dear list, I'm trying to migrate nt4 to samba3, and have two issues at the moment. First is: I'm getting two (small?) errors using smbldap-populate on my ldap database. At first I tried ignoring this, but now also rpc net vampire complains. (maybe because of this..?) This is the output of smbldap-populate: <quote> server:/usr/local/sbin # smbldap-populate Using builtin directory structure Use of uninitialized value in concatenation (.) or string at /usr/local/sbin/smbldap-populate line 126. adding new entry: dc=intech,dc=unu,dc=edu adding new entry: ou=Users,dc=intech,dc=unu,dc=edu adding new entry: ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: ou=Computers,dc=intech,dc=unu,dc=edu adding new entry: ldapidmapsuffix,dc=intech,dc=unu,dc=edu failed to add entry: invalid DN at /usr/local/sbin/smbldap-populate line 389, <GEN1> line 6. adding new entry: cn=NextFreeUnixId,dc=intech,dc=unu,dc=edu adding new entry: uid=Administrator,ou=Users,dc=intech,dc=unu,dc=edu adding new entry: uid=nobody,ou=Users,dc=intech,dc=unu,dc=edu adding new entry: cn=Domain Admins,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Domain Users,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Domain Guests,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Domain Computers,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Administrators,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Print Operators,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Backup Operators,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Replicators,ou=Groups,dc=intech,dc=unu,dc=edu </quote> searched the archives, but unsuccessfully... :( and later on, net vampire gives errors like: <quote> [2005/02/03 16:51:55, 0] passdb/pdb_ldap.c:ldapsam_add_sam_account(1994) ldapsam_add_sam_account: failed to modify/add user with uid = ghost (dn uid=ghost,ou=Users,dc=intech,dc=unu,dc=edu) [2005/02/03 16:51:56, 0] passdb/pdb_ldap.c:ldapsam_add_sam_account(1994) ldapsam_add_sam_account: failed to modify/add user with uid = 1219$ (dn uid=1219$,ou=Computers,dc=intech,dc=unu,dc=edu) </quote> Since after completion the users/machines DO exist in the database, I guess it means failed to MODIFY. Using samba 3.0.10-SUSE, suse 9.0, most recent idealx ldap tools. Anyone here has an idea what is going wrong..? Yours, Mourik Jan
Hi, At least for the error after the ldaidmapsuffix, it's caused by a typo in your smbldap-tools, smbldap.conf, missing the ou= part. The other, may relate to another variable not beeing set in the same file. It would help posting that file. Best Regards, Bruno Guerreiro -----Original Message----- From: Heupink, Mourik Jan C. [mailto:Heupink@INTECH.UNU.EDU] Sent: quinta-feira, 3 de Fevereiro de 2005 15:52 To: samba@lists.samba.org Subject: [Samba] smbldap-populate failure dear list, I'm trying to migrate nt4 to samba3, and have two issues at the moment. First is: I'm getting two (small?) errors using smbldap-populate on my ldap database. At first I tried ignoring this, but now also rpc net vampire complains. (maybe because of this..?) This is the output of smbldap-populate: <quote> server:/usr/local/sbin # smbldap-populate Using builtin directory structure Use of uninitialized value in concatenation (.) or string at /usr/local/sbin/smbldap-populate line 126. adding new entry: dc=intech,dc=unu,dc=edu adding new entry: ou=Users,dc=intech,dc=unu,dc=edu adding new entry: ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: ou=Computers,dc=intech,dc=unu,dc=edu adding new entry: ldapidmapsuffix,dc=intech,dc=unu,dc=edu failed to add entry: invalid DN at /usr/local/sbin/smbldap-populate line 389, <GEN1> line 6. adding new entry: cn=NextFreeUnixId,dc=intech,dc=unu,dc=edu adding new entry: uid=Administrator,ou=Users,dc=intech,dc=unu,dc=edu adding new entry: uid=nobody,ou=Users,dc=intech,dc=unu,dc=edu adding new entry: cn=Domain Admins,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Domain Users,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Domain Guests,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Domain Computers,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Administrators,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Print Operators,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Backup Operators,ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: cn=Replicators,ou=Groups,dc=intech,dc=unu,dc=edu </quote> searched the archives, but unsuccessfully... :( and later on, net vampire gives errors like: <quote> [2005/02/03 16:51:55, 0] passdb/pdb_ldap.c:ldapsam_add_sam_account(1994) ldapsam_add_sam_account: failed to modify/add user with uid = ghost (dn uid=ghost,ou=Users,dc=intech,dc=unu,dc=edu) [2005/02/03 16:51:56, 0] passdb/pdb_ldap.c:ldapsam_add_sam_account(1994) ldapsam_add_sam_account: failed to modify/add user with uid = 1219$ (dn uid=1219$,ou=Computers,dc=intech,dc=unu,dc=edu) </quote> Since after completion the users/machines DO exist in the database, I guess it means failed to MODIFY. Using samba 3.0.10-SUSE, suse 9.0, most recent idealx ldap tools. Anyone here has an idea what is going wrong..? Yours, Mourik Jan -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Hi! Looked through the smbldap.conf, and indeed: i found the typo, and corrected it, thanks for pointing it out. Correcting this did NOT solve the other problem though... therefore, as requested, my smbldap.conf. As far as I can see, the accounts are created in ldap, but only with a username and only default values for the rest. Meaning updating the records with more information (such as: full username, etc, etc) does not work. The smbldap.conf is attached. Hope you have some ideas.. :) note: i replaced ip addresses and my SID with x. In the actual file, they are the actual values... :) Thanks for your input so far! Mourik Jan> -----Original Message----- > From: Bruno Guerreiro [mailto:bruno.guerreiro@ine.pt] > Sent: 03 February 2005 18:06 > To: 'Heupink, Mourik Jan C.' > Cc: samba@lists.samba.org > Subject: RE: [Samba] smbldap-populate failure > > > Hi, > At least for the error after the ldaidmapsuffix, it's caused > by a typo in your smbldap-tools, smbldap.conf, missing the > ou= part. The other, may relate to another variable not > beeing set in the same file. It would help posting that file. > > Best Regards, > Bruno Guerreiro > > -----Original Message----- > From: Heupink, Mourik Jan C. [mailto:Heupink@INTECH.UNU.EDU] > Sent: quinta-feira, 3 de Fevereiro de 2005 15:52 > To: samba@lists.samba.org > Subject: [Samba] smbldap-populate failure > > > dear list, > > I'm trying to migrate nt4 to samba3, and have two issues at > the moment. First is: I'm getting two (small?) errors using > smbldap-populate on my ldap database. At first I tried > ignoring this, but now also rpc net vampire complains. (maybe > because of this..?) > > This is the output of smbldap-populate: > <quote> > server:/usr/local/sbin # smbldap-populate > Using builtin directory structure > Use of uninitialized value in concatenation (.) or string at > /usr/local/sbin/smbldap-populate line 126. adding new entry: > dc=intech,dc=unu,dc=edu adding new entry: > ou=Users,dc=intech,dc=unu,dc=edu adding new entry: > ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: > ou=Computers,dc=intech,dc=unu,dc=edu > adding new entry: ldapidmapsuffix,dc=intech,dc=unu,dc=edu > failed to add entry: invalid DN at > /usr/local/sbin/smbldap-populate line 389, <GEN1> line 6. > adding new entry: cn=NextFreeUnixId,dc=intech,dc=unu,dc=edu > adding new entry: uid=Administrator,ou=Users,dc=intech,dc=unu,dc=edu > adding new entry: uid=nobody,ou=Users,dc=intech,dc=unu,dc=edu > adding new entry: cn=Domain Admins,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Domain Users,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Domain Guests,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Domain > Computers,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Administrators,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Print Operators,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Backup > Operators,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Replicators,ou=Groups,dc=intech,dc=unu,dc=edu > </quote> > > searched the archives, but unsuccessfully... :( > > and later on, net vampire gives errors like: > <quote> > [2005/02/03 16:51:55, 0] > passdb/pdb_ldap.c:ldapsam_add_sam_account(1994) > ldapsam_add_sam_account: failed to modify/add user with uid > = ghost (dn > uid=ghost,ou=Users,dc=intech,dc=unu,dc=edu) > [2005/02/03 16:51:56, 0] > passdb/pdb_ldap.c:ldapsam_add_sam_account(1994) > ldapsam_add_sam_account: failed to modify/add user with uid > = 1219$ (dn > uid=1219$,ou=Computers,dc=intech,dc=unu,dc=edu) > </quote> > > Since after completion the users/machines DO exist in the > database, I guess it means failed to MODIFY. > > Using samba 3.0.10-SUSE, suse 9.0, most recent idealx ldap tools. > > Anyone here has an idea what is going wrong..? > > Yours, > Mourik Jan > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba >
Hi, I can't find any problem, You're missing UID_START= and GID_START= but i think that has been superseede by NextFreeUnixId. When you ran the script, the sid was already defined, right? As the error seems to occur when the userSID is beeing generated. Best regards, Bruno Guerreiro -----Original Message----- From: Heupink, Mourik Jan C. [mailto:Heupink@INTECH.UNU.EDU] Sent: quinta-feira, 3 de Fevereiro de 2005 18:23 To: Bruno Guerreiro Cc: samba@lists.samba.org Subject: RE: [Samba] smbldap-populate failure Hi! Looked through the smbldap.conf, and indeed: i found the typo, and corrected it, thanks for pointing it out. Correcting this did NOT solve the other problem though... therefore, as requested, my smbldap.conf. As far as I can see, the accounts are created in ldap, but only with a username and only default values for the rest. Meaning updating the records with more information (such as: full username, etc, etc) does not work. The smbldap.conf is attached. Hope you have some ideas.. :) note: i replaced ip addresses and my SID with x. In the actual file, they are the actual values... :) Thanks for your input so far! Mourik Jan> -----Original Message----- > From: Bruno Guerreiro [mailto:bruno.guerreiro@ine.pt] > Sent: 03 February 2005 18:06 > To: 'Heupink, Mourik Jan C.' > Cc: samba@lists.samba.org > Subject: RE: [Samba] smbldap-populate failure > > > Hi, > At least for the error after the ldaidmapsuffix, it's caused > by a typo in your smbldap-tools, smbldap.conf, missing the > ou= part. The other, may relate to another variable not > beeing set in the same file. It would help posting that file. > > Best Regards, > Bruno Guerreiro > > -----Original Message----- > From: Heupink, Mourik Jan C. [mailto:Heupink@INTECH.UNU.EDU] > Sent: quinta-feira, 3 de Fevereiro de 2005 15:52 > To: samba@lists.samba.org > Subject: [Samba] smbldap-populate failure > > > dear list, > > I'm trying to migrate nt4 to samba3, and have two issues at > the moment. First is: I'm getting two (small?) errors using > smbldap-populate on my ldap database. At first I tried > ignoring this, but now also rpc net vampire complains. (maybe > because of this..?) > > This is the output of smbldap-populate: > <quote> > server:/usr/local/sbin # smbldap-populate > Using builtin directory structure > Use of uninitialized value in concatenation (.) or string at > /usr/local/sbin/smbldap-populate line 126. adding new entry: > dc=intech,dc=unu,dc=edu adding new entry: > ou=Users,dc=intech,dc=unu,dc=edu adding new entry: > ou=Groups,dc=intech,dc=unu,dc=edu adding new entry: > ou=Computers,dc=intech,dc=unu,dc=edu > adding new entry: ldapidmapsuffix,dc=intech,dc=unu,dc=edu > failed to add entry: invalid DN at > /usr/local/sbin/smbldap-populate line 389, <GEN1> line 6. > adding new entry: cn=NextFreeUnixId,dc=intech,dc=unu,dc=edu > adding new entry: uid=Administrator,ou=Users,dc=intech,dc=unu,dc=edu > adding new entry: uid=nobody,ou=Users,dc=intech,dc=unu,dc=edu > adding new entry: cn=Domain Admins,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Domain Users,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Domain Guests,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Domain > Computers,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Administrators,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Print Operators,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Backup > Operators,ou=Groups,dc=intech,dc=unu,dc=edu > adding new entry: cn=Replicators,ou=Groups,dc=intech,dc=unu,dc=edu > </quote> > > searched the archives, but unsuccessfully... :( > > and later on, net vampire gives errors like: > <quote> > [2005/02/03 16:51:55, 0] > passdb/pdb_ldap.c:ldapsam_add_sam_account(1994) > ldapsam_add_sam_account: failed to modify/add user with uid > = ghost (dn > uid=ghost,ou=Users,dc=intech,dc=unu,dc=edu) > [2005/02/03 16:51:56, 0] > passdb/pdb_ldap.c:ldapsam_add_sam_account(1994) > ldapsam_add_sam_account: failed to modify/add user with uid > = 1219$ (dn > uid=1219$,ou=Computers,dc=intech,dc=unu,dc=edu) > </quote> > > Since after completion the users/machines DO exist in the > database, I guess it means failed to MODIFY. > > Using samba 3.0.10-SUSE, suse 9.0, most recent idealx ldap tools. > > Anyone here has an idea what is going wrong..? > > Yours, > Mourik Jan > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba >
Hi!> You're missing UID_START= and GID_START= but i think that > has been superseede by NextFreeUnixId. When you ran the > script, the sid was already defined, right? As the error > seems to occur when the userSID is beeing generated.You mean the sid of the current production nt4 domain in smbldap.conf, right..? That's there, yes. What would you like me to show you, that could help? smb.conf? smbldap.conf? /var/log/warn containing the errors? I'm NOT using start tls (yet), what else would you like to know? A bit off topic perhaps, but: I wonder: shouldn't there be a script to modify a user? there is "add user script", "delete user script", but no "modify user script". Is that right..? Thanks for the help so far! mj
oh yes, something important (maybe) that I forgot to mention... the howto's tell me that the command to 'vampire' is: net rpc vampire -Uadministrator%adminpassword this FAILS here. without an error or anything, the cursor is simply returned immediately, and nothing at all happened. then what did: added an administrator account to ldap, with my domain admin password, and then issued the following: net rpc vampire -S pdcname that works, but with the errors as indicated earlier. Apologies for not letting you know this in the first place. (I simply forgot to mention it.) Yours, Mourik Jan> -----Original Message----- > From: Heupink, Mourik Jan C. [mailto:Heupink@INTECH.UNU.EDU] > Sent: 03 February 2005 22:09 > To: 'Bruno Guerreiro' > Cc: 'samba@lists.samba.org' > Subject: RE: [Samba] smbldap-populate failure > > > Hi! > > > You're missing UID_START= and GID_START= but i think that > > has been superseede by NextFreeUnixId. When you ran the > > script, the sid was already defined, right? As the error > > seems to occur when the userSID is beeing generated. > You mean the sid of the current production nt4 domain in > smbldap.conf, right..? That's there, yes. > > What would you like me to show you, that could help? > smb.conf? smbldap.conf? /var/log/warn containing the errors? > I'm NOT using start tls (yet), what else would you like to know? > > A bit off topic perhaps, but: > I wonder: shouldn't there be a script to modify a user? there > is "add user script", "delete user script", but no "modify > user script". Is that right..? > > Thanks for the help so far! > > mj > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba >
finally solved this. SOO happy. :) I'm posting it here, in case anyone else ever has this issue. It was my own fault... In the idealx howto, smb.conf has three entries commented out: # ldap filter = (&(objectclass=sambaSamAccount)(uid=%u)) #delete user script = /usr/local/sbin/smbldap-userdel "%u" #delete group script = /usr/local/sbin/smbldap-groupdel "%g" I (accidentally?) uncommented the first one, so there was an ldap filter in place. (no idea what the filter exactly does, but the result was my having all these problems) Anyway, glad to be able to proceed again! Stupid me! :) Mourik Jan> -----Original Message----- > From: Heupink, Mourik Jan C. [mailto:Heupink@INTECH.UNU.EDU] > Sent: 04 February 2005 10:39 > To: 'Bruno Guerreiro' > Cc: 'samba@lists.samba.org' > Subject: RE: [Samba] smbldap-populate failure > > > oh yes, something important (maybe) that I forgot to mention... > > the howto's tell me that the command to 'vampire' is: > net rpc vampire -Uadministrator%adminpassword > > this FAILS here. without an error or anything, the cursor is > simply returned immediately, and nothing at all happened. > > then what did: > added an administrator account to ldap, with my domain admin > password, and then issued the following: > > net rpc vampire -S pdcname > > that works, but with the errors as indicated earlier. > > Apologies for not letting you know this in the first place. > (I simply forgot to mention it.) > > Yours, > Mourik Jan > > > -----Original Message----- > > From: Heupink, Mourik Jan C. [mailto:Heupink@INTECH.UNU.EDU] > > Sent: 03 February 2005 22:09 > > To: 'Bruno Guerreiro' > > Cc: 'samba@lists.samba.org' > > Subject: RE: [Samba] smbldap-populate failure > > > > > > Hi! > > > > > You're missing UID_START= and GID_START= but i think > that has been > > > superseede by NextFreeUnixId. When you ran the script, > the sid was > > > already defined, right? As the error seems to occur when > the userSID > > > is beeing generated. > > You mean the sid of the current production nt4 domain in > > smbldap.conf, right..? That's there, yes. > > > > What would you like me to show you, that could help? > > smb.conf? smbldap.conf? /var/log/warn containing the errors? > > I'm NOT using start tls (yet), what else would you like to know? > > > > A bit off topic perhaps, but: > > I wonder: shouldn't there be a script to modify a user? there > > is "add user script", "delete user script", but no "modify > > user script". Is that right..? > > > > Thanks for the help so far! > > > > mj > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: https://lists.samba.org/mailman/listinfo/samba > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba >