dlandon Posted April 5, 2023 Share Posted April 5, 2023 This is a plugin that adds a page to SMB Settings so we can experiment with some Active Directory settings. There are settings to adjust the backend database and some cache settings. The plugin adds a tab 'Active Directory Extras' to the SMB Settings to permit making several AD changes. The changes are saved and re-applied when the server is started so they don't have to be re-applied. What I am hoping to accomplish is to give users a tool where thay can make some Samba adjustments to try to get the AD feature more robust and reliable. I've done some research and have found several SMB settings that might help. In particular the 'idmap cache time' and 'winbind cache time'. I think these might address the issues with losing share access over time. I do not have a Windows Server, so I can't do any testing. I have to get all my information from the Unraid Forum. I have very limited expereience with AD, so I'll need some users to test and help troubleshoot. This plugin will be treated as Beta for the time being and will have to be manually installed. Being Beta, you understand that there are risks associated with the plugin. The final outcome of these efforts will determine if anything needs to be adjusted in Unraid. It may be that this turns into a plugin published on CA, or some of these settings may be part of the Active Directory Settings page. The Active Directory Extras plugin is available on CA. Manually install the plugin by going to the Plugins tab and enter the following line to install the plugin: https://raw.githubusercontent.com/dlandon/active.directory/master/active.directory.plg I would suggest you apply the default settings and let's start there. Be aware that if you change the backend database, you'll lose all your settings and will have to re-enter them. The plugin default for "idmap cache time" is 3.5 days. The Samba default is 7 days. The plugin default for "winbind cache time" is 15 seconds. The Samba default is 5 minutes. 5 Quote Link to comment
dlandon Posted April 6, 2023 Author Share Posted April 6, 2023 I've updated the plugin. You can update by entering this into the install plugin: https://raw.githubusercontent.com/dlandon/active.directory/master/active.directory.plg Quote Link to comment
unraidster Posted April 6, 2023 Share Posted April 6, 2023 (edited) Thanks Dan, I can confirm that I was able to install the plugin on 6.11.5. (Plugin version: released about 30 minutes ago, i think that was the second version) My test environment is running with a hash backend and plan to change that when I have a plan to address some other challenges. I haven't run into the "timeout" issues that some others have but I tested the plugin changing my lab backend from hash to tbd. Using testparm i am able to confirm the [global] configuration has changed from: idmap config * : range = 10000-4000000000 idmap config * : backend = hash to idmap config * : range = 3000-7999 idmap config * : backend = tdb Some thoughts: Could the script be made to run on 6.9.2 too? (I will be addressing the idmap config in 6.9.2 before I move over to 6.10.3+ and have fixed my private share issues). Would there be a way to increase the logging level in samba? (pre-empting troubleshooting on my private share issue) Thanks for all of your time creating this plugin. Edited April 6, 2023 by unraidster Quote Link to comment
dlandon Posted April 6, 2023 Author Share Posted April 6, 2023 The values on the right side are the current settings read from testparm. 18 minutes ago, unraidster said: Could the script be made to run on 6.9.2 too? (I will be addressing the idmap config in 6.9.2 before I move over to 6.10.3+ and have fixed my private share issues). I'll set the min version to 6.9.0 on the next release. 19 minutes ago, unraidster said: Would there be a way to increase the logging level in samba? (pre-empting troubleshooting on my private share issue) What level of debugging would you want? Quote Link to comment
dlandon Posted April 7, 2023 Author Share Posted April 7, 2023 On 4/6/2023 at 2:57 PM, dlandon said: I'll set the min version to 6.9.0 on the next release. The latest version will install on Unraid 6.9 and higher. 1 Quote Link to comment
Masterwishx Posted July 10, 2023 Share Posted July 10, 2023 i found that i had sometime my "towername" is gone from the net in Total commander and win explorer in Windows , but if i enter manual i can access, not sure if it is belong to this problem ? Quote Link to comment
Masterwishx Posted July 10, 2023 Share Posted July 10, 2023 but it is very rarely Quote Link to comment
Masterwishx Posted July 31, 2023 Share Posted July 31, 2023 @dlandon can you please say if plugin also help for tower name disappears sometime from my local net ? but if enter manually i can enter. or only for shares ? Quote Link to comment
dlandon Posted July 31, 2023 Author Share Posted July 31, 2023 This plugin has nothing to do with the server name. 1 Quote Link to comment
samaq Posted October 5, 2023 Share Posted October 5, 2023 Good morning, I would like to ask a question, I have unraid as a file server, and an active directory (SAMBA) for user and policy management, will your application work as a user access synchronizer? for example when creating, editing or removing in AD, will unraid synchronize and update the user? Quote Link to comment
dlandon Posted February 15 Author Share Posted February 15 This is not an AD app. It is an extra page in SMB settings that permits making a few adjustments to Unraid's AD. Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.