samba - Sep 2002 - Samba 2.2.6pre2 doesn't try to lookup for user user name by SID + pdbedit

I have instaled samba 2.2.6pre2 (due problems with printr drivers download 
in 2.2.5) and I have also tried to install it using ldapsam backend.

It seems be working, but there are two problems:

- if I try to display directory ACL (file - properties - security) I show 
only the user name, group name and others field are shown only as SIDs. 
There is no hit to LDAP (OK, groups seems be supported only in samba TNG) 
and I am not seeing any relevant error message in logs

- if I try to open a user in user manager for domains, the samba hit into 
LDAP by RID and gets relevant info. I see in log, that the parameters are 
filled from LDAP in init_ldap_from_sam to right places, but the client 
says, that is was not able to find user in domain.

- the pdbedit tool is very useful, but it should also fill in the 
displayName field, while importing smbpasswd. With smbpasswd backend is
displayed Full name from /etc/passwd, with LDAP is the field after import 
empty and the names aren't shown.

I think, that at least the first one has been working in previos versions.


cheers
dan

dan@ohnesorg.cz wrote:
> 
> I have instaled samba 2.2.6pre2 (due problems with printr drivers download
> in 2.2.5) and I have also tried to install it using ldapsam backend.
> 
> It seems be working, but there are two problems:
> 
> - if I try to display directory ACL (file - properties - security) I show
> only the user name, group name and others field are shown only as SIDs.
> There is no hit to LDAP (OK, groups seems be supported only in samba TNG)
> and I am not seeing any relevant error message in logs
Real group support is really only in TNG and HEAD.  We are currently
doing work to bring HEAD's support up to scratch, but 2.2 has next to
nothing.
> - if I try to open a user in user manager for domains, the samba hit into
> LDAP by RID and gets relevant info. I see in log, that the parameters are
> filled from LDAP in init_ldap_from_sam to right places, but the client
> says, that is was not able to find user in domain.
> 
> - the pdbedit tool is very useful, but it should also fill in the
> displayName field, while importing smbpasswd. With smbpasswd backend is
> displayed Full name from /etc/passwd, with LDAP is the field after import
> empty and the names aren't shown.
pdbedit is much improved in 3.0 - and the import functionality
compleatly replaced.  You might want to give that a go.

Andrew Bartlett

-- 
Andrew Bartlett                                 abartlet@pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet@samba.org
Student Network Administrator, Hawker College   abartlet@hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net