Hi all,
i'm a newbie on this list.
Greetings to all "old" members.
I'm now working on a difficult problem.
What i want is to build a PDC with samba 2.2.3a
for my network.
Everything works fine (including LDAP-support).
My problem is, that i can't activate the passwd things
anyway.
I tried hard for some days without coming to a solution.
My System:
----------
1) LINUX PDC-Server
Suse Linux 7.1/Kernel 2.4.18 / GNU C Library stable
release version 2.2 /
Samba 2.2.3a / openldap 2.0.23 /openssl 0.96c
2) W2K-VClient
W2k with Servicepak 2 on with ATHLON 1000 Processor
First, here's my smb.conf (anonymized for securety reasons)
:
---------------snipp----------------
[global]
server string = Samba-PDC %v on % h
workgroup = WORKGROUP
encrypt passwords = yes
######## PDC things ################
netbios name = 486dx66
domain master = Yes
local master = Yes
prefered master = yes
wins support = no
wins proxy = no
security = domain
os level = 255
domain logons = yes
logon drive = z:
logon path = \\%N\%u\ntprofile
logon home = \\%N\%u\.profiles
logon script = logon.bat
add user script = /usr/local/sbin/mkuser %u user
log level = 200
unix password sync = Yes
passwd program = /usr/local/bin/smbpasswd %u
passwd chat *password:*%n\n*password:*%n\n*changed*
passwd chat= debug
# passwd program = /usr/local/sbin/mkpw %u
# passwd chat
*old*password:*%o\n*new*password:*%n\n*retype*new*password:*%n\n*done*
# passwd program = /usr/local/sbin/mkpasswd %u
# passwd chat *old password* %o\n *new* password*
%n\n*retype new password* %n\n*done*
# passwd chat "new password: "%n\n"retype new
password: "%n\n"done"\n
########LDAP things #############################
ldap server = x.y.z
ldap suffix =
"ou=users,ou=accounts,ou=mynetwork,o=myorganization,dc=xxxnet,dc=yyy"
ldap admin dn "uid=admin,ou=ldap,o=myorganization,dc=xxxnet,dc=yyy"
ldap ssl = start tls
ldap port = 389
#################################################
lock dir = /var/lock/samba
hide dot files = No
map system = Yes
read size = 65535
log file = /var/log/samba.log.%m
lpq command = /usr/bin/lpq -P%p %u
time server = Yes
character set = ISO8859-1
max log size = 1000
hosts allow = 192.168.x.y/255.255.255.0 ,
interfaces = 192.168.x.y/255.255.255.0
valid chars = ?:?:?:?:?:?:?
browsable = yes
map hidden = Yes
print command = /usr/bin/lpr-hr -P%p %s %m %T %u %g %h
hosts equiv = /etc/hosts.equiv
dos filetime resolution = Yes
socket options = TCP_NODELAY IPTOS_LOWDELAY
bind interfaces only = Yes
strict locking = Yes
map to guest = Bad User
lprm command = /usr/bin/lprm -P%p %j
dos filetimes = Yes
create mask = 0644
preserve case = yes
short preserve case = yes
case sensitive =no
[netlogon]
path= /opt/samba/netlogon
read only = no
locking = no
public = no
writeable = yes
browseable = yes
root preexec = /opt/samba/netlogon/netlogon.sh %S %P %u %g
%U %G %H %v %h %m %L %M %N %R %d %a %I %$(HOSTTYPE) %T %p
---------------snipp----------------
As you can see i tried different things with the passwd
chat, none worked,
all get the same result.
Here's the part of the logfile, that shows that the
communication
between Win2K-Client and the LINUX-PDC doesn't work :
---------------snipp----------------
[2002/04/09 16:29:34, 3]
smbd/chgpasswd.c:chat_with_program(430)
Dochild for user harry (uid=0,gid=0)
[2002/04/09 16:29:34, 10] smbd/chgpasswd.c:dochild(211)
Invoking '/usr/local/bin/smbpasswd harry' as password
change program.
[2002/04/09 16:29:38, 10] smbd/chgpasswd.c:expect(276)
expect: returning False
[2002/04/09 16:29:38, 3] smbd/chgpasswd.c:talktochild(302)
Response 1 incorrect
[2002/04/09 16:29:38, 3]
smbd/chgpasswd.c:chat_with_program(363)
Child failed to change password: harry
[2002/04/09 16:29:38, 3]
smbd/chgpasswd.c:chat_with_program(401)
The process exited while we were waiting
---------------snipp----------------
As you can see the even the first respond doesn't work.
I tried this with several scripts to find out what's wrong,
but i came to no solution.
Here's the output of
/usr/local/bin/smbpasswd harry :
---------------snipp----------------
486dx66:/var/log # /usr/local/bin/smbpasswd harry
New SMB password:
Retype new SMB password:
Password changed for user harry.
486dx66:/var/log #
---------------snipp----------------
This should correspond to the string in "passwd chat",
but obviously it doesn't.
My second problem is, that i can't get the option
"add user script" working.
The called script is working well, when started in a shell.
When i add a user to the domain in W2k nothing ever happens.
I hope someone can help me with these problems.
greets Harry