Eu tenho um servidor radius em funcionamento que autentica conexões com um servidor PDC AD. Eu queria criar outro para que eu pudesse falhar no firewall quando necessário. Eu criei um segundo servidor usando as mesmas configurações que o primeiro.
Quando eu tenho o seguinte no meu smb.conf ele falha ao iniciar, mesmo que esta seja a mesma configuração que o servidor de trabalho de outro IP.
[global]
workgroup = domain
security = ads
password server = x.x.x.x
passdb backend = tdbsam
realm = realm.com
printing = cups
printcap name = cups
load printers = yes
cups options = raw
[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes
[printers]
comment = All Printers
path = /var/tmp
printable = Yes
create mask = 0600
browseable = No
[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = @printadmin root
force group = @printadmin
create mask = 0664
directory mask = 0775
O erro que recebo no systemctl start smb é o seguinte:
Aug 30 09:12:46 zahqprdlrad002 systemd[1]: Starting Samba SMB Daemon...
Aug 30 09:12:46 zahqprdlrad002 smbd[21426]: [2018/08/30 09:12:46.156012, 0] ../source3/auth/auth_util.c:1399(make_new_session_info_guest)
Aug 30 09:12:46 zahqprdlrad002 smbd[21426]: create_local_token failed: NT_STATUS_NO_MEMORY
Aug 30 09:12:46 zahqprdlrad002 smbd[21426]: [2018/08/30 09:12:46.156515, 0] ../source3/smbd/server.c:2011(main)
Aug 30 09:12:46 zahqprdlrad002 smbd[21426]: ERROR: failed to setup guest info.
Aug 30 09:12:46 zahqprdlrad002 systemd[1]: smb.service: main process exited, code=exited, status=255/n/a
Aug 30 09:12:46 zahqprdlrad002 systemd[1]: Failed to start Samba SMB Daemon.
Aug 30 09:12:46 zahqprdlrad002 systemd[1]: Unit smb.service entered failed state.
Aug 30 09:12:46 zahqprdlrad002 systemd[1]: smb.service failed.
Se eu comentar os anúncios security = do smb.conf, o smb é iniciado, mas não consigo me conectar ao servidor PDC AD para ingressar no AD.
Host is not configured as a member server.
Invalid configuration. Exiting....
Failed to join domain: This operation is only allowed for the PDC of the domain.
ADS join did not work, falling back to RPC...
cannot join as standalone machine
Por favor ajude:)
Tags samba radius smb-conf freeradius