cups
        printcap name = cups
        printcap cache time = 750
        cups options = raw
        map to guest = Bad User
        include = /etc/samba/dhcp.conf
        logon path = \\%L\profiles\.msprofile
        logon home = \\%L\%U\.9xprofile
        logon drive = P:
        usershare allow guests = No
        security = ADS
        idmap gid = 2000-4999
        idmap uid = 2000-4999
        realm = XXXXX.ORG
        template homedir = /home/%D/%U
        template shell = /bin/bash
        winbind offline logon = yes
        winbind refresh tickets = yes
        ;log level = 3 winbind:5 idmap:5
        winbind enum users = Yes
        winbind enum groups = Yes
        winbind nss info = rfc2307
        winbind use default domain = yes
        ;idmap domains = XXXXX #not needed in latest samba

(In reply to comment #7)
> BTW: The idmap feature is REALLY helpful for centralized, enterprise wide
> uid/gid management. 2 more options should be added to the yast applet 

Please, ask for new features at different place, so it is possible to track them, ideally, use features.opensuse.org

The problem is that there are some keys with uppercase ('XXXXX' in 'idmap config XXXXX:cache time = 1800). Before I try to fix yast2 module to handle it correctly, I'd like to ask: is it allowed configuration, to have uppercase in config file keys (not values)?

confirmed: uppercase is actually the default in sample docs like this:

http://samba.org/~obnox/presentations/sambaXP-2009/sambaxp-2009-talk-obnox-slides-paper.pdf

A Windows AD domain it mostly shown in uppercase

Created attachment 329129 [details]
patch for /usr/share/YaST2/scrconf/cfg_smbconf.scr

Created attachment 329131 [details]
patch for /usr/share/YaST2/modules/SambaConfig.pm

I've built new package, containing the patches above, Could you please test it with your config files?

The package could be found at

http://download.opensuse.org/repositories/home://jsuchome/openSUSE_11.1/noarch/yast2-samba-client-2.19.1-2.1.noarch.rpm

Yes, that fixes it.

Thanks much

I noticed one more thing: 

most people I know want 

template homedir = /home/%U

instead of 

template homedir = /home/%D/%U

however, the yast applet always resets to 
template homedir = /home/%D/%U 
if I make a manual change in smb.conf


I believe this fix should be part of this ticket rather than submitting a new one ?

Also:
the initial slowness in starting up the applet was because I set 
        winbind enum users = Yes
        winbind enum groups = Yes

The slowness is caused by enum groups (I think we have about 7 billion). "enum users" of our 3000 users did not cause any delay.


I have another few issues for which I will start a new ticket.

additional feature:

This populates the fields in the "Operating System" Tab in Active Directory Users and Computers. It also populates the the user pricipal name for nfs services so this configuration can be used for kerberized nfs. This is tested and works. ($netbios_name and $realm seem to be blank and $domain should be dns doamin instead of windows domain) 

I will also put in a feature request for this. 

createupn=nfs/host.domain.org@REALM.ORG

--- SambaNetJoin-org.pm 2009-08-21 03:02:55.000000000 -0700
+++ SambaNetJoin.pm     2009-11-26 02:54:13.054810757 -0800
@@ -85,6 +85,7 @@
     my $cmd            = "";

     my $include                = "";
+    my $realm           = "";
     # bnc#520648 (DHCP may know WINS server address)
     $include   = "\n\tinclude = /etc/samba/dhcp.conf" if (SCR->Read (".sysconfig.network.dhcp.DHCLIENT_MODIFY_SMB_CONF") eq "yes");

@@ -105,7 +106,9 @@
        . " -s $conf_file"
        . (($protocol ne "ads" && $netbios_name)?" -n '$netbios_name'":"")
        . " -U '" . String->Quote ($user) . "%" . String->Quote ($passwd) . "'";
-
+    #dipe change
+    $cmd = $cmd . " createupn=nfs/" . $netbios_name . $domain . "@" . $realm . " osName=Linux osVer=\"`cat /etc/SuSE-release | grep openSUSE`\"";
+

Closing the bug as the original issue is resolved.
Fix is in packages yast2-samba-client-2.19.1 (FACTORY) and yast2-samba-client-2.17.13 (SLE11SP1).

Please, report the remaining issues separately (I've already done it myself for the last proposal, which is now bug 558730).

Update released for: yast2-samba-client
Products:
SLE-DESKTOP 11-SP1 (i386, x86_64)
SLE-SERVER 11-SP1 (i386, ia64, ppc64, s390x, x86_64)