<div dir="ltr"><div><div>Interesting. Using the trailing "." for an absolute FQDN works. </div>Any hints on how to make it work without the full FQDN? </div>I assume it's probably a kerberos related issue? <div><div><div><div class="gmail_extra"> <div class="gmail_quote">On Wed, May 13, 2015 at 8:10 AM, Dominik Hassler <<a href="mailto:hasslerd@gmx.li" target="_blank">hasslerd@gmx.li</a>> wrote: <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Did you try to end your FQDN with a trailing dot? like: '<a href="http://DATA.HOME.example.net" target="_blank">DATA.HOME.example.net</a>.' in your example? Gesendet: Mittwoch, 13. Mai 2015 um 13:40 Uhr Von: "Matthew McGee" <<a href="mailto:mcgee@sci-world.net">mcgee@sci-world.net</a>> An: <a href="mailto:omnios-discuss@lists.omniti.com">omnios-discuss@lists.omniti.com</a> Betreff: [OmniOS-discuss] CIFS Issues I am attempting to migrate my CIFS shares from FreeNAS to OmniOS. I have attempted a number of different installs and for now I am working in a VM for speed of reboots and testing. I have Windows 2012 AD, and a number of Mac OSX & Windows 7 clients. Server name = DATA Domain <a href="http://HOME.example.net" target="_blank">HOME.example.net</a>[<a href="http://HOME.example.net" target="_blank">http://HOME.example.net</a>] I install the system, configure the IP of <a href="http://10.0.1.230/8[http://10.0.1.230/8]" target="_blank">10.0.1.230/8[http://10.0.1.230/8]</a>, set and test route, create a base boot environmentand a CIFS boot environment. Reboot into the CIFS boot environment. I have attempted going straight to Napp-it and I have tried manual initialization as follows: verify /etc/hosts and /etc/nodename entries Verify AD DNS verify system is using AD DNS server only nslookup to verify forward & reverse entries are functional and resolve on the host pkg install kerberos-5# Tried with and without this setting sharectl set -p ddns_enable=true klcient -T ms_ad kinit Administrator klist & verify output svcadm enable -r smb/server smbadm join -u Administrator Successful join smbadm list shows my domain. Verified kerberos delegation is allowed on the AD side. vi /etc/nsswitch.conf and add "ad" to passwd & group lines Have also tried adding smb line to pam Both of the following produce valid output touch foo && chown <a href="mailto:myuser@HOME.example.net">myuser@HOME.example.net</a>[<a href="mailto:myuser@HOME.example.net">myuser@HOME.example.net</a>] && ls -l foo id myuser@HOME # Although this doesn't show all my groups create a zfs filesystem and corresponding share called documents root@data:/root# smbutil view //myuser@DATA Password: Share Type Comment ------------------------------- c$ disk Default Share documents disk IPC$ IPC Remote IPC vss$ disk VSS 4 shares listed from 4 available When I attempt to access from a Windows 7 host, I see the following: \\DATA is not accessible. You might not have permission to use this network resource. Contact the administrator of this server to find out if you have access permissions. The account is not authorized to log in from this station. \\10.0.1.230 - Works, I can set permissions, read & write files Neither the netbios nor FQDN function, but it functions by IP. Samba on FreeNAS or Fedora works without issues, but I need working FC and comstar will do that for me. I cannot seem to get the CIFS piece working and it is the one thing preventing me from moving forward. Any assistance would be appreciated. I hate asking for help but I've been working on this every night for a month and I know there must be one little thing I am missing, maybe a GPO?_______________________________________________ OmniOS-discuss mailing list <a href="mailto:OmniOS-discuss@lists.omniti.com">OmniOS-discuss@lists.omniti.com</a> <a href="http://lists.omniti.com/mailman/listinfo/omnios-discuss[http://lists.omniti.com/mailman/listinfo/omnios-discuss]" target="_blank">http://lists.omniti.com/mailman/listinfo/omnios-discuss[http://lists.omniti.com/mailman/listinfo/omnios-discuss]</a> </blockquote></div> </div></div></div></div></div>