samba - Aug 2005 - BDC + LDAP

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Good Moring list
I already possess PDC + LDAP.  Today the necessity appeared to possess
a BDC, but users in base LDAP would like to legalize all, and mine
configuracao follows below:

[global]
~        workgroup = AURORA
~        netbios name = fly
~        server string = Marcio(CPD)
~        passdb backend = ldapsam:ldap://121.1.16.245
~        #username map = /usr/local/etc/smbusers
~        printcap name = cups
~        logon drive = H:
~        logon path = \\%L\%U\profiles
~        logon home = \\%L\%U
~        logon script = logon.bat
~        domain logons = Yes
~        os level = 33
~        preferred master = Yes
~        domain master = No
~        passdb backend = ldapsam:ldap://121.1.16.245
~        ldap passwd sync = yes
~        ldap delete dn = Yes
~        ldap admin dn = cn=suporte,dc=auroraalimentos,dc=com,dc=br
~        ldap suffix = dc=auroraalimentos,dc=com,dc=br
~        ldap machine suffix = ou=Computadores
~        ldap user suffix = ou=Usuarios
~        ldap group suffix = ou=Grupos
~        ldap idmap suffix = ou=Idmap
~        idmap backend = ldap:ldap://121.1.16.245
~        idmap uid = 10000-20000
~        idmap gid = 10000-20000
~        printing = cups

[netlogon]
~        comment = Servico de Logon em Rede [ startup.bat ]
~        path = /home/samba/netlogon
~        browseable = No
~        locking = No
~        read only = Yes

[home]
~        comment = Diretorio Pessoal %U, %u
~        path = /home/%U
~        read only = No
~        valid users = %U
~        force user = %U
~        create mask = 0664
~        directory mask = 0775
~        writeable = Yes
~        browseable = No

# the default is to use the user's home directory
[profiles]
~        comment = Perfil %U
~        path = /home/samba/profiles
~        read only = No
~        create mask = 0600
~        directory mask = 0700
~        browseable = No
~        guest ok = Yes
~        profile acls = Yes
~        csc policy = disable
~        # next line is a great way to secure the profiles
~        force user = %U
~        # next line allows administrator to access all profiles
~        valid users = %U

[dados]
~        comment = Suporte Backup
~        path = /backup/suporte
~        writable = Yes

[Musicas]
~        comment = Musicas Marcio
~        path = /backup/dados
~        valid users = marcio
~        writable = Yes

Now the problem and that nao I obtain to legalize user in the base
ldap, in log occurs the following one:

[2005/08/24 11:51:49, 1] auth/auth_util.c:make_server_info_sam(840)
~  User mdonada in passdb, but getpwnam() fails!
[2005/08/24 11:51:49, 0] auth/auth_sam.c:check_sam_security(324)
~  check_sam_security: make_server_info_sam() failed with
'NT_STATUS_NO_SUCH_USER'
[2005/08/24 11:51:56, 1] auth/auth_util.c:make_server_info_sam(840)
~  User mdonada in passdb, but getpwnam() fails!
[2005/08/24 11:51:56, 0] auth/auth_sam.c:check_sam_security(324)
~  check_sam_security: make_server_info_sam() failed with
'NT_STATUS_NO_SUCH_USER'


Some ideas?
Thank's

- --
M?rcio Luciano Donada
T.I. Aurora Alimentos Chapec?(SC)
Cooperativa Central Oeste Catarinense
mdonada at auroraalimentos dot com dot br
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFDDIviyJq2hZEymxcRAr+RAJ9ioQcu6N1+OxBkQ60RbgRfPrGqrACgsk43
ux+Om7x7U3LJKNCdD8VgNus=Uyfi
-----END PGP SIGNATURE-----

On Wednesday 24 August 2005 09:01, Marcio Luciano Donada
wrote:
> Good Moring list
> I already possess PDC + LDAP.  Today the necessity appeared to possess
> a BDC, but users in base LDAP would like to legalize all, and mine
> configuracao follows below:
<snip ...>
> Now the problem and that nao I obtain to legalize user in the base
> ldap, in log occurs the following one:
>
> [2005/08/24 11:51:49, 1] auth/auth_util.c:make_server_info_sam(840)
> ~  User mdonada in passdb, but getpwnam() fails!
> [2005/08/24 11:51:49, 0] auth/auth_sam.c:check_sam_security(324)
> ~  check_sam_security: make_server_info_sam() failed with
> 'NT_STATUS_NO_SUCH_USER'
> [2005/08/24 11:51:56, 1] auth/auth_util.c:make_server_info_sam(840)
> ~  User mdonada in passdb, but getpwnam() fails!
> [2005/08/24 11:51:56, 0] auth/auth_sam.c:check_sam_security(324)
> ~  check_sam_security: make_server_info_sam() failed with
> 'NT_STATUS_NO_SUCH_USER'
>
>
> Some ideas?
Please follow the examples in the book "Samba-3 by Example", Second
edition.
You can obtain this in print from Amazon.Com, or in PDF from:
http://www.samba.org/samba/docs/Samba3-ByExample.pdf

The chapters that will help you most are Chapters 5 and 6.

If you run into difficulties with the official documentation I have suggested 
please get back to me with specific details of what does not work for you. I 
will need to know the Chapter, section and page number please.

If the documentation is wrong, or misleading, I will fix it.

Cheers,
John T.

Marcio Luciano Donada schrieb:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Good Moring list
> I already possess PDC + LDAP.  Today the necessity appeared to possess
> a BDC, but users in base LDAP would like to legalize all, and mine
> configuracao follows below:
(...)
> [2005/08/24 11:51:56, 0] auth/auth_sam.c:check_sam_security(324)
> ~  check_sam_security: make_server_info_sam() failed with
> 'NT_STATUS_NO_SUCH_USER'
It seems to me that the workstation is not in the LDAP database?
There are no "add user script", "add machine script" etc. in
your
smb.conf file.

Follow the previous advice and fetch a "Samba-3 by Example" book!

-- 
Tomek
http://wpkg.org