I turned on debug level 10 (by adding -d 10 to the net command), and I
see this over and over again in the syslog:
Dec 18 13:35:36 wdselab-a-1-100 net: ldapsam_search_one_group: Problem
during the LDAP search: LDAP error: invalid DN (Invalid DN
syntax)ldapsam_search_one_group: Query was:
"ou=Groups","dc=<domain>",
(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))
So why is that gidNumber being used? I can't find a way to change this
search query in any way. I manually added the
objectClass=sambaGroupMapping and it's corresponding entries to my LDAP
database before I did this. Would that cause a problem?
Rob
-------- Original Message --------
Subject: [Samba] Still having groupmap problems
Date: Wed, 17 Dec 2003 14:00:19 -0600
From: Robert Rati<Robert.Rati@motorola.com>
To: <samba@lists.samba.org>
I have two samba servers on two separate subnets that are comprising a
single domain, and one of the samba servers is also the LDAP server.
I've gotten everything configured except that I can't use the groupmap
command. When I run:
net groupmap add sid=<SID>-512 ntgroup="Domain Admins"
unixgroup=dom_admin type=domain
I get this error over and over again (and increasing the log level via
smbcontrol doesn't seem to provide any more information):
ldapsam_search_one_group: Problem during the LDAP search: LDAP error:
invalid DN (Invalid DN syntax)
I also see this message every so often in the syslogs of both samba servers:
passdb/pdb_ldap.c:ldapsam_search_one_group(1612)
ldapsam_search_one_group: Problem during the LDAP search: LDAP error:
invalid DN (Invalid DN syntax)ldapsam_search_one_group: Query was:
"ou=Groups","dc=<domain>",
(&(objectClass=sambaGroupMapping)(gidNumber=65534))
Are the samba servers trying to get group mappings from each other? Is
gidNumber=65534 being used because the group mapping isn't setup? Can
someone give me any advice on things to try to find the problem with my
group map actions? Any help would be appreciated.
Rob
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba