Displaying 20 results from an estimated 10000 matches similar to: "After migrating users to ldap, passwords still stored in passdb.tdb"
2007 Jan 11
1
migrate machine-passwords from smbpasswd to ldap?
I'm just migrating a whole samba-installations ffrom old 2.2 to 3.0 with LDAP.
I was successfully able to migrate all useraccounts with smbldap-useradd but now
I'm stuck with the machine-accounts. All machines are part of the domain and
they should be able to logon the new server without noticing any difference.
I can add them with smbldap-useradd -w but the resulting ldap-entry does
2003 Sep 17
0
cannot add machine account with ldapsam
Hello,
Im using samba-3.0.0rc4 with ldapsam.
adding users works fine but when i try to add a machine account i alway
get this error:
pdc:/usr/bin# pdbedit -v -a -m -u test_pc
ldapsam_modify_entry: Failed to add user dn=
uid=test_pc$,ou=Systems,dc=ovid,dc=evva,dc=com with: Object class violation
object class 'sambaSamAccount' requires attribute 'sambaSID'
2011 May 02
3
Issue providing seamless migrtion (3.0.24 to 3.5.6) - sambaNTPassword mystery
Hello everyone,
I am operating a migration of samba from 3.0.24 (mysql passdb backend)
to 3.5.6 (openldap passdb), samba working as a domain controller (PDC)
and file share. The main challenge is to provide a seamless migration
for users.
For this new version, I am using smbldap-tools 0.9.6, nss_ldap, openldap
2.4. Everything run on FreeBSD 8.2.
To get used to samba, I have managed to make
2009 Mar 06
2
pdbedit dosen't send the sambaSID to the ldap
Hi people: I have a Debian etch stable with the latests updates.
When I try to join a computer to the domain I create the
machine on the ldap and its created with the following atributes:
dn:cn=test$,ou=Machines,dc=domain,dc=org
objectClass: top
objectClass: inetOrgPerson
objectClass: posixAccount
uidNumber: 3123
uid: test$
cn: test$
sn: test$
gidNumber: 604
homeDirectory: /dev/null
loginShell:
2005 Mar 18
2
PDC Samba 3+LDAP
Hello all,
I've some problem with my new Samba / Ldap PDC :
I cannot join the Domain from Windows (XP) computers
Okay, all configuration seem to be okay on the serveur, I can create
Users,Computers for samba (and unix)
I put here some config file, if someone can help me, I'm on since 5
days, it's my first PDC so I use the tutorial from Idealx (smbldap-howto)
getent passwd give me
2009 Feb 11
1
Something weird about pdbedit.
Hi !
I'm running a samba domain controler under rhel 5. It's version
3.0.33-3.7.el5.
I've also installed a ldap server to store users and groups and so on.
When I try a pdbedit -v david, I get the following :
Unix username: david
NT username: david
Account Flags: [U ]
User SID: S-1-5-21-215069222-2822928016-2390355089-1016
Finding user
2004 Nov 16
4
Samba/Netscape Directory Server
For whatever reason I am trying to configure the following environment
and am running into trouble towards the end of things. Hopefully I am
overlooking something basic, any assistance would be greatly appreciated.
1. Redhat AS 2.1 server running Netscape Directory Server 5.2
2. RHEL3 system using Samba 3.0.8 acting as a PDC integrated with the
Netscape LDAP server
3. Win2k/XP clients as
2012 Nov 30
5
Samba file server using ldap backend without AD or PDC?
Hi all,
I've been using samba for a few years now on a couple of file servers with a
tdbsam backend for our user accounts. We use openldap for the vast majority
of our identity management, so I would love to be able to tie into this. We
recently started using sambaNTPassword in openldap for radius
authentication, so this is populated for most of our users now.
>From reading through
2017 Mar 29
3
Provision new domain keeping users and passwords
On Wed, 2017-03-29 at 15:06 +0100, Rowland Penny via samba wrote:
> The users password is stored in an hidden attribute which is supposed
> to be unreadable, but you can read it on a Samba DC, but it is
> heavily
> encoded. You may be able to obtain some of the users password with
> pdbedit, but can you get them all ?
To be clear, by design pdbedit can obtain all the unicodePwd
2009 Jul 20
2
Samba is deleting samba-passwords out of ldap-tree
Hello,
I try to install a PDC with Samba 3.0.23 and openldap 2.3.27.
I can join the domain with a win-xp-Machine, the User-Accounts are in
ldap and looks like the following:
dn: uid=ds,ou=people,dc=marco,dc=de
userPassword: {crypt}RVp32Kd9mkUek
sambaLogonTime: 0
sambaLogoffTime: 0
sambaPwdLastSet: 0
sambaProfilePath: \\homedirs\ds\.ntprofile
sambaPwdCanChange: 0
sambaSID:
2006 Mar 09
1
changing password on samba bdc
Greetings All.
First let me introduce my situation
Machine1: Pdc Samba + OpenLDAP(master)
Machine2: Bdc Samba + OpenLDAP(slave)
LDAP stores Samba and POSIX information for each user.
Case1: I login to Machine1 and invoke smbpasswd. I change
my passwords (samba and posix without any problem). In next
few seconds they get propagated to Machin2 wher I can login
with new credentials.
ldap log
2005 Sep 06
2
Password expiration
Hello,
I still can't figure out why my users' passwords are expiring. Ever since we
switched to LDAP, passwords expire every 14 days. Here is an example LDAP user
entry:
version: 1
# LDIF Export for: uid=sgoodrich,ou=Users,dc=trec,dc=us
# Generated by phpLDAPadmin ( http://phpldapadmin.sourceforge.net/ ) on
September 6, 2005 10:56 am
# Server: TREC (localhost)
# Search Scope: base
#
2007 Sep 16
2
LMPassword and NTPassword
Hallo,
I have to transfer samba passwords from an LDAP installation to a non-
LDAP installation, passwddb is smbpasswd.
LDAP shows "sambaLMPassword" and "sambaNTPassword"; smbpasswd needs 2
password entries.
Can I copy the above LDAP passwords? If yes: what is what?
Viele Gruesse!
Helmut
2009 Oct 09
1
Domain trusts "forgetting" trusted users
I am running Samba ver 3.0.33 on Solaris 10 (sparc) as a PDC with LDAP
for the backend for both samba and unix accounts.
I have also set up a trust with an Windows domain- lets call it
WINDOMAIN- (the PDC for the Windows domain is Win 2003 but is in
mixed mode for backwards compat.) The SAMBA domain trusts the WINDOWS
domain, not not vice versa.
I had also tried setting up trusts with
2004 Feb 15
2
Problem validating with LDAP and Samba3.0.1debian
Hi,
I'm running openldap and samba3.0.1 from my debian system, but I have
used many many hours trying to get samba to validate users on the
ldap... And is now turning to the last resort ...
This is my configuration
__________________________________________________
the important lines in smb.conf looks like this...
--------------------------------------------------
[global]
workgroup
2018 Mar 05
9
Fwd: Migrating server
Hi Gruss,
At this stage there is only one server, running 3.6.25 on Ubuntu12.04. The
plan to get LDAP to work on this one. Then add the second server 4.x and
the promote it to BDC and then demote this one. Just a side info, we
didn't want to go tdbsam in both as I read it breaks the domain trust.
The domain names are real ones.
I ran the commands you suggested, nothing in reply. I tried
2005 Nov 12
3
net rpc vampire - cannot login to migrated computer accounts
Hello experts,
I've migrated our NT4 domain to sambe 3.0.20b/ldap backend with "net rpc
vampire", and nearly everything works as expected. But one big problem
remains: it's not possible to login to the domains member maschines now,
because "the domain is not available at the moment" (translated from
german). After the maschine rejoined the samba domain, login
2016 Nov 07
1
samba with customized ldap backend
Sir,
As you told that Samba normaly set uid=Username and not the uidNumber.
Here due some requirement we had configured ldap with dn uid="user's emp
id" and it is very well working with all the services like nagios
anonymous authentication, ssh, smtp, imap authentication, rdesktop means
all the possible services but I am very badly stuck with samba
authentication.
For example
2017 Mar 29
1
Provision new domain keeping users and passwords
2017-03-29 16:42 GMT-03:00 Rowland Penny via samba <samba at lists.samba.org>:
> On Thu, 30 Mar 2017 08:18:30 +1300
> Andrew Bartlett <abartlet at samba.org> wrote:
>
> > On Wed, 2017-03-29 at 15:06 +0100, Rowland Penny via samba wrote:
> > > The users password is stored in an hidden attribute which is
> > > supposed to be unreadable, but you can read
2009 Mar 05
1
Adding existing ldap users as Samba users
Hi people:
I have a LDAP server running OpenLDAP that serves authentication
purposes to services like ftp, imap, openvpn, etc. Now I implemented a
Samba PDC based on LDAP.
I did the configuration with Samba 3.2.5 on Debian Etch and
smbldap-tools. I was able to join a WinXP workstation to my domain
without problems but I can't login with any existing user in my LDAP
directory.
Then I added my