similar to: Upgrading samba.schema post 3.0.6

I installed samba 3.0.6 today. I had to upgrade samba.schema in openldap as well to include sambaPasswordHistory and sambaLoginTime, otherwise certain things would not work (e.g. smbpasswd or users changing passwords) openldap failed to start because both attributes have the same OID, ...2.1.50. In order to get started anyway, I changed the sambaPasswordHistory OID to ...2.1.52 (which, in my

Hi All. Trying to use the file /samba-3.0.6/examples/LDAP/samba.schema I found that it has duplicate entries for atributetype > grep 1.3.6.1.4.1.7165.2.1.50 /usr/local/etc/openldap/schema/* /usr/local/etc/openldap/schema/samba.schema.new:attributetype ( 1.3.6.1.4.1.7165 .2.1.50 NAME 'sambaLogonHours' /usr/local/etc/openldap/schema/samba.schema.new:attributetype ( 1.3.6.1.4.1.7165

Hi people: I have a LDAP server running OpenLDAP that serves authentication purposes to services like ftp, imap, openvpn, etc. Now I implemented a Samba PDC based on LDAP. I did the configuration with Samba 3.2.5 on Debian Etch and smbldap-tools. I was able to join a WinXP workstation to my domain without problems but I can't login with any existing user in my LDAP directory. Then I added my

I am trying to turn on password history using an ldap backend. I can see the sambaPasswordHistory entry set to all "0"s in Ldap. I tried to turn on password history with pdbedit -P "password history" -C 3 and get back that it was set: [root]# pdbedit -P "password history" account policy value for password history is 3 However, when I try to reset a user password

Hello everyone, I am operating a migration of samba from 3.0.24 (mysql passdb backend) to 3.5.6 (openldap passdb), samba working as a domain controller (PDC) and file share. The main challenge is to provide a seamless migration for users. For this new version, I am using smbldap-tools 0.9.6, nss_ldap, openldap 2.4. Everything run on FreeBSD 8.2. To get used to samba, I have managed to make

Hello samba users, Samba 3.0.6 comes with new samba.schema with new attributies but attributetype sambaPasswordHistory have the same OID with attributetype sambaLogonHours and slapd failed to start attributetype ( 1.3.6.1.4.1.7165.2.1.50 NAME 'sambaLogonHours' DESC 'Logon Hours' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{42}

Hey Samba list, First a brief comment regarding my background and situation. This is my first time posting to this list. I've been asked to resolve a Samba authentication issue, but I have next to no experience using Samba. Unfortunately no one else here knows how to use it either; we're operating with an inherited environment from a sysadmin who left minimal documentation, and we have

Hi all, I've been using samba for a few years now on a couple of file servers with a tdbsam backend for our user accounts. We use openldap for the vast majority of our identity management, so I would love to be able to tie into this. We recently started using sambaNTPassword in openldap for radius authentication, so this is populated for most of our users now. >From reading through

Hi, This one is for the samba team i think... Intro... Im using Sun One Directory Server 5.2 as my LDAP, so i used the samba-schema-netscapeds5.x schema, also samba 3.0.8. I tried to change my "sambapassword" on a windows client, however i was getting errors saying i didnt have permission even tho sambaPwdCanChange was set to 1, so i looked in the log.smb and found the error was a

Hey List, I'm using Samba 3.0.24 and OpenLDAP 2.3.30 (with the ppolicy and smbk5pwd overlays). While testing Samba as a PDC with an OpenLDAP backend, I've hit a snag on password change. I currently have the following in my smb.conf related to password changes: passwd program = /usr/bin/ldappasswd -x -W -S -D uid=%u,ou=Users,dc=example,dc=com passwd chat = "*Enter

Hello all, I've some problem with my new Samba / Ldap PDC : I cannot join the Domain from Windows (XP) computers Okay, all configuration seem to be okay on the serveur, I can create Users,Computers for samba (and unix) I put here some config file, if someone can help me, I'm on since 5 days, it's my first PDC so I use the tutorial from Idealx (smbldap-howto) getent passwd give me

hi, i just do some tests with a fresh compiled samba 3.0.23a. trying to authenticate against PAM with pam_winbind gives: Aug 1 09:59:21 humevo36 pam_winbind[27853]: pam_winbind: pam_sm_authenticate (flags: 0x0000) Aug 1 09:59:23 humevo36 pam_winbind[27853]: Verify user `gasch' Aug 1 09:59:23 humevo36 pam_winbind[27853]: enabling cached login flag Aug 1 09:59:23 humevo36

Hi all! We are using 1 Samba PDC and 2 bdc (Version 3.0.15pre3-SVN-build-UNKNOWN-PS-SuSE) with openldap2-2.2.6-37.38 on SLES 9. New users setup ok and first logon password change works. Because of HIPAA we need the passwords to change every 30 days however this isn't happening. I thought that I had this working once upon a time while I was testing and getting ready for production but

Hi ! I'm running a samba domain controler under rhel 5. It's version 3.0.33-3.7.el5. I've also installed a ldap server to store users and groups and so on. When I try a pdbedit -v david, I get the following : Unix username: david NT username: david Account Flags: [U ] User SID: S-1-5-21-215069222-2822928016-2390355089-1016 Finding user

For whatever reason I am trying to configure the following environment and am running into trouble towards the end of things. Hopefully I am overlooking something basic, any assistance would be greatly appreciated. 1. Redhat AS 2.1 server running Netscape Directory Server 5.2 2. RHEL3 system using Samba 3.0.8 acting as a PDC integrated with the Netscape LDAP server 3. Win2k/XP clients as

Greetings All. First let me introduce my situation Machine1: Pdc Samba + OpenLDAP(master) Machine2: Bdc Samba + OpenLDAP(slave) LDAP stores Samba and POSIX information for each user. Case1: I login to Machine1 and invoke smbpasswd. I change my passwords (samba and posix without any problem). In next few seconds they get propagated to Machin2 wher I can login with new credentials. ldap log

Hello guys! I'm using samba 3.2.4 (binaries from samba.org) on SLES9+sp3. I am building a PDC with LDAP support (i am attaching my config files), I'm also using ldapsam:trusted and ldapsam:editposix. Although I am setting the account lock after 3 failed tries in usrmgr, and verified that the parameters are actually set in the LDAP, no locking occurs. I started thinking that it was my

Hello! SuSE Linux 10.0 Samba 3.0.20b OpenLDAP backend IDEALX scripts v0.9.2 Windows XP SP2 client Everything seems to be working except when changing your password from the Windows client (CTRL-ALT-DEL and "Change password"). When I try to change the password I get the following error message. "The User name or old password is incorrect. Letters in passwords must be typed

Hi list, I'm trying to set up an OpenLDAP server to provide the goodies for samba and postfix running on the same box - SUSE 9.2 Pro The trouble start fairly early, unfortunately. I'm following the idealx.org documentation, which suggest using samba.schema as well as inetorgperson.schema and nis.schema. (John Terpstra's book suggest this as well). There seems to be a conflict

Hi Harry, sadmin and tadmin are both admin logins. I was trying to domain join with both. sadmin is in ldap The olcdbindex.ldif gave this error SASL/EXTERNAL authentication started SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth SASL SSF: 0 modifying entry "olcDatabase={1}hdb,cn=config" ldap_modify: Other (e.g., implementation specific) error (80) additional