Adam Tauno Williams
2004-Apr-16 20:02 UTC
[Samba] Why (&(objectClass=sambaDomain)(sambaDomainName=SARDINE))?
I have a member server that is constantly querying the LDAP server with - (&(objectClass=sambaDomain)(sambaDomainName=SARDINE)) - when security=domain and workgroup=backbone. The server DOES authenticate domain users, and everything seems to work, but this draining resources. This is RH9, Samba 3.0.3pre2 (although I'm pretty certain I saw this on 3.0.2) and OpenLDAP openldap-2.1.25-1 (local replicant). [2004/04/16 15:52:09, 10] lib/smbldap.c:smbldap_connect_system(770) ldap_connect_system: Binding to ldap server ldapi:/// as "cn=Manager,o=Morrison Industries,c=US" [2004/04/16 15:52:09, 3] lib/smbldap.c:smbldap_connect_system(805) ldap_connect_system: succesful connection to the LDAP server [2004/04/16 15:52:09, 4] lib/smbldap.c:smbldap_open(856) The LDAP server is succesful connected [2004/04/16 15:52:09, 5] lib/smbldap.c:rebindproc_connect_with_state(698) rebindproc_connect_with_state: Rebinding as "cn=Manager,o=Morrison Industries,c=US" [2004/04/16 15:52:09, 0] lib/smbldap.c:smbldap_search_suffix(1125) smbldap_search_suffix: Problem during the LDAP search: (No such object) [2004/04/16 15:52:09, 2] lib/smbldap.c:smbldap_search_domain_info(1351) Problem during LDAPsearch: No such object [2004/04/16 15:52:09, 2] lib/smbldap.c:smbldap_search_domain_info(1352) Query was: , (&(objectClass=sambaDomain)(sambaDomainName=SARDINE)) [2004/04/16 15:52:09, 2] passdb/pdb_ldap.c:pdb_init_ldapsam(2457) pdb_init_ldapsam: WARNING: Could not get domain info, nor add one to the domain pdb_init_ldapsam: Continuing on regardless, will be unable to allocate new users/groups, and will risk BDCs having inconsistant SIDs Adam Tauno Williams Network & Systems Administrator Morrison Industries Grand Rapids, Mi. USA
Andrew Bartlett
2004-Apr-16 20:25 UTC
[Samba] Why (&(objectClass=sambaDomain)(sambaDomainName=SARDINE))?
On Fri, Apr 16, 2004 at 04:00:50PM -0400, Adam Tauno Williams wrote:> I have a member server that is constantly querying the LDAP server with - > (&(objectClass=sambaDomain)(sambaDomainName=SARDINE)) > - when security=domain and workgroup=backbone. The server DOES authenticate > domain users, and everything seems to work, but this draining resources.Is SARDINE the local host name? I suspect you don't have local users in LDAP, for your domain members, so don't point the local passdb at ldap (an empty tdbsam or smbpasswd will do fine). Andrew Bartlett