Samba update breaks AD authentication

We’ve got a Samba server running on a CentOS 6.7 server. As part of the CentOS 6.7 upgrade a new Samba package was also installed. The packages were specifically: samba-common-3.6.23-20.el6.x86_64 samba-winbind-clients-3.6.23-20.el6.x86_64 samba-client-3.6.23-20.el6.x86_64 samba4-libs-4.0.0-66.el6_6.rc4.x86_64 samba-winbind-3.6.23-20.el6.x86_64 samba-3.6.23-20.el6.x86_64 Our Samba server is tied into a Windows 2003 Domain and we use groups to provide access to the shares … Read more

Powershell: Script to notify when users change their passwords

We’re about to start a domain migration due to some applications we have tied into Active Directory and that we are taking a phased approach to migrating we have to have user objects active in the new domain while users are still logging into the old domain. We’ve disabled password expiry during the migration and … Read more

KB3002657 breaks everything!

Update: 2015-03-20 09:24 PST – Thank you Didi for informing us that Microsoft has released two updated hotfixes KB3002657-v2 and KB3033395-v2 that shouldn’t cause this problem. I have not had a chance to try these patches yet. Update: 2015-03-12 09:45 PST – Now that I’ve had a chance to sleep I’ve updated this post to … Read more

Proxy Settings pushed by GPO not applying to Windows 7 and Internet Explorer 9

I support a Windows 2003 Active Directory Domain, until today only Windows XP clients and Internet Explorer 8. We use a proxy server to filter and monitor the internet and we push the configuration for that proxy server via Group Policy. Our current GPO works perfectly with Windows XP and Internet Explorer 8. Today we … Read more

How to configure Mediawiki to authenticate against Active Directory on CentOS

Last modified: [last-modified] This assumes you’ve got a working install of MediaWiki already and just need to tie it into Active Directory. 1. Make sure php-ldap is installed yum install php-ldap.x86_64 2. Configure OpenLDAP on CentOS to ignore your domain controllers certificate validity. We all trust our own domain controllers don’t we? vim /etc/openldap/ldap.conf # … Read more