jroberge

Hi, This has been stagnant for a while but I recently stumbled upon it trying to find if someone had figured out a way to get tcpdump installed. After poking around a bit I found the URL below in the package info at https://code.google.com/p/unraid-unmenu/source/browse/trunk/tcpdump-unmenu-package.conf?spec=svn202&r=202. However, the URL is no longer valid so I was wondering if this had been updated somewhere. Any help would be greatly appreciated. http://web.eecs.utk.edu/~rdeaver1/unraid/tcpdump-4.1.1-i486-1.tgz

FYI... I found an issue with this where after about 30 days or so the machine trust acount was apparently changing the password and it was not in sync. The symptom would be that everything was fine until you tried mapping a new drive or the machine (not unRAID) was rebooted and then it would say the domain was not available. Unfortunately, this was at the front of a technology "perfect storm" so I have not been able to find a resolution and have since "dumbed down" the house rather than go through a lengthy divorce process. Good luck to any who attempt to push on with this effort.

I'm not sure why you would get that error when executing the net rpc command. What you are doing in that command is granting the root user the specified privileges as part of the Domain Admins group. Perhaps the modification of the bzroot didn't take. After you rebooted did you check to make sure the /etc/group file has the two new groups in it and that root is a member of the domainadmins group in that file?

Well... it's been over a year! I just recently got back to this (in the last week) and was able to figure out the required config based on a working Samba PDC. It's actually a quite easy customization. The migration of users from one domain to this new domain is beyond the scope of this guide. Instructions On Settings tab in unRAID GUI set the following: Enable SMB = Yes Security Mode = Workgroup Local master = Yes Workgroup = [your domain name] Copy the following to smb-extra.conf in /boot/config on your flash # Required settings in additon to netbios name, workgroup and security settings domain logons = yes domain master = yes # Set this server as the preferred master browser # with a ranking higher than any version of windows (see samba.org for more info) preferred master = yes os level = 255 # Identify location on flash to store Samba persistent state information such as group mappings # create the directory if necessary state directory = /boot/config/samba # Disable Roaming Profiles by setting the following to nothing logon path= logon home= # Enable WINS support if your network will need it wins support = yes # Enable PAM support for changing passwords from Windows Clients pam password change = yes unix password sync = yes passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* . # Scripts for user/group functions add machine script = /usr/sbin/useradd -g machines -d /dev/null -s /bin/false -c "Machine %u" %u add group script = /usr/sbin/groupadd %g delete group script = /usr/sbin/groupdel %g add user to group script = /usr/sbin/usermod -G %g %u add user script = /usr/sbin/useradd -m %u delete user script = /usr/sbin/userdel -r %u As part of the PDC configuration you need to have a Domain Admins group available for adding machines to the domain and to provide administration privileges. Telnet to your unRAID server and perform the three commands below to create following two groups: 1. domainadmins : Used for administration privileges 2. machines : Used to add user accounts for PC that are added to the domain The last command adds the "root" user to the domainadmins group as this is the only known user for all systems (customize at will) groupadd -g 200 domainadmins groupadd -g 201 machines usermod -G domainadmins root Obviously these changes will not be persistent with reboots. Therefore we must update the bzroot file to have the additions to the /etc/group file persist through reboots. For updating the bzroot file you can reference the following URL: http://lime-technology.com/wiki/index.php/Building_a_custom_kernel Basically we are looking at the bzroot-extract.sh and bzroot-create.sh scripts for updating the bzroot file. Once extracted, copy your now modified LIVE /etc/group to the extracted ...whatever... /etc/group file. Optionally you may want to edit the /usr/local/emhttp/plugins/webGui/UserList.php file to prevent the display of machine users. When a machine is added to the domain it will have a $ appended to it's netbios name. The following change will prevent displaying those users in the web GUI so an accidental deletion or modification does not occur. Change this: <? foreach ($users as $user): ?> <tr> <td><a href="<?=$path;?>/UserEdit?name=<?=$user['name'];?>"><?=$user['name'];?></a></td> <td><?=$user['desc'];?></td> </tr> <? endforeach; ?> To this: <? foreach ($users as $user): if(!strpos($users['name'],"$")) { ?> <tr> <td><a href="<?=$path;?>/UserEdit?name=<?=$user['name'];?>"><?=$user['name'];?></a></td> <td><?=$user['desc'];?></td> </tr> <? } endforeach; ?> Now repackage with the bzroot-create.sh and copy it to your flash. At this point you should be ready to reboot and test. Assuming that everything goes well with the reboot, you will now need to provide the windows domain group mapping which will be stored on the flash per the state directory configuration option above. net groupmap add ntgroup="Domain Admins" unixgroup=domainadmins rid=512 type=d net rpc rights grant -U root "[your_domain_name]\Domain Admins" SeMachineAccountPrivilege SePrintOperatorPrivilege SeAddUsersPrivilege SeDiskOperatorPrivilege SeRemoteShutdownPrivilege Your domain controller is now complete. You can add PC's to the domain with your "root" user and password and create logins using the unRAID webGUI to create users and passwords.

I just found the same thing while trying to diagnose a potential disk/cable issue with a drive that has been running for about 5 months without issue. Seems these ACPI errors are quite common with the Intel D945GCLF series. One particular google result provided an answer for me. https://bugs.launchpad.net/ubuntu/+source/linux/+bug/495694 Post #9 mentions the setting for fan speed control. I had this set to variable and and was getting this sequence of errors every 2 seconds with kworker running at 100%. I shut down, changed the BIOS setting to fixed at 100% fan speed and booted back up and no longer have the errors. I'm now running the Data-Rebuild I was when I noticed these and will see what results that brings for my drive issue.

That's what I'm considering right now and I'm working on building the development environment on my desktop to start some playing. However, seems like a waste of resources to allocate a VM on a machine already running SAMBA. The only reason I am doing that right now is to provide some separation of my PDC from the firewall this it is using as the host. If someone happens to hack into my firewall I wanted to make it a little harder for them to find the network credentials that would then give them access to everything on the network. But, since unRAID is using SAMBA... I was kinda hoping this would be something that would be considered for feature development. Think of unRAID as a centralized network server for all storage and authentication. I know I can man-handle the samba configs to get it to act as a PDC but is unRAID going to use the users I create for authentication of the shares? That's what I'm not sure of at this point and will find out, hopefully this weekend, when I have some time to really dig in.

I'm just getting started with unRAID and came across this post when looking to see if others have tried this. In case others were wondering, I'll post my reasons for wanting to do so. Currently I am running an Ubuntu server as a domain controller for my home network. The reason behind this is the same as in an enterprise network: central authentication for users on the network. Currently there are 3 of us using various devices on the network. Obviously, I have full wide open access to everything. However, my wife and 10yo son don't need that kind of access. Also, my wife and I will want access to movies and music that our son should not have access to. Therefore, all current shares in out network are restricted accordingly based on centralized network authentication from the SAMBA PDC running on an Ubuntu VM. Since I am now adding unRAID which also uses SAMBA, I need to figure out how to have it use my existing domain users for user level security OR, more idealistically, configure unRAID to run as the PDC so I can get rid of the Ubuntu VM that is currently running solely as a PDC.