samba - Mar 2002 - ldap problems

Hello,
I am doing a samba pdc with ldap.  When I try to login to the domain, or
access some shares I get this in my ldap logs:

Mar  7 16:46:16 localhost slapd[3588]: conn=25 op=4 SRCH
base="ou=People,dc=test,dc=org" scope=1
filter="(&(objectClass=posixAccount)(uid=DOMAIN\5CTD))"
Mar  7 16:46:16 localhost slapd[3588]: conn=25 op=4 SEARCH RESULT
tag=101 err=0 text
My domain/workgroup is "DOMAIN" and the username is "td". 
What is up
with this?  The client is just a win98 box.

I attached my ldif of my test ldap server.  Thank you for any clues.

-- 
Terry Davis
http://approbation.org/
-------------- next part --------------
dn: dc=test,dc=org
objectClass: domain
dc: test

dn: ou=People,dc=test,dc=org
objectClass: top
objectClass: organizationalUnit
ou: People
description: System People

dn: ou=Groups,dc=test,dc=org
objectClass: top
objectClass: organizationalUnit
ou: Groups
description: System Groups

dn: ou=Computers,dc=test,dc=org
objectClass: top
objectClass: organizationalUnit
ou: Computers
description: Windows Domain Computers

dn: cn=Domain Admins,ou=Groups,dc=test,dc=org
objectClass: posixGroup
gidNumber: 200
cn: Domain Admins
description: Windows Domain People
memberUid: administrator

dn: cn=Domain People,ou=Groups,dc=test,dc=org
objectClass: posixGroup
gidNumber: 201
cn: Domain People
description: Windows Domain People

dn: cn=Domain Guests,ou=Groups,dc=test,dc=org
objectClass: posixGroup
gidNumber: 202
cn: Domain Guests
description: Windows Domain Guests People

dn: cn=Administrators,ou=Groups,dc=test,dc=org
description: Members can fully administer the computer/domain
description: Windows Domain Members can fully administer the computer/domain
objectClass: posixGroup
gidNumber: 220
cn: Administrators

dn: cn=People,ou=Groups,dc=test,dc=org
description: Ordinary users
description: Windows Domain Ordinary users
objectClass: posixGroup
gidNumber: 221
cn: People

dn: cn=Guests,ou=Groups,dc=test,dc=org
description: People granted guest access to the computer/domain The SAMBA-LDA
 P-PDC Howto Revision : 1:13
description: Windows Domain People granted guest access to the computer/domai
 n
objectClass: posixGroup
gidNumber: 222
cn: Guests
memberUid: nobody

dn: cn=Power People,ou=Groups,dc=test,dc=org
description: Members can share directories and printers
description: Windows Domain Members can share directories and printers
objectClass: posixGroup
gidNumber: 223
cn: Power People

dn: cn=Account Operators,ou=Groups,dc=test,dc=org
objectClass: posixGroup
gidNumber: 224
cn: Account Operators
description: Windows Domain People to manipulate users accounts

dn: cn=Server Operators,ou=Groups,dc=test,dc=org
objectClass: posixGroup
gidNumber: 225
cn: Server Operators
description: Windows Domain Server Operators

dn: cn=Print Operators,ou=Groups,dc=test,dc=org
objectClass: posixGroup
gidNumber: 226
cn: Print Operators
description: Windows Domain Print Operators

dn: cn=Backup Operators,ou=Groups,dc=test,dc=org
objectClass: posixGroup
gidNumber: 227
cn: Backup Operators
description: Windows Domain Members can bypass file security to back up files
 

dn: cn=Replicator,ou=Groups,dc=test,dc=org
description: Supports file replication in a domain
description: Windows Domain Supports file replication in a domain
objectClass: posixGroup
gidNumber: 228
cn: Replicator

dn: uid=testuser1,ou=People,dc=test,dc=org
objectClass: top
objectClass: account
objectClass: posixAccount
cn: testuser1
uid: testuser1
uidNumber: 1000
gidNumber: 100
homeDirectory: /home/testuser1
loginShell: /bin/bash
gecos: User
description: User
userPassword: {SSHA}nweYN3EWGI4R9HhMLND0++RxfgzJraBx

dn: uid=testuser2,ou=People,dc=test,dc=org
objectClass: top
objectClass: account
objectClass: posixAccount
cn: testuser2
uid: testuser2
uidNumber: 1001
gidNumber: 100
homeDirectory: /home/testuser2
loginShell: /bin/bash
gecos: User
description: User
userPassword: {crypt}x

dn: uid=administrator,ou=People,dc=test,dc=org
cn: administrator
uid: administrator
uidNumber: 1002
gidNumber: 200
homeDirectory: /home/administrator
loginShell: /bin/bash
gecos: User
description: User
objectClass: top
objectClass: account
objectClass: posixAccount
objectClass: sambaAccount
pwdLastSet: 0
logonTime: 0
logoffTime: 2147483647
kickoffTime: 2147483647
pwdCanChange: 0
pwdMustChange: 2147483647
displayName: User
acctFlags: [UX]
rid: 3004
primaryGroupID: 1401
homeDrive: H:
smbHome: \\PDC-SRV\homes
profilePath: \\PDC-SRV\profiles\administrator
scriptPath: administrator.cmd
lmPassword: D97250ED40513A79AAD3B435B51404EE
ntPassword: 0386FBABCB8CF77E41C061AEA00E95A4
userPassword: {SSHA}BUcCgooxvfMJziKwhYF4vLXAyR91SGHm

dn: uid=td,ou=People,dc=test,dc=org
cn: td
uid: td
uidNumber: 1003
gidNumber: 100
homeDirectory: /home/td
loginShell: /bin/bash
gecos: User
description: User
objectClass: top
objectClass: account
objectClass: posixAccount
objectClass: sambaAccount
pwdLastSet: 0
logonTime: 0
logoffTime: 2147483647
kickoffTime: 2147483647
pwdCanChange: 0
pwdMustChange: 2147483647
displayName: User
acctFlags: [UX]
rid: 3006
primaryGroupID: 1201
homeDrive: H:
smbHome: \\PDC-SRV\homes
profilePath: \\PDC-SRV\profiles\td
scriptPath: td.cmd
lmPassword: 35F1FKDGJDMDLGS971951813551404EE
ntPassword: 6DGC1520B83IKDJ39KHK2F031H10DA9A
userPassword: {SSHA}ICyPTcDL9183657jgXxMSS0Hi+dnLSB

dn: uid=td-vmware$,ou=Computers,dc=test,dc=org
cn: td-vmware$
uid: td-vmware$
uidNumber: 1004
gidNumber: 100
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer
objectClass: top
objectClass: posixAccount
objectClass: sambaAccount
pwdLastSet: 0
logonTime: 0
logoffTime: 2147483647
kickoffTime: 2147483647
pwdCanChange: 0
pwdMustChange: 2147483647
acctFlags: [W          ]
lmPassword: F36874173333B3A7C6FJDLK301KHS336
ntPassword: E6JASDASUDASDGASDGE9108C372E6AAD
rid: 3008
primaryGroupID: 0

I am still clueless as far as the answer to this one goes. I don't know
where I have messed up.  the "5C" before my username makes no sense at
all......any help please?


On Thu, 2002-03-07 at 17:56, Terry Davis wrote:
> Hello,
> I am doing a samba pdc with ldap.  When I try to login to the domain, or
> access some shares I get this in my ldap logs:
> 
> Mar  7 16:46:16 localhost slapd[3588]: conn=25 op=4 SRCH
> base="ou=People,dc=test,dc=org" scope=1
> filter="(&(objectClass=posixAccount)(uid=DOMAIN\5CTD))"
> Mar  7 16:46:16 localhost slapd[3588]: conn=25 op=4 SEARCH RESULT
> tag=101 err=0 text> 
> My domain/workgroup is "DOMAIN" and the username is
"td".  What is up
> with this?  The client is just a win98 box.
> 
> I attached my ldif of my test ldap server.  Thank you for any clues.
> 
> -- 
> Terry Davis
> http://approbation.org/
> ----
> 
> dn: dc=test,dc=org
> objectClass: domain
> dc: test
> 
> dn: ou=People,dc=test,dc=org
> objectClass: top
> objectClass: organizationalUnit
> ou: People
> description: System People
> 
> dn: ou=Groups,dc=test,dc=org
> objectClass: top
> objectClass: organizationalUnit
> ou: Groups
> description: System Groups
> 
> dn: ou=Computers,dc=test,dc=org
> objectClass: top
> objectClass: organizationalUnit
> ou: Computers
> description: Windows Domain Computers
> 
> dn: cn=Domain Admins,ou=Groups,dc=test,dc=org
> objectClass: posixGroup
> gidNumber: 200
> cn: Domain Admins
> description: Windows Domain People
> memberUid: administrator
> 
> dn: cn=Domain People,ou=Groups,dc=test,dc=org
> objectClass: posixGroup
> gidNumber: 201
> cn: Domain People
> description: Windows Domain People
> 
> dn: cn=Domain Guests,ou=Groups,dc=test,dc=org
> objectClass: posixGroup
> gidNumber: 202
> cn: Domain Guests
> description: Windows Domain Guests People
> 
> dn: cn=Administrators,ou=Groups,dc=test,dc=org
> description: Members can fully administer the computer/domain
> description: Windows Domain Members can fully administer the
computer/domain
> objectClass: posixGroup
> gidNumber: 220
> cn: Administrators
> 
> dn: cn=People,ou=Groups,dc=test,dc=org
> description: Ordinary users
> description: Windows Domain Ordinary users
> objectClass: posixGroup
> gidNumber: 221
> cn: People
> 
> dn: cn=Guests,ou=Groups,dc=test,dc=org
> description: People granted guest access to the computer/domain The
SAMBA-LDA
>  P-PDC Howto Revision : 1:13
> description: Windows Domain People granted guest access to the
computer/domai
>  n
> objectClass: posixGroup
> gidNumber: 222
> cn: Guests
> memberUid: nobody
> 
> dn: cn=Power People,ou=Groups,dc=test,dc=org
> description: Members can share directories and printers
> description: Windows Domain Members can share directories and printers
> objectClass: posixGroup
> gidNumber: 223
> cn: Power People
> 
> dn: cn=Account Operators,ou=Groups,dc=test,dc=org
> objectClass: posixGroup
> gidNumber: 224
> cn: Account Operators
> description: Windows Domain People to manipulate users accounts
> 
> dn: cn=Server Operators,ou=Groups,dc=test,dc=org
> objectClass: posixGroup
> gidNumber: 225
> cn: Server Operators
> description: Windows Domain Server Operators
> 
> dn: cn=Print Operators,ou=Groups,dc=test,dc=org
> objectClass: posixGroup
> gidNumber: 226
> cn: Print Operators
> description: Windows Domain Print Operators
> 
> dn: cn=Backup Operators,ou=Groups,dc=test,dc=org
> objectClass: posixGroup
> gidNumber: 227
> cn: Backup Operators
> description: Windows Domain Members can bypass file security to back up
files
>  
> 
> dn: cn=Replicator,ou=Groups,dc=test,dc=org
> description: Supports file replication in a domain
> description: Windows Domain Supports file replication in a domain
> objectClass: posixGroup
> gidNumber: 228
> cn: Replicator
> 
> dn: uid=testuser1,ou=People,dc=test,dc=org
> objectClass: top
> objectClass: account
> objectClass: posixAccount
> cn: testuser1
> uid: testuser1
> uidNumber: 1000
> gidNumber: 100
> homeDirectory: /home/testuser1
> loginShell: /bin/bash
> gecos: User
> description: User
> userPassword: {SSHA}nweYN3EWGI4R9HhMLND0++RxfgzJraBx
> 
> dn: uid=testuser2,ou=People,dc=test,dc=org
> objectClass: top
> objectClass: account
> objectClass: posixAccount
> cn: testuser2
> uid: testuser2
> uidNumber: 1001
> gidNumber: 100
> homeDirectory: /home/testuser2
> loginShell: /bin/bash
> gecos: User
> description: User
> userPassword: {crypt}x
> 
> dn: uid=administrator,ou=People,dc=test,dc=org
> cn: administrator
> uid: administrator
> uidNumber: 1002
> gidNumber: 200
> homeDirectory: /home/administrator
> loginShell: /bin/bash
> gecos: User
> description: User
> objectClass: top
> objectClass: account
> objectClass: posixAccount
> objectClass: sambaAccount
> pwdLastSet: 0
> logonTime: 0
> logoffTime: 2147483647
> kickoffTime: 2147483647
> pwdCanChange: 0
> pwdMustChange: 2147483647
> displayName: User
> acctFlags: [UX]
> rid: 3004
> primaryGroupID: 1401
> homeDrive: H:
> smbHome: \\PDC-SRV\homes
> profilePath: \\PDC-SRV\profiles\administrator
> scriptPath: administrator.cmd
> lmPassword: D97250ED40513A79AAD3B435B51404EE
> ntPassword: 0386FBABCB8CF77E41C061AEA00E95A4
> userPassword: {SSHA}BUcCgooxvfMJziKwhYF4vLXAyR91SGHm
> 
> dn: uid=td,ou=People,dc=test,dc=org
> cn: td
> uid: td
> uidNumber: 1003
> gidNumber: 100
> homeDirectory: /home/td
> loginShell: /bin/bash
> gecos: User
> description: User
> objectClass: top
> objectClass: account
> objectClass: posixAccount
> objectClass: sambaAccount
> pwdLastSet: 0
> logonTime: 0
> logoffTime: 2147483647
> kickoffTime: 2147483647
> pwdCanChange: 0
> pwdMustChange: 2147483647
> displayName: User
> acctFlags: [UX]
> rid: 3006
> primaryGroupID: 1201
> homeDrive: H:
> smbHome: \\PDC-SRV\homes
> profilePath: \\PDC-SRV\profiles\td
> scriptPath: td.cmd
> lmPassword: 35F1FKDGJDMDLGS971951813551404EE
> ntPassword: 6DGC1520B83IKDJ39KHK2F031H10DA9A
> userPassword: {SSHA}ICyPTcDL9183657jgXxMSS0Hi+dnLSB
> 
> dn: uid=td-vmware$,ou=Computers,dc=test,dc=org
> cn: td-vmware$
> uid: td-vmware$
> uidNumber: 1004
> gidNumber: 100
> homeDirectory: /dev/null
> loginShell: /bin/false
> description: Computer
> objectClass: top
> objectClass: posixAccount
> objectClass: sambaAccount
> pwdLastSet: 0
> logonTime: 0
> logoffTime: 2147483647
> kickoffTime: 2147483647
> pwdCanChange: 0
> pwdMustChange: 2147483647
> acctFlags: [W          ]
> lmPassword: F36874173333B3A7C6FJDLK301KHS336
> ntPassword: E6JASDASUDASDGASDGE9108C372E6AAD
> rid: 3008
> primaryGroupID: 0
> 
-- 
Terry Davis
http://approbation.org/

Do you have problems to get access to the server?

what user name did you use whwn login to the win98 box?

td or DOMAIN\td  ???


Hello,
I am doing a samba pdc with ldap.  When I try to login to the domain, or
access some shares I get this in my ldap logs:

Mar  7 16:46:16 localhost slapd[3588]: conn=25 op=4 SRCH
base="ou=People,dc=test,dc=org" scope=1
filter="(&(objectClass=posixAccount)(uid=DOMAIN\5CTD))"
Mar  7 16:46:16 localhost slapd[3588]: conn=25 op=4 SEARCH RESULT
tag=101 err=0 text
My domain/workgroup is "DOMAIN" and the username is "td". 
What is up
with this?  The client is just a win98 box.

I attached my ldif of my test ldap server.  Thank you for any clues.



metze
-----------------------------------------------------------------------------
Stefan "metze" Metzmacher <metze@metzemix.de>

On Fri, Mar 22, 2002 at 09:30:00AM +0100, Stefan (metze) Metzmacher
wrote:
> Do you have problems to get access to the server?
> 
> what user name did you use whwn login to the win98 box?
> 
> td or DOMAIN\td  ???
> 
> 
> Hello,
> I am doing a samba pdc with ldap.  When I try to login to the domain, or
> access some shares I get this in my ldap logs:
> 
> Mar  7 16:46:16 localhost slapd[3588]: conn=25 op=4 SRCH
> base="ou=People,dc=test,dc=org" scope=1
> filter="(&(objectClass=posixAccount)(uid=DOMAIN\5CTD))"
> Mar  7 16:46:16 localhost slapd[3588]: conn=25 op=4 SEARCH RESULT
> tag=101 err=0 text> 
> My domain/workgroup is "DOMAIN" and the username is
"td".  What is up
> with this?  The client is just a win98 box.
> 
> I attached my ldif of my test ldap server.  Thank you for any clues.
> 
> 
> 
> metze
>
-----------------------------------------------------------------------------
> Stefan "metze" Metzmacher <metze@metzemix.de>
> 
> 
> -- 
> To unsubscribe from this list go to the following URL and read the
> instructions:  http://lists.samba.org/mailman/listinfo/samba
Hi,

are this the whole search logs for this login?
when I used win 98 i got also an search request for ...
"(uid=loginname)"
(without the domain name). 

have you tried to use smbclient to test it too?

greets
Andrew