dan@ohnesorg.cz
2002-Sep-19 10:06 UTC
[Samba] Samba 2.2.6pre2 doesn't try to lookup for user user name by SID + pdbedit
I have instaled samba 2.2.6pre2 (due problems with printr drivers download in 2.2.5) and I have also tried to install it using ldapsam backend. It seems be working, but there are two problems: - if I try to display directory ACL (file - properties - security) I show only the user name, group name and others field are shown only as SIDs. There is no hit to LDAP (OK, groups seems be supported only in samba TNG) and I am not seeing any relevant error message in logs - if I try to open a user in user manager for domains, the samba hit into LDAP by RID and gets relevant info. I see in log, that the parameters are filled from LDAP in init_ldap_from_sam to right places, but the client says, that is was not able to find user in domain. - the pdbedit tool is very useful, but it should also fill in the displayName field, while importing smbpasswd. With smbpasswd backend is displayed Full name from /etc/passwd, with LDAP is the field after import empty and the names aren't shown. I think, that at least the first one has been working in previos versions. cheers dan
Andrew Bartlett
2002-Sep-20 00:49 UTC
[Samba] Samba 2.2.6pre2 doesn't try to lookup for user user name by SID +pdbedit
dan@ohnesorg.cz wrote:> > I have instaled samba 2.2.6pre2 (due problems with printr drivers download > in 2.2.5) and I have also tried to install it using ldapsam backend. > > It seems be working, but there are two problems: > > - if I try to display directory ACL (file - properties - security) I show > only the user name, group name and others field are shown only as SIDs. > There is no hit to LDAP (OK, groups seems be supported only in samba TNG) > and I am not seeing any relevant error message in logsReal group support is really only in TNG and HEAD. We are currently doing work to bring HEAD's support up to scratch, but 2.2 has next to nothing.> - if I try to open a user in user manager for domains, the samba hit into > LDAP by RID and gets relevant info. I see in log, that the parameters are > filled from LDAP in init_ldap_from_sam to right places, but the client > says, that is was not able to find user in domain. > > - the pdbedit tool is very useful, but it should also fill in the > displayName field, while importing smbpasswd. With smbpasswd backend is > displayed Full name from /etc/passwd, with LDAP is the field after import > empty and the names aren't shown.pdbedit is much improved in 3.0 - and the import functionality compleatly replaced. You might want to give that a go. Andrew Bartlett -- Andrew Bartlett abartlet@pcug.org.au Manager, Authentication Subsystems, Samba Team abartlet@samba.org Student Network Administrator, Hawker College abartlet@hawkerc.net http://samba.org http://build.samba.org http://hawkerc.net