Miguel Casas-Sánchez
2004-May-14 00:38 UTC
[Samba] Problem setting up a Domain with Smb-ldap
Hi everybody:
I?m using Samba 3.0.2 (Suse 9.1) with LDAP, and everything works
fine...for workgroups, but when I try to build up a Domain, I do set up
the controller, etc but the Windows machine gives me the log that appear
down under, everything seems ok but I think the problem lies in these
two lines (apprxoimately in the middle)
Returning domain sid for domain FMDV ->
S-1-5-21-78767638-71612024-1917398797
_samr_open_domain: ACCESS DENIED (requested: 0x00000211)
Returning domain sid for domain FMDV ->
S-1-5-21-78767638-71612024-1917398797
_samr_create_user: ACCESS DENIED (granted: 0x00000201;
required: 0x00000010)
But I haven?t find anything in google, so , would anyone be so kind to
help me? thanks in advance
------------------------------
Miguel Casas-S?nchez
FDMV L?beck
m.casas_at_falk-meddv.de
------------------------------
added interface ip=192.168.1.70 bcast=192.168.1.255 nmask=255.255.255.0
Registered MSG_REQ_POOL_USAGE
Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
waiting for a connection
Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=FMDV))]
smbldap_open_connection: connection opened
netbios connect: name1=LINUXTEST name2=MCS
netbios connect: local=linuxtest remote=mcs, name type = 0
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close
all old resources.
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close
all old resources.
init_sam_from_ldap: Entry found for user: mcasas
init_group_from_ldap: Entry found for group: 100
check_ntlm_password: authentication for user [mcasas] -> [mcasas] ->
[mcasas] succeeded
Returning domain sid for domain FMDV ->
S-1-5-21-78767638-71612024-1917398797
_samr_open_domain: ACCESS DENIED (requested: 0x00000211)
Returning domain sid for domain FMDV ->
S-1-5-21-78767638-71612024-1917398797
_samr_create_user: ACCESS DENIED (granted: 0x00000201; required:
0x00000010)
Closing connections
Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=FMDV))]
smbldap_open_connection: connection opened
netbios connect: name1=LINUXTEST name2=MCS
netbios connect: local=linuxtest remote=mcs, name type = 0
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close
all old resources.
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close
all old resources.
init_sam_from_ldap: Entry found for user: mcasas
init_group_from_ldap: Entry found for group: 100
check_ntlm_password: authentication for user [mcasas] -> [mcasas] ->
[mcasas] succeeded
Closing connections
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 | Hi everybody: | | I?m using Samba 3.0.2 (Suse 9.1) with LDAP, and everything works | fine...for workgroups, but when I try to build up a Domain, I do set | up the controller, etc but the Windows machine gives me the log that | appear down under, everything seems ok but I think the problem lies in | these two lines (apprxoimately in the middle) | | Returning domain sid for domain FMDV -> S-1-5-21-78767638-71612024-1917398797 | _samr_open_domain: ACCESS DENIED (requested: 0x00000211) | Returning domain sid for domain FMDV -> | S-1-5-21-78767638-71612024-1917398797 _samr_create_user: | ACCESS DENIED (granted: 0x00000201; required: 0x00000010) | | But I haven?t find anything in google, so , would anyone be so kind to | help me? thanks in advance Looks like the LDAP dn samba is using does not have permission to create ~ entries where you have told it to create entries in your LDAP tree. Regards, Buchan - -- Buchan Milne Senior Support Technician Obsidian Systems http://www.obsidian.co.za B.Eng RHCE (803004789010797) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFApNhgrJK6UGDSBKcRAgRQAJ4n136nVyeAk2dIZw+1Un1rQ/YfcACgw/8V amGAgvTkDKCleS/chTiTtvw=HdsZ -----END PGP SIGNATURE-----