I've tried numerous times but cannot get Vampire to bring across all groups
or add users to all groups that they belong to. Sometimes I get everygroup
except 1, other times not so lucky. Vampire log is below with an example of
what is going wrong.
vampire.log
Fetching DOMAIN database
Creating unix group: 'skischool'
Creating unix group: 'sales'
Creating unix group: 'Aramark'
Creating unix group: 'purchasing'
Creating unix group: 'MtnOps'
Creating unix group: '2005comptrol'
Creating unix group: 'accounting'
Creating unix group: 'bourgeausrvcs'
Creating unix group: 'guestsrvcs'
Creating unix group: 'inn'
Creating unix group: 'hr'
Creating unix group: 'test'
Creating unix group: 'itWinners'
Creating unix group: 'maintenance'
Creating unix group: 'naudit'
Creating unix group: 'aramarkadmin'
Creating unix group: 'Exec'
Creating unix group: 'aramarkFunctions'
Creating unix group: '2006Comptrol'
Creating unix group: 'payroll'
Creating unix group: 'SecuritySSV'
Creating unix group: 'backups'
Creating account: Administrator
Creating account: Guest
Creating account: LOOKOUT$
Creating account: sql
Creating account: thodgkinson
.
Missing one group in the above (public), as well as for example 2006Comptrol
does not populate but 2005comptrol does.
adding user thodgkinson to group 2005comptrol
getent group
2005comptrol:x:1005:Administrator,lchapman,hando,jcarroll,jchesnut,salbrecht
,shaddock,thodgkinson,sp2005,lpatterson,aladha,adore,ossis,cmikkelsen,cburto
n,mhealy,scarscadden,lmccheyne,boardroom,bgamble,lmoore,wsmith,smorice,lkoza
n,dfebbo,dpuff,gstevely,skihub02,kbuffel,krobertson,sp2006,sberry,lirvine,ti
cket01,ticket02,ticket03,ticket04,ticket05,ticket06,ticket07,ticket08,ticket
09,pass01,tent02,pass03,pass04,tent01,pass02,skitech01,rental02,rental03,ren
tal04,rental05,rental01,special01,special02,special03,special04,special05,sk
i01,ski02,ski03,ski04,ski05,ski06,tent03,Valet,hrseason,ebrousseau,hotel_che
ckin,rhoffart,rentalsheadcashier,skiosk01,skiosk02,rkerr,daycare01,daycare02
,slaver,skihub01,rneilson,rgordon,skiosk03,jgillespie,mwatson
accounting:x:1006:
bourgeausrvcs:x:1007:
guestsrvcs:x:1008:
inn:x:1009:
hr:x:1010:
test:x:1011:
itWinners:x:1012:
maintenance:x:1013:
naudit:x:1014:
aramarkadmin:x:1015:
Exec:x:1016:
aramarkFunctions:x:1017:
2006Comptrol:x:1018:
payroll:x:1019:
SecuritySSV:x:1020:
backups:x:1021:
Any help would be most appreciated.
Cheers,
Tim Hodgkinson
Here is my setup:
Suse 9.2
Samba-3.0.14a-4.1
Openldap2-2.2.15-5.2
PDC NT4sp6a
Smb.conf
# Global parameters
[global]
workgroup = SSVMTN
interfaces = eth1, lo
bind interfaces only = Yes
passdb backend = ldapsam:ldap://127.0.0.1
username map = /etc/samba/smbusers
log level = 10
syslog = 0
log file = /var/log/samba/%m
max log size = 50
smb ports = 139 445
name resolve order = wins bcast hosts
time server = Yes
printcap name = CUPS
show add printer wizard = No
add user script = /opt/IDEALX/sbin/smbldap-useradd -m "%u"
add group script = /opt/IDEALX/sbin/smbldap-groupadd -p "%g"
add user to group script = /opt/IDEALX/sbin/smbldap-groupmod -m
"%u"
"%g"
set primary group script = /opt/IDEALX/sbin/smbldap-usermod -g
"%g"
"%u"
add machine script = /opt/IDEALX/sbin/smbldap-useradd -w "%u"
logon script = scripts\logon.bat
logon path = ""
logon drive = U:
logon home = \\monarch\%U
domain logons = Yes
domain master = No
wins server = 172.16.1.100
ldap admin dn = cn=Manager,dc=skibanff,dc=com
ldap group suffix = ou=Groups
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=People
ldap passwd sync = Yes
ldap suffix = dc=skibanff,dc=com
ldap ssl = no
ldap user suffix = ou=People
idmap backend = ldap:ldap://127.0.0.1
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind nested groups = Yes
ea support = Yes
map acl inherit = Yes
Slapd.conf
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/samba3.schema
pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd/slapd.args
access to dn.base=""
by self write
by * auth
access to attr=userPassword
by self write
by * auth
access to attr=shadowLastChange
by self write
by * read
access to *
by * read
by anonymous auth
loglevel 296
#schemacheck on
idletimeout 30
#backend bdb
database bdb
checkpoint 1024 5
cachesize 10000
suffix "dc=skibanff,dc=com"
rootdn "cn=Manager,dc=skibanff,dc=com"
# rootpw = not24get
rootpw {SSHA}krp1QiI7UOd1plT2kSUad3LjpGNtcJFE
directory /var/lib/ldap
# Indices to maintain
index objectClass eq
index cn pres,sub,eq
index sn pres,sub,eq
index uid pres,sub,eq
index displayName pres,sub,eq
index uidNumber eq
index gidNumber eq
index memberUID eq
index sambaSID eq
index sambaPrimaryGroupSID eq
index sambaDomainName eq
index default sub
ldap.conf
host 127.0.0.1
base dc=skibanff-world,dc=com
ldap_version 3
binddn cn=Manager,dc=skibanff,dc=com
bindpw not24get
pam_password exop
nss_base_passwd ou=People,dc=skibanff,dc=com?one
nss_base_shadow ou=People,dc=skibanff,dc=com?one
nss_base_group ou=Groups,dc=skibanff,dc=com?one
ssl off
I've tried numerous times but cannot get Vampire to bring across all groups
or add users to all groups that they belong to. Sometimes I get every group
except 1, other times not so lucky.
Vampire log is below with an example of what is going wrong.
vampire.log
Fetching DOMAIN database
Creating unix group: 'skischool'
Creating unix group: 'sales'
Creating unix group: 'Aramark'
Creating unix group: 'purchasing'
Creating unix group: 'MtnOps'
Creating unix group: '2005comptrol'
Creating unix group: 'accounting'
Creating unix group: 'bourgeausrvcs'
Creating unix group: 'guestsrvcs'
Creating unix group: 'inn'
Creating unix group: 'hr'
Creating unix group: 'test'
Creating unix group: 'itWinners'
Creating unix group: 'maintenance'
Creating unix group: 'naudit'
Creating unix group: 'aramarkadmin'
Creating unix group: 'Exec'
Creating unix group: 'aramarkFunctions'
Creating unix group: '2006Comptrol'
Creating unix group: 'payroll'
Creating unix group: 'SecuritySSV'
Creating unix group: 'backups'
Creating account: Administrator
Creating account: Guest
Creating account: LOOKOUT$
Creating account: sql
Creating account: thodgkinson
.
Missing one group in the above (public), as well as for example 2006Comptrol
does not populate but 2005comptrol does.
adding user thodgkinson to group 2005comptrol
getent group
2005comptrol:x:1005:Administrator,lchapman,hando,jcarroll,jchesnut,salbrecht
,shaddock,thodgkinson,sp2005,lpatterson,aladha,adore,ossis,cmikkelsen,cburto
n,mhealy,scarscadden,lmccheyne,boardroom,bgamble,lmoore,wsmith,smorice,lkoza
n,dfebbo,dpuff,gstevely,skihub02,kbuffel,krobertson,sp2006,sberry,lirvine,ti
cket01,ticket02,ticket03,ticket04,ticket05,ticket06,ticket07,ticket08,ticket
09,pass01,tent02,pass03,pass04,tent01,pass02,skitech01,rental02,rental03,ren
tal04,rental05,rental01,special01,special02,special03,special04,special05,sk
i01,ski02,ski03,ski04,ski05,ski06,tent03,Valet,hrseason,ebrousseau,hotel_che
ckin,rhoffart,rentalsheadcashier,skiosk01,skiosk02,rkerr,daycare01,daycare02
,slaver,skihub01,rneilson,rgordon,skiosk03,jgillespie,mwatson
accounting:x:1006:
bourgeausrvcs:x:1007:
guestsrvcs:x:1008:
inn:x:1009:
hr:x:1010:
test:x:1011:
itWinners:x:1012:
maintenance:x:1013:
naudit:x:1014:
aramarkadmin:x:1015:
Exec:x:1016:
aramarkFunctions:x:1017:
2006Comptrol:x:1018:
payroll:x:1019:
SecuritySSV:x:1020:
backups:x:1021:
I'm suppose to be a member of 2006Comptrol as well.
Any help would be most appreciated.
Cheers,
Tim Hodgkinson
Here is my setup:
Suse 9.2
Samba-3.0.14a-4.1
Openldap2-2.2.15-5.2
PDC NT4sp6a
Smb.conf
# Global parameters
[global]
workgroup = SSVMTN
interfaces = eth1, lo
bind interfaces only = Yes
passdb backend = ldapsam:ldap://127.0.0.1
username map = /etc/samba/smbusers
log level = 10
syslog = 0
log file = /var/log/samba/%m
max log size = 50
smb ports = 139 445
name resolve order = wins bcast hosts
time server = Yes
printcap name = CUPS
show add printer wizard = No
add user script = /opt/IDEALX/sbin/smbldap-useradd -m "%u"
add group script = /opt/IDEALX/sbin/smbldap-groupadd -p "%g"
add user to group script = /opt/IDEALX/sbin/smbldap-groupmod -m
"%u"
"%g"
set primary group script = /opt/IDEALX/sbin/smbldap-usermod -g
"%g"
"%u"
add machine script = /opt/IDEALX/sbin/smbldap-useradd -w "%u"
logon script = scripts\logon.bat
logon path = ""
logon drive = U:
logon home = \\monarch\%U
domain logons = Yes
domain master = No
wins server = 172.16.1.100
ldap admin dn = cn=Manager,dc=skibanff,dc=com
ldap group suffix = ou=Groups
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=People
ldap passwd sync = Yes
ldap suffix = dc=skibanff,dc=com
ldap ssl = no
ldap user suffix = ou=People
idmap backend = ldap:ldap://127.0.0.1
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind nested groups = Yes
ea support = Yes
map acl inherit = Yes
Slapd.conf
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/samba3.schema
pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd/slapd.args
access to dn.base=""
by self write
by * auth
access to attr=userPassword
by self write
by * auth
access to attr=shadowLastChange
by self write
by * read
access to *
by * read
by anonymous auth
loglevel 296
#schemacheck on
idletimeout 30
#backend bdb
database bdb
checkpoint 1024 5
cachesize 10000
suffix "dc=skibanff,dc=com"
rootdn "cn=Manager,dc=skibanff,dc=com"
# rootpw = not24get
rootpw {SSHA}krp1QiI7UOd1plT2kSUad3LjpGNtcJFE
directory /var/lib/ldap
# Indices to maintain
index objectClass eq
index cn pres,sub,eq
index sn pres,sub,eq
index uid pres,sub,eq
index displayName pres,sub,eq
index uidNumber eq
index gidNumber eq
index memberUID eq
index sambaSID eq
index sambaPrimaryGroupSID eq
index sambaDomainName eq
index default sub
ldap.conf
host 127.0.0.1
base dc=skibanff-world,dc=com
ldap_version 3
binddn cn=Manager,dc=skibanff,dc=com
bindpw not24get
pam_password exop
nss_base_passwd ou=People,dc=skibanff,dc=com?one
nss_base_shadow ou=People,dc=skibanff,dc=com?one
nss_base_group ou=Groups,dc=skibanff,dc=com?one
ssl off