Hi: setup: Samba-3.0alpha24 with OpenLDAP 2.1.20 client: XP smbclient test with an LDAP user works But I cannot join the domain PDC (with root, uidNumber = 0): 1. if I set passwd backend = ldapsam_compat, I got: Access Denied 2. if I set passwd backend = ldapsam_compat, ldapsam, I got No mapping between account names and security IDs was done. The machine account was created on the fly (successfully) by the add machine script parameter. The idealx script smbldap-useradd.pl (patched with the samba3 patch posted in the list). Attached is the ldif of the added computer account, the error messages (scene 1 above) from log.smbd (I don't seem to see any errors from scene 2 above in the log.smbd file), ldap.conf and the smb.conf are here. I used to get samba 2.2.8a PDC to work (with just smbpasswd and no LDAP). I am not sure what the problem is now. Please help Thanks Chee Wai __________________________________ Do you Yahoo!? The New Yahoo! Search - Faster. Easier. Bingo. http://search.yahoo.com
Gerald (Jerry) Carter
2003-May-27 14:54 UTC
[Samba] Computer cannot join Samba3.0 PDC domain
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 26 May 2003, Chee Wai Yeung wrote:> Hi: > > setup: Samba-3.0alpha24 with OpenLDAP 2.1.20 > client: XP > > smbclient test with an LDAP user works > > But I cannot join the domain PDC (with root, uidNumber > = 0): > > 1. if I set passwd backend = ldapsam_compat, I got: > > Access DeniedThis should be 'passdb backend = ldapsam guest'> Attached is the ldif of the added computer account, > the error messages (scene 1 above) from log.smbd (I > don't seem to see any errors from scene 2 above in the > log.smbd file), ldap.conf and the smb.conf are here.The attachments got stripped. Send me the LDIF, level 10 log file, & smb.conf off list and I'll look at it. cheers, jerry ---------------------------------------------------------------------- Hewlett-Packard ------------------------- http://www.hp.com SAMBA Team ---------------------- http://www.samba.org GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc "You can never go home again, Oatman, but I guess you can shop there." --John Cusack - "Grosse Point Blank" (1997) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.0 (GNU/Linux) Comment: For info see http://quantumlab.net/pine_privacy_guard/ iD8DBQE+03wRIR7qMdg1EfYRAme6AJ91sETYNutIbC+ryVIW7PtSLxiGFgCeNG2A lTphg2KjCdX046A0lf2JKC8=swAd -----END PGP SIGNATURE-----