+--------------------------------------------------------------------------------+
+                            LDAP Status @1573578131                             +
+--------------------------------------------------------------------------------+
LDAP is ENABLED
debug finished in 0 seconds for LDAP Status


+--------------------------------------------------------------------------------+
+                           LDAP Settings @1573578131                            +
+--------------------------------------------------------------------------------+
Hostname:               ipa.t82.co
Base DN:                cn=accounts,dc=t82,dc=co
Bind DN:                uid=cloud,cn=users,cn=accounts,dc=t82,dc=co
Anonymous Bind:         0
User Suffix:            
Group Suffix:           
Password Suffix:        
Machine Suffix:         
SUDO Suffix:            
Use Default Domain:     start_tls
SSL:                    0
Samba Schema:           
debug finished in 0 seconds for LDAP Settings


+--------------------------------------------------------------------------------+
+                         /etc/nsswitch.conf @1573578131                         +
+--------------------------------------------------------------------------------+


group: files sss
hosts: files mdns dns
networks: files
passwd: files sss
shells: files
services: files
protocols: files
rpc: files
sudoers: files
debug finished in 0 seconds for /etc/nsswitch.conf


+--------------------------------------------------------------------------------+
+                           /etc/krb5.conf @1573578131                           +
+--------------------------------------------------------------------------------+

[app_defaults]
            pam = {
                   forwardable = true
                   ticket_lifetime = 86400
                   renew_lifetime = 86400
            }

[lib_defaults]
            dns_lookup_realm = true
            dns_lookup_kdc = true
            ticket_lifetime = 24h
            clockskew = 300
            forwadable = yes

[domain_realm]
            t82.co = T82.CO
            .t82.co = T82.CO
            T82.CO = T82.CO
            .T82.CO = T82.CO

[realms]
            T82.CO = {
                   default_domain = T82.CO
                   kdc = ipa.t82.co
                   admin_server = ipa.t82.co
                   kpasswd_server = ipa.t82.co
            }

[logging]
            default = SYSLOG:INFO:LOCAL7
debug finished in 0 seconds for /etc/krb5.conf


+--------------------------------------------------------------------------------+
+                      /usr/local/etc/smb4.conf @1573578131                      +
+--------------------------------------------------------------------------------+
[global]
    server min protocol = SMB2_02
    server max protocol = SMB3
    interfaces = 127.0.0.1 10.10.9.245
    bind interfaces only = yes
    encrypt passwords = yes
    dns proxy = no
    strict locking = no
    oplocks = yes
    deadtime = 15
    max log size = 51200
    max open files = 1882730
    logging = file
    load printers = no
    printing = bsd
    printcap name = /dev/null
    disable spoolss = yes
    getwd cache = yes
    guest account = nobody
    map to guest = Bad User
    obey pam restrictions = yes
    ntlm auth = no
    directory name cache size = 0
    kernel change notify = no
    panic action = /usr/local/libexec/samba/samba-backtrace
    nsupdate command = /usr/local/bin/samba-nsupdate -g
    server string = FreeNAS Server
    ea support = yes
    store dos attributes = yes
    lm announce = yes
    time server = yes
    acl allow execute always = true
    dos filemode = yes
    multicast dns register = yes
    domain logons = yes
    local master = yes
    idmap config *: backend = tdb
    idmap config *: range = 90000001-100000000
    server role = standalone
    netbios name = CLOUD
    workgroup = WORKGROUP
    security = user
    create mask = 0666
    directory mask = 0777
    client ntlmv2 auth = yes
    dos charset = CP437
    unix charset = UTF-8
    log level = 1
    

[ISOs]
    path = "/mnt/cloud0/ISOs"
    printable = no
    veto files = /.snapshot/.windows/.mac/.zfs/
    writeable = yes
    browseable = yes
    access based share enum = no
    vfs objects = zfs_space zfsacl streams_xattr
    hide dot files = yes
    guest ok = no
    nfs4:mode = special
    nfs4:acedup = merge
    nfs4:chown = true
    zfsacl:acesort = dontcare
    

[Temporary]
    path = "/mnt/cloud0/temporary"
    printable = no
    veto files = /.snapshot/.windows/.mac/.zfs/
    writeable = yes
    browseable = yes
    access based share enum = no
    vfs objects = zfs_space zfsacl streams_xattr
    hide dot files = yes
    guest ok = no
    nfs4:mode = special
    nfs4:acedup = merge
    nfs4:chown = true
    zfsacl:acesort = dontcare
    

[backup]
    path = "/mnt/cloud0/backup"
    printable = no
    veto files = /.snapshot/.windows/.mac/.zfs/
    writeable = yes
    browseable = yes
    access based share enum = no
    vfs objects = zfs_space zfsacl streams_xattr
    hide dot files = yes
    guest ok = yes
    nfs4:mode = special
    nfs4:acedup = merge
    nfs4:chown = true
    zfsacl:acesort = dontcare
    

[backup_snapshots]
    path = "/mnt/cloud0/backup_snapshots"
    printable = no
    veto files = /.snapshot/.windows/.mac/.zfs/
    writeable = yes
    browseable = yes
    access based share enum = no
    vfs objects = zfs_space zfsacl streams_xattr
    hide dot files = yes
    guest ok = yes
    nfs4:mode = special
    nfs4:acedup = merge
    nfs4:chown = true
    zfsacl:acesort = dontcare
    

[images]
    path = "/mnt/cloud0/images"
    printable = no
    veto files = /.snapshot/.windows/.mac/.zfs/
    writeable = yes
    browseable = yes
    access based share enum = no
    vfs objects = zfs_space zfsacl streams_xattr
    hide dot files = yes
    guest ok = no
    nfs4:mode = special
    nfs4:acedup = merge
    nfs4:chown = true
    zfsacl:acesort = dontcare
    

[images2]
    path = "/mnt/cloud0/images2"
    printable = no
    veto files = /.snapshot/.windows/.mac/.zfs/
    writeable = yes
    browseable = yes
    access based share enum = no
    vfs objects = zfs_space zfsacl streams_xattr
    hide dot files = yes
    guest ok = no
    nfs4:mode = special
    nfs4:acedup = merge
    nfs4:chown = true
    zfsacl:acesort = dontcare
    

[nobackup]
    path = "/mnt/cloud0/nobackup"
    printable = no
    veto files = /.snapshot/.windows/.mac/.zfs/
    writeable = yes
    browseable = yes
    access based share enum = no
    vfs objects = zfs_space zfsacl streams_xattr
    hide dot files = yes
    guest ok = no
    nfs4:mode = special
    nfs4:acedup = merge
    nfs4:chown = true
    zfsacl:acesort = dontcare
    

[temp]
    path = "/mnt/cloud0/temp"
    printable = no
    veto files = /.snapshot/.windows/.mac/.zfs/
    writeable = yes
    browseable = yes
    access based share enum = no
    vfs objects = zfs_space zfsacl streams_xattr
    hide dot files = yes
    guest ok = no
    nfs4:mode = special
    nfs4:acedup = merge
    nfs4:chown = true
    zfsacl:acesort = dontcare
    

[winbackup]
    path = "/mnt/cloud0/winbackup"
    printable = no
    veto files = /.snapshot/.windows/.mac/.zfs/
    writeable = yes
    browseable = yes
    access based share enum = no
    vfs objects = zfs_space zfsacl streams_xattr
    hide dot files = yes
    guest ok = no
    nfs4:mode = special
    nfs4:acedup = merge
    nfs4:chown = true
    zfsacl:acesort = dontcare
debug finished in 0 seconds for /usr/local/etc/smb4.conf


+--------------------------------------------------------------------------------+
+                     Kerberos Tickets - 'klist' @1573578131                     +
+--------------------------------------------------------------------------------+
klist: No ticket file: /tmp/krb5cc_0
debug finished in 0 seconds for Kerberos Tickets - 'klist'


+--------------------------------------------------------------------------------+
+                 /usr/local/etc/openldap/ldap.conf @1573578131                  +
+--------------------------------------------------------------------------------+

URI ldap://ipa.t82.co
BASE cn=accounts,dc=t82,dc=co
SSL start_tls
TLS_CACERT /etc/certificates/CA/ipa-root-ca.crt
TLS_REQCERT allow
debug finished in 0 seconds for /usr/local/etc/openldap/ldap.conf


+--------------------------------------------------------------------------------+
+                   /usr/local/etc/sssd/sssd.conf @1573578131                    +
+--------------------------------------------------------------------------------+
[sssd]
config_file_version = 2
full_name_format = %2$s\%1$s
re_expression = (((?P<domain>[^\\]+)\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?P<name>[^@\\]+)$))
services = nss,pam
domains = IPA


[nss]

[pam]

[domain/IPA]
description = IPA
enumerate = true
cache_credentials = true
id_provider = ldap
auth_provider = ldap
chpass_provider = ldap
ldap_schema = rfc2307
ldap_force_upper_case_realm = true
use_fully_qualified_names = false
ldap_uri = ldap://ipa.t82.co
ldap_search_base = cn=accounts,dc=t82,dc=co
ldap_user_search_base = cn=accounts,dc=t82,dc=co?subtree?(objectclass=posixAccount)
ldap_group_search_base = cn=accounts,dc=t82,dc=co?subtree?(objectclass=posixGroup)
tls_reqcert = allow
ldap_tls_cacert = /etc/certificates/CA/ipa-root-ca.crt
ldap_id_use_start_tls = true
ldap_default_bind_dn = uid=cloud,cn=users,cn=accounts,dc=t82,dc=co

debug finished in 0 seconds for /usr/local/etc/sssd/sssd.conf


+--------------------------------------------------------------------------------+
+                 /etc/directoryservice/LDAP/config @1573578131                  +
+--------------------------------------------------------------------------------+
ldap_basedn=cn=accounts,dc=t82,dc=co
ldap_binddn=uid=cloud,cn=users,cn=accounts,dc=t82,dc=co
ldap_anonbind=0
ldap_hostname=ipa.t82.co
ldap_host=ipa.t82.co
ldap_port=389
ldap_usersuffix=
ldap_groupsuffix=
ldap_machinesuffix=
ldap_passwordsuffix=
ldap_sudosuffix=
ldap_krb_realm=
ldap_krb_kdc=
ldap_krb_admin_server=
ldap_krb_kpasswd_server=
ldap_keytab_principal=
ldap_keytab_file=
ldap_ssl=start_tls
ldap_has_samba_schema=0
ldap_use_default_domain=0
ldap_certfile=/etc/certificates/CA/ipa-root-ca.crt
ldap_idmap_backend=ldap
ldap_timeout=10
ldap_dns_timeout=10
debug finished in 0 seconds for /etc/directoryservice/LDAP/config


+--------------------------------------------------------------------------------+
+                      ldaptool get config_file @1573578131                      +
+--------------------------------------------------------------------------------+
ldap_basedn=cn=accounts,dc=t82,dc=co
ldap_binddn=uid=cloud,cn=users,cn=accounts,dc=t82,dc=co
ldap_anonbind=0
ldap_hostname=ipa.t82.co
ldap_host=ipa.t82.co
ldap_port=389
ldap_usersuffix=
ldap_groupsuffix=
ldap_machinesuffix=
ldap_passwordsuffix=
ldap_sudosuffix=
ldap_krb_realm=
ldap_krb_kdc=
ldap_krb_admin_server=
ldap_krb_kpasswd_server=
ldap_keytab_principal=
ldap_keytab_file=
ldap_ssl=start_tls
ldap_has_samba_schema=0
ldap_use_default_domain=0
ldap_certfile=/etc/certificates/CA/ipa-root-ca.crt
ldap_idmap_backend=ldap
ldap_timeout=10
ldap_dns_timeout=10
debug finished in 3 seconds for ldaptool get config_file


+--------------------------------------------------------------------------------+
+                    LDAP Users - 'getent passwd' @1573578134                    +
+--------------------------------------------------------------------------------+
root:$6$ovvEJ3gl9ojSx6MV$416/5Q0taWq3/N8lFyfkC1MmN0F7L61NM/cxS8y.rk25CCwIOMiwQCRY9yh/pt7E6k7yftLO3XmwQ.aWBryPh1:0:0:root:/root:/bin/csh
daemon:*:1:1:Owner of many system processes:/root:/usr/sbin/nologin
operator:*:2:5:System &:/:/usr/sbin/nologin
bin:*:3:7:Binaries Commands and Source:/:/usr/sbin/nologin
tty:*:4:65533:Tty Sandbox:/:/usr/sbin/nologin
kmem:*:5:2:KMem Sandbox:/:/usr/sbin/nologin
games:*:7:13:Games pseudo-user:/:/usr/sbin/nologin
news:*:8:8:News Subsystem:/:/usr/sbin/nologin
man:*:9:9:Mister Man Pages:/usr/share/man:/usr/sbin/nologin
sshd:*:22:22:Secure Shell Daemon:/var/empty:/usr/sbin/nologin
smmsp:*:25:25:Sendmail Submission User:/var/spool/clientmqueue:/usr/sbin/nologin
mailnull:*:26:26:Sendmail Default User:/var/spool/mqueue:/usr/sbin/nologin
bind:*:53:53:Bind Sandbox:/:/usr/sbin/nologin
proxy:*:62:62:Packet Filter pseudo-user:/nonexistent:/usr/sbin/nologin
_pflogd:*:64:64:pflogd privsep user:/var/empty:/usr/sbin/nologin
_dhcp:*:65:65:dhcp programs:/var/empty:/usr/sbin/nologin
uucp:*:66:66:UUCP pseudo-user:/var/spool/uucppublic:/usr/local/libexec/uucp/uucico
pop:*:68:6:Post Office Owner:/nonexistent:/usr/sbin/nologin
www:*:80:80:World Wide Web Owner:/nonexistent:/usr/sbin/nologin
nobody:*:65534:65534:Unprivileged user:/nonexistent:/usr/sbin/nologin
avahi:*:200:200:avahi user:/nonexistent:/usr/sbin/nologin
messagebus:*:201:201:messagebus user:/nonexistent:/usr/sbin/nologin
ftp:*:14:14::/nonexistent:/bin/csh
auditdistd:*:78:77:Auditdistd unprivileged user:/var/empty:/usr/sbin/nologin
hast:*:845:845:HAST unprivileged user:/var/empty:/usr/sbin/nologin
ladvd:*:79:78:ladvd user:/var/empty:/usr/sbin/nologin
webdav:*:666:666:WebDAV Anonymous User:/var/empty:/usr/sbin/nologin
media:*:8675309:8675309:Media User:/var/empty:/usr/sbin/nologin
consul:*:469:469:Consul Daemon:/var/tmp/consul:/usr/sbin/nologin
nomad:*:472:472:Nomad Daemon:/var/tmp/nomad:/usr/sbin/nologin
minio:*:473:473:Minio Daemon:/var/tmp/minio:/usr/sbin/nologin
netdata:*:302:302:NetData Daemon:/var/cache/netdata:/usr/sbin/nologin
backup:$6$WtFK372VYPPtFFck$FvrEpfJaTnJ48Muez5X8ZSbsbHMJl.5nlCwrY8Zxa4HPVEWXBbHBbhAu4Pcdasz832LjNodcBgOrzWAOzzT3a.:1000:1000:backup:/nonexistent:/bin/csh
Claroty-Admin:$6$Wnu2lE0RhXIImzSB$4ZvAEOYQNh4QEbSmOze9DgwPxlDKuE.PRl1xlKtZtm50wUmqM0VvQo8BQ3iIbj6fPPd908e8HEiaHX9iJ2Ggg.:1001:1001:Claroty-Admin:/nonexistent:/usr/local/bin/bash
nslcd:*:389:389:Nslcd Daemon:/var/tmp/nslcd:/usr/sbin/nologin
openstack:$6$1rk5seiKxr3UC0ng$el63IsgsxYkSkElDgUaWteJ/5akgmTGg3GzZEZwq647KBKIWRVjMYaRYH3jHJlLxpaWodt2mD8LZiR.mkHFNo/:1002:1002:openstack:/nonexistent:/usr/sbin/nologin
cinder:*:64061:1003:cinder:/nonexistent:/usr/sbin/nologin
nova:*:64060:1004:nova:/nonexistent:/usr/sbin/nologin
vsphere_active_tests:*:1516600148:1516600148:Active Active:/home/net/vsphere_active_tests:/bin/bash
dani_conductor:*:1516600058:1516600058:dani_conductor dani_conductor:/home/net/dani_conductor:/bin/bash
internals_user:*:1516600125:1516600125:Internals User:/home/net/internals_user:/bin/bash
administrator:*:1516600017:1516600017:Admin Admin:/home/administrator:/bin/bash
vsphere_new:*:1516600043:1516600043:vSphere VMware:/home/net/vsphere_new:/bin/bash
automation:*:1516600071:1516600071:Automation Automation:/home/net/automation:/bin/bash
conductor:*:1516600020:1516600020:conductor conductor:/home/net/conductor:/bin/bash
daniela.k:*:1516600131:1516600131:Daniela Nicola Kolton:/home/net/daniela.k:/bin/bash
elhanan.b:*:1516600156:1516600156:Elhanan Ballas:/home/net/elhanan.b:/bin/bash
michael.l:*:1516600102:1516600102:Michael Lagana:/home/net/michael.l:/bin/bash
stephen.s:*:1516600085:1516600085:Stephen Santee:/home/net/stephen.s:/bin/bash
zehavit.g:*:1516600120:1516600120:Zehavit Grinwld:/home/net/zehavit.g:/bin/bash
+--------------------------------------------------------------------------------+
+                    LDAP Groups - 'getent group' @1573578134                    +
+--------------------------------------------------------------------------------+
wheel:*:0
daemon:*:1
kmem:*:2
sys:*:3
tty:*:4
operator:*:5:uucp
mail:*:6
bin:*:7
news:*:8
man:*:9
games:*:13
ftp:*:14
staff:*:20
sshd:*:22
smmsp:*:25
mailnull:*:26
guest:*:31
bind:*:53
proxy:*:62
authpf:*:63
_pflogd:*:64
_dhcp:*:65
uucp:*:66
dialer:*:68
network:*:69
audit:*:77
www:*:80
nogroup:*:65533
nobody:*:65534
avahi:*:200
messagebus:*:201
hast:*:845
ladvd:*:78
webdav:*:666
media:*:8675309
consul:*:469
nomad:*:472
minio:*:473
netdata:*:302
backup:*:1000
Claroty-Admin:*:1001
nslcd:*:389
openstack:*:1002
cinder:*:1003
nova:*:1004
vsphere_active_tests:*:1516600148
dani_conductor:*:1516600058
internals_user:*:1516600125
vsphere_admins:*:1516600044
administrator:*:1516600017
debug finished in 0 seconds for LDAP Groups - 'getent group'


eval: cache_func: not found
