samba - Sep 2003 - Winbind ldap samba 3 BDC getent passwd answer don't retrieve domain users, can't login on the domain with users that are not on /ect/passwd + typo error ?

Helo,

	On redhat 9 - samba 3 stable - Using the rpm from 24 september.
	I try to configure a bdc. 
	
      Smb.conf is :

        idmap backend = ldap:ldap://ip_address
        ldap idmap suffix = ou=personnes,ou=ac-ville,ou=educ
        winbind uid = 10000-20000
        winbind gid = 10000-20000
        # allow enumeration of winbind users and groups
        winbind enum users = yes
        winbind enum groups = yes
        # give winbind users a real shell (only needed if they have
telnet access)
        template shell = /bin/bash


	wbinfo -u and -g are working.

      Nsswitch.conf is :

	passwd:     files winbind
	shadow:     files
	group:      files winbind

	
      But getent  passwd and getent group did give back only the users
located in /etc/passwd and /etc/group


	On login with a user that don't have local entry I have 

  init_sam_from_ldap: Entry found for user: test1
[2003/09/25 11:30:41, 1] auth/auth_util.c:make_server_info_sam(818)
  User test1 in passdb, but getpwnam() fails!

[2003/09/25 11:30:41, 0] auth/auth_sam.c:check_sam_security(459)
  check_sam_security: make_server_info_sam() failed with
'NT_STATUS_NO_SUCH_USER'
[2003/09/25 11:30:41, 2] auth/auth.c:check_ntlm_password(309)
  check_ntlm_password:  Authentication for user [test1] -> [test1]
FAILED with error NT_STATUS_N
O_SUCH_USER
[2003/09/25 11


	Do I must create the user in local ? I want to use winbind to
avoid it.

	Any help would be greatly appreciated.

	Ps 

	Maybe , there is a typo error on the "Samba Project
Documentation".
      P69 idmapbackend = ldapsam:ldap://slave-ldap.quenya.org  
      If use ldapsam instead of ldap I have
[2003/09/25 13:25:25, 0] sam/idmap.c:idmap_init(136)
  idmap_init: could not load remote backend 'ldapsam'.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

jean-marc pouchoulon wrote:
| Helo,
|
| 	On redhat 9 - samba 3 stable - Using the rpm from 24 september.
| 	I try to configure a bdc.
| 	
|       Smb.conf is :
|
|         idmap backend = ldap:ldap://ip_address
|         ldap idmap suffix = ou=personnes,ou=ac-ville,ou=educ
|         winbind uid = 10000-20000
|         winbind gid = 10000-20000
|         # allow enumeration of winbind users and groups
|         winbind enum users = yes
|         winbind enum groups = yes
|         # give winbind users a real shell (only needed if they have
| telnet access)
|         template shell = /bin/bash
|
|
| 	wbinfo -u and -g are working.
|
|       Nsswitch.conf is :
|
| 	passwd:     files winbind
| 	shadow:     files
| 	group:      files winbind
|
| 	
|       But getent  passwd and getent group did give back only the users
| located in /etc/passwd and /etc/group

There's a buh in the RPM for RedHat 9 that doesn't create the symlink
to /lib/libnss_winbind.so.2.  I'll build new RPMS this week.





cheers, jerry
~ ----------------------------------------------------------------------
~ Hewlett-Packard            ------------------------- http://www.hp.com
~ SAMBA Team                 ---------------------- http://www.samba.org
~ GnuPG Key                  ---- http://www.plainjoe.org/gpg_public.asc
~ "You can never go home again, Oatman, but I guess you can shop
there."
~                            --John Cusack - "Grosse Point Blank"
(1997)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE/egRJIR7qMdg1EfYRAk6EAJ4w2/VrMvtQJu2elsAD9nL/LlnUXwCgwnfP
Rv8CN3cCW0vOtxjw70kC0Ls=gCnF
-----END PGP SIGNATURE-----