Quantcast
Channel: User Authentication
Viewing all 1177 articles
Browse latest View live

root user missing /root/.ssh/known_hosts

$
0
0
My root user was first missing the entire /.ssh directory, but was able to create that by adding a key from
/etc/ssh/ssh_host_rsa_key.pub via the GUI in the FreeNAS under users for root. Now the folder .ssh and authorized_keys folders are created, but, I still do not have a known_hosts folder.

The problem comes when running a shell script that uses rsync to backup files inside /mnt/ to an external box, on the same network. When ever I try to run the rsync command and I agree to the...

root user missing /root/.ssh/known_hosts

HOWTO: FreeNAS with Open Directory in Mac OS X environments

$
0
0
Hi,

here's a write-up about how to integrate a FreeNAS box into an Open Directory environment, including single-sign on support. I struggled a bit to make this work, this howto is intended for my own documentation and as reference for others who try to achieve the same thing. I believe that this should ultimately be included as a feature into the GUI.

For reference, here is my setup:
- I have a Mac mini that runs macOS Server. This machine provides directory and authentication...

HOWTO: FreeNAS with Open Directory in Mac OS X environments

How to kerberize CIFS?

$
0
0
Hi,

I have created a fresh install of FreeNAS 9.10. I am using a Mac OS X environment that has a couple of Mac clients as well as one Mac OS X server that also hosts Open Directory. So far, I got FreeNAS to connect to the Open Directory server. I am now trying to kerberize CIFS in order to enable single sign-on.

I added a principal and corresponding key tab file on the Mac OS X server but I don't know where to put it on FreeNAS. In the LDAP configuration I can add a key tab file to connect...

How to kerberize CIFS?

Authentication Failure when Connecting to Mutual CHAP iSCSI on Windows. No Problems on linux.

$
0
0
Hi,

I am trying to use mutual chap auth with iSCSI but it won't work on windows. I keep getting Authentication Failure when I try to discover target.
I used the steps outlined in offical iSCSI video: https://www.youtube.com/watch?v=HvyOWlFISdo (windows part starts at about 10 minute mark)

Do I need to enter peer or user secret under configuration tab and clicking the CHAP... button? I tried both and still no luck.

I changed the authentication to None and it gave the same error....

Authentication Failure when Connecting to Mutual CHAP iSCSI on Windows. No Problems on linux.

9.10.1-u2 AD problem - users/groups not showing in share permission or users/groups list

$
0
0
I'm building a new Freenas system and having problems with AD integration with 9.10.1 and 9.10.1-U2 versions. I have an old 9.1.1 system running and integrated just fine right now, so I know I'm doing some things correctly. AD is running Server 2008R2 with updates/patches, domain functional level is 2008R2.

Here's what I have.

The 9.10 machine is joined to the domain and wbinfo gives me a list of users and groups when I check it in the shell. After I make a windows share, I try to type the...

9.10.1-u2 AD problem - users/groups not showing in share permission or users/groups list

How to setup CIFS Share for Windows Permission Access

$
0
0
Hello all, I am having some issues, either technical or my own stupidity regarding permissions for accessing shares through CIFS. If I can explain what I am trying to do I hope that someone can tell me where I am going wrong in my logic. Running FreenNAS 9.10

I have one data set called DataPool that has 10 folders as part of the data set. The dataset permissions are set to Windows with my user ID "admin" as the owner and the group ID "Group" I have created a CIFS share to DataPool and I am...

How to setup CIFS Share for Windows Permission Access

Kerberos, CIFS, AFP and NFS

$
0
0
Hi,

I am on the current stable train and just wondering, if anybody could post a step-by-step guide for

- integrating AFP and Kerberos
- integrating NFS and Kerberos

Environment: FreeNAS is the one and only Domain Controller (Role: Active Directory Domain Controller). User authentication and CIFS is working great - from Windows PCs and Mac (OS X 10.10)

My focus is on OS X. My Mac is still asking for username and password instead of using Kerberos, if I try to connect through AFP.

NFS...

Kerberos, CIFS, AFP and NFS

FreeNAS 9.10 + FreeIPA 4.2.0 (Kerberos) - NFSv4 Mount Fail incorrect mount option


Can't join to Samba AD DC

$
0
0
Recently my FreeNAS Mini (FreeNAS-9.10-STABLE-201605021851) won't join to my Samba AD DC anymore and will spit out the following message:
Code:
{'info': 'BindSimple: Transport encryption required.', 'desc': 'Strong(er) authentication required'}.


Screenshot of this is attached to this post.

My Samba AD DC (Version 4.2.10) is running Debian Jessie and from what I understand so far, it's not playing nice because of a security vulnerability that was patched in Samba. I tried switching...

Can't join to Samba AD DC

Windows can't join FreeNAS Samba AD DC

$
0
0
I think the LDAP Server doesn't work well, because when i try to join the Domain with my Windows 7 Pro Client then it show's me that he found the LDAP Server DNS but can't Connect to it.

Anyone who can help Me pls?

disable password login and sudo?

$
0
0
I understand why the "disable password login" box is greyed out when the option "permit sudo" is checked under a particular user because when one performs sudo, a password must be entered.

however how does this work for the root account? how do you allow the root account to have sudo privileges (or is that inherent already?) but not allow SSH login with a password (only public/private key).

also, if you check "disable password login" for the root user, doesn't take away the GUI password...

disable password login and sudo?

9.10.1-u2 - smb stops working with AD enabled

$
0
0
i did some basic troubleshooting to see if smb shares are browsable with AD off and they are, as soon as i enable AD they turn off and the entire server sharesbecomes unavailable and unbrowsable.

I am using win server 2012 R2 with unix extensions, it used to work on 9.3, not sure whats wrong in my config. I validated that my nas joined AD is in the right OU for the PCs.. This is my freenas config.

View attachment 14284

Only root can access my FTP server - I can't.

$
0
0
I have created an FTP server and pointed that to a dataset, where I'm (Kim) the owner.

When I try to login to my FTP server, as (Kim), I can't get access. But when I use the root user, it works just fine.

Anyone knows what could be wrong ?

- Kim -

LDAP - How to get certificate?

$
0
0
FreeNAS seems to be forcing me to provide some sort of certificate to be used in conjunction with a connection to an LDAP server. While I can change the controls on the LDAP server to allow TCP/389 easily enough (to avoid the LDAPS/636 certificate-based connection), FreeNAS still wants a cert to use with TLS. Every other networking type appliance out there has gone or is going the direction of not requiring the admin to jump through hoops when setting these kinds of connections up, so I am...

LDAP - How to get certificate?

FreeNAS 9.3 to 9.10 LDAP lost and SMB stopped working

$
0
0
Hello, dear FreeNAS forum team.
I had version 9.3 STABLE 201605170422 and updated it to the latest FreeNAS-9.10.1-U2 (f045a8b) version using GUI.
Afterwards, I couldn't access my CIFS share. I found that if LDAP is enabled - I can't start CIFS service.

I backed up my configuration and did a clean install of 9.10.
Then I've imported my config and still getting errors.

I'm not an advanced user of FreeBSD so please would you explain what should I do to get it working again?
LDAP is on...

FreeNAS 9.3 to 9.10 LDAP lost and SMB stopped working

AD/FREEIPA/FREENAS, who's up for the challenge?

$
0
0
Hey all,

So here is the situation, We have a windows 2012 R2 RODC that has a one way trust with freeIPA 4.3 server. I need to be able to authenticate my CIFS/SMB share on Freenas 9.10 with either of these using the windows domain creds. (ldap to AD can also be used). The caveat is that the machines accessing the shares could be window/linux but will NOT be joined to the windows domain or the ipa domain.

If anyone has succeeded in accomplishing this or know if its even possible please let...

AD/FREEIPA/FREENAS, who's up for the challenge?

User Add - Defaults ?

$
0
0
I have newly installed FreeNAS 9.10.

How to change default valuses in Account -> Users -> Add User (user creation)?
I have by default:
Create Home Directory In: /nonexistent
Shell: csh
Microsoft Account: 'empty'

I want to change this settings to another - for example:
Create Home Directory In: /mnt/DATA
Shell: nologin
Microsoft Account: 'checked'

Web Gui Login Problem

$
0
0
Hi,

I hope you can help a FreeNAS newbie. A few weeks ago I installed FreeNAS-9.10.1-U2 (f045a8b) on a Thumb drive to test it on my system:
Motherboard: Supermicro A1SAi-2750F
RAM: 4x 8GB Kingston ECC
HDD: 4x WD-Red 2TB (RaidZ2, encrypted)
UPS: APC BR900G-GR

Until yesterday, everything works fine, but today I can't login to the Web-Gui. My thought was the password change for user root. I used IPMI to get a shell and changed the root password to something simple. Now I can login via...

Web Gui Login Problem

Best folder to save rsync –password-file

$
0
0
Hey all,

I'm sorry if I haven't found the other thread(s), but I've been searching so many threads that I'm literally going cross eyed... I've seen threads mentioning the :–password-file=", but not in a context that answered my specific question.....

While FreeNAS has been running fantastic, I'm still dealing with the "physiological trust issues"... I've been a Windoze user all my life, so I'm still having trust issues with the ZFS. Not to mention that *just in case* of a FreeNAS...

Best folder to save rsync –password-file

Freenas 9.10 not syncing with Server 2012 R2 AD at boot

$
0
0
Freenas 9.10 is not hooking up to my Server 2012 R2 after a reboot. I watched the screen data closely today and noticed that 9.1 had tried to join the domain but failed. This was because the daemons required for it to talk to AD were not running at that point. A few minutes later the system figured it out and then fired up the daemons. When i went into the web administration UI AD was not enabled and had to be enabled once again. I am wondering why the appropriate daemons are not being...

Freenas 9.10 not syncing with Server 2012 R2 AD at boot
Viewing all 1177 articles
Browse latest View live