jean-marc pouchoulon
2003-Sep-25 11:33 UTC
[Samba] Winbind ldap samba 3 BDC getent passwd answer don't retrieve domain users, can't login on the domain with users that are not on /ect/passwd + typo error ?
Helo,
On redhat 9 - samba 3 stable - Using the rpm from 24 september.
I try to configure a bdc.
Smb.conf is :
idmap backend = ldap:ldap://ip_address
ldap idmap suffix = ou=personnes,ou=ac-ville,ou=educ
winbind uid = 10000-20000
winbind gid = 10000-20000
# allow enumeration of winbind users and groups
winbind enum users = yes
winbind enum groups = yes
# give winbind users a real shell (only needed if they have
telnet access)
template shell = /bin/bash
wbinfo -u and -g are working.
Nsswitch.conf is :
passwd: files winbind
shadow: files
group: files winbind
But getent passwd and getent group did give back only the users
located in /etc/passwd and /etc/group
On login with a user that don't have local entry I have
init_sam_from_ldap: Entry found for user: test1
[2003/09/25 11:30:41, 1] auth/auth_util.c:make_server_info_sam(818)
User test1 in passdb, but getpwnam() fails!
[2003/09/25 11:30:41, 0] auth/auth_sam.c:check_sam_security(459)
check_sam_security: make_server_info_sam() failed with
'NT_STATUS_NO_SUCH_USER'
[2003/09/25 11:30:41, 2] auth/auth.c:check_ntlm_password(309)
check_ntlm_password: Authentication for user [test1] -> [test1]
FAILED with error NT_STATUS_N
O_SUCH_USER
[2003/09/25 11
Do I must create the user in local ? I want to use winbind to
avoid it.
Any help would be greatly appreciated.
Ps
Maybe , there is a typo error on the "Samba Project
Documentation".
P69 idmapbackend = ldapsam:ldap://slave-ldap.quenya.org
If use ldapsam instead of ldap I have
[2003/09/25 13:25:25, 0] sam/idmap.c:idmap_init(136)
idmap_init: could not load remote backend 'ldapsam'.
Gerald (Jerry) Carter
2003-Sep-30 22:31 UTC
[Samba] Winbind ldap samba 3 BDC getent passwd answer don't retrieve domain users, can't login on the domain with users that are not on /ect/passwd + typo error ?
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 jean-marc pouchoulon wrote: | Helo, | | On redhat 9 - samba 3 stable - Using the rpm from 24 september. | I try to configure a bdc. | | Smb.conf is : | | idmap backend = ldap:ldap://ip_address | ldap idmap suffix = ou=personnes,ou=ac-ville,ou=educ | winbind uid = 10000-20000 | winbind gid = 10000-20000 | # allow enumeration of winbind users and groups | winbind enum users = yes | winbind enum groups = yes | # give winbind users a real shell (only needed if they have | telnet access) | template shell = /bin/bash | | | wbinfo -u and -g are working. | | Nsswitch.conf is : | | passwd: files winbind | shadow: files | group: files winbind | | | But getent passwd and getent group did give back only the users | located in /etc/passwd and /etc/group There's a buh in the RPM for RedHat 9 that doesn't create the symlink to /lib/libnss_winbind.so.2. I'll build new RPMS this week. cheers, jerry ~ ---------------------------------------------------------------------- ~ Hewlett-Packard ------------------------- http://www.hp.com ~ SAMBA Team ---------------------- http://www.samba.org ~ GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc ~ "You can never go home again, Oatman, but I guess you can shop there." ~ --John Cusack - "Grosse Point Blank" (1997) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE/egRJIR7qMdg1EfYRAk6EAJ4w2/VrMvtQJu2elsAD9nL/LlnUXwCgwnfP Rv8CN3cCW0vOtxjw70kC0Ls=gCnF -----END PGP SIGNATURE-----
Apparently Analagous Threads
- Mac OS and interpretation of @ in a username. Ex user@mds.xyz doesn't work on Mac OS but does on Win 10
- Re: Winbind ldap samba 3 BDC getent passwd answer don't retrieve domain users, can't login on the domain with users that are not on /ect/passwd
- idmap problem
- Does 3.0 work with w2k sp3 and/or win 2003? Anybody had success?
- Problem with Samba-3.0.25rc3 & idmap_ldap (winbind dumps core)