similar to: After migrating users to ldap, passwords still stored in passdb.tdb

I'm just migrating a whole samba-installations ffrom old 2.2 to 3.0 with LDAP. I was successfully able to migrate all useraccounts with smbldap-useradd but now I'm stuck with the machine-accounts. All machines are part of the domain and they should be able to logon the new server without noticing any difference. I can add them with smbldap-useradd -w but the resulting ldap-entry does

Hello, Im using samba-3.0.0rc4 with ldapsam. adding users works fine but when i try to add a machine account i alway get this error: pdc:/usr/bin# pdbedit -v -a -m -u test_pc ldapsam_modify_entry: Failed to add user dn= uid=test_pc$,ou=Systems,dc=ovid,dc=evva,dc=com with: Object class violation object class 'sambaSamAccount' requires attribute 'sambaSID'

Hello everyone, I am operating a migration of samba from 3.0.24 (mysql passdb backend) to 3.5.6 (openldap passdb), samba working as a domain controller (PDC) and file share. The main challenge is to provide a seamless migration for users. For this new version, I am using smbldap-tools 0.9.6, nss_ldap, openldap 2.4. Everything run on FreeBSD 8.2. To get used to samba, I have managed to make

Hi people: I have a Debian etch stable with the latests updates. When I try to join a computer to the domain I create the machine on the ldap and its created with the following atributes: dn:cn=test$,ou=Machines,dc=domain,dc=org objectClass: top objectClass: inetOrgPerson objectClass: posixAccount uidNumber: 3123 uid: test$ cn: test$ sn: test$ gidNumber: 604 homeDirectory: /dev/null loginShell:

Hello all, I've some problem with my new Samba / Ldap PDC : I cannot join the Domain from Windows (XP) computers Okay, all configuration seem to be okay on the serveur, I can create Users,Computers for samba (and unix) I put here some config file, if someone can help me, I'm on since 5 days, it's my first PDC so I use the tutorial from Idealx (smbldap-howto) getent passwd give me

Hi ! I'm running a samba domain controler under rhel 5. It's version 3.0.33-3.7.el5. I've also installed a ldap server to store users and groups and so on. When I try a pdbedit -v david, I get the following : Unix username: david NT username: david Account Flags: [U ] User SID: S-1-5-21-215069222-2822928016-2390355089-1016 Finding user

For whatever reason I am trying to configure the following environment and am running into trouble towards the end of things. Hopefully I am overlooking something basic, any assistance would be greatly appreciated. 1. Redhat AS 2.1 server running Netscape Directory Server 5.2 2. RHEL3 system using Samba 3.0.8 acting as a PDC integrated with the Netscape LDAP server 3. Win2k/XP clients as

Hi all, I've been using samba for a few years now on a couple of file servers with a tdbsam backend for our user accounts. We use openldap for the vast majority of our identity management, so I would love to be able to tie into this. We recently started using sambaNTPassword in openldap for radius authentication, so this is populated for most of our users now. >From reading through

On Wed, 2017-03-29 at 15:06 +0100, Rowland Penny via samba wrote: > The users password is stored in an hidden attribute which is supposed > to be unreadable, but you can read it on a Samba DC, but it is > heavily > encoded. You may be able to obtain some of the users password with > pdbedit, but can you get them all ? To be clear, by design pdbedit can obtain all the unicodePwd

Hello, I try to install a PDC with Samba 3.0.23 and openldap 2.3.27. I can join the domain with a win-xp-Machine, the User-Accounts are in ldap and looks like the following: dn: uid=ds,ou=people,dc=marco,dc=de userPassword: {crypt}RVp32Kd9mkUek sambaLogonTime: 0 sambaLogoffTime: 0 sambaPwdLastSet: 0 sambaProfilePath: \\homedirs\ds\.ntprofile sambaPwdCanChange: 0 sambaSID:

Greetings All. First let me introduce my situation Machine1: Pdc Samba + OpenLDAP(master) Machine2: Bdc Samba + OpenLDAP(slave) LDAP stores Samba and POSIX information for each user. Case1: I login to Machine1 and invoke smbpasswd. I change my passwords (samba and posix without any problem). In next few seconds they get propagated to Machin2 wher I can login with new credentials. ldap log

Hello, I still can't figure out why my users' passwords are expiring. Ever since we switched to LDAP, passwords expire every 14 days. Here is an example LDAP user entry: version: 1 # LDIF Export for: uid=sgoodrich,ou=Users,dc=trec,dc=us # Generated by phpLDAPadmin ( http://phpldapadmin.sourceforge.net/ ) on September 6, 2005 10:56 am # Server: TREC (localhost) # Search Scope: base #

Hallo, I have to transfer samba passwords from an LDAP installation to a non- LDAP installation, passwddb is smbpasswd. LDAP shows "sambaLMPassword" and "sambaNTPassword"; smbpasswd needs 2 password entries. Can I copy the above LDAP passwords? If yes: what is what? Viele Gruesse! Helmut

I am running Samba ver 3.0.33 on Solaris 10 (sparc) as a PDC with LDAP for the backend for both samba and unix accounts. I have also set up a trust with an Windows domain- lets call it WINDOMAIN- (the PDC for the Windows domain is Win 2003 but is in mixed mode for backwards compat.) The SAMBA domain trusts the WINDOWS domain, not not vice versa. I had also tried setting up trusts with

Hi, I'm running openldap and samba3.0.1 from my debian system, but I have used many many hours trying to get samba to validate users on the ldap... And is now turning to the last resort ... This is my configuration __________________________________________________ the important lines in smb.conf looks like this... -------------------------------------------------- [global] workgroup

Hi Gruss, At this stage there is only one server, running 3.6.25 on Ubuntu12.04. The plan to get LDAP to work on this one. Then add the second server 4.x and the promote it to BDC and then demote this one. Just a side info, we didn't want to go tdbsam in both as I read it breaks the domain trust. The domain names are real ones. I ran the commands you suggested, nothing in reply. I tried

Hello experts, I've migrated our NT4 domain to sambe 3.0.20b/ldap backend with "net rpc vampire", and nearly everything works as expected. But one big problem remains: it's not possible to login to the domains member maschines now, because "the domain is not available at the moment" (translated from german). After the maschine rejoined the samba domain, login

Sir, As you told that Samba normaly set uid=Username and not the uidNumber. Here due some requirement we had configured ldap with dn uid="user's emp id" and it is very well working with all the services like nagios anonymous authentication, ssh, smtp, imap authentication, rdesktop means all the possible services but I am very badly stuck with samba authentication. For example

2017-03-29 16:42 GMT-03:00 Rowland Penny via samba <samba at lists.samba.org>: > On Thu, 30 Mar 2017 08:18:30 +1300 > Andrew Bartlett <abartlet at samba.org> wrote: > > > On Wed, 2017-03-29 at 15:06 +0100, Rowland Penny via samba wrote: > > > The users password is stored in an hidden attribute which is > > > supposed to be unreadable, but you can read

Hi people: I have a LDAP server running OpenLDAP that serves authentication purposes to services like ftp, imap, openvpn, etc. Now I implemented a Samba PDC based on LDAP. I did the configuration with Samba 3.2.5 on Debian Etch and smbldap-tools. I was able to join a WinXP workstation to my domain without problems but I can't login with any existing user in my LDAP directory. Then I added my