samba - Jan 2021 - LDAP requests log

Hello.

I've got some services (mainly mail) authenticating against a Samba AD 
DC via saslauthd.
While I experience no problem directly, I often see in the logs 
something like:
> Jan  5 10:28:26 host saslauthd[92975]: ldap_simple_bind() failed -1
(Can't contact LDAP server).
> Jan  5 10:28:26 host saslauthd[92975]: Retrying authentication
So I'm trying to track this down (maybe to Samba, maybe not).

Is there anything LDAP-related I can see in Samba logs?
(I tried "smbcontrol samba debug 8", but still log.samba is almost
empty).

  bye & Thanks
	av.

On Tue, 2021-01-05 at 10:35 +0100, Andrea Venturoli via samba
wrote:
> Hello.
> 
> I've got some services (mainly mail) authenticating against a Samba
> AD 
> DC via saslauthd.
> While I experience no problem directly, I often see in the logs 
> something like:
> > Jan  5 10:28:26 host saslauthd[92975]: ldap_simple_bind() failed -1
> > (Can't contact LDAP server).
> > Jan  5 10:28:26 host saslauthd[92975]: Retrying authentication
> 
> So I'm trying to track this down (maybe to Samba, maybe not).
> 
> Is there anything LDAP-related I can see in Samba logs?
> (I tried "smbcontrol samba debug 8", but still log.samba is
almost
> empty).
You probably need to target that as the actual ldap server PID, we
probably don't propogate the smbcontrol down to the right child.

Or just set it in the logs.

The new audit logging code contains a lot of detail and may be helpful:

https://wiki.samba.org/index.php/Setting_up_Audit_Logging

Andrew Bartlett

-- 
Andrew Bartlett (he/him)       https://samba.org/~abartlet/
Samba Team Member (since 2001) https://samba.org
Samba Team Lead, Catalyst IT   https://catalyst.net.nz/services/samba