Hi Samba users, First I can't open/create local group with usrmgr. Second creating global group and user is working, [third] but adding users to this [global] group failed.. I do this as yaya that has policy rights for everything, like "Domain Admins" has, and when I do it as root, it still doesn't work. Here's some infos: [root@sma-server-1 ~]# rpm -qa | grep samba samba-3.0.20-2 system-config-samba-1.2.31-1 samba-common-3.0.20-2 samba-client-3.0.20-2 [root@sma-server-1 ~]# rpm -qa | grep openldap openldap-2.2.23-5 openldap-devel-2.2.23-5 openldap-servers-2.2.23-5 openldap-clients-2.2.23-5 [root@sma-server-1 ~]# rpm -qa | grep smbldap-tools smbldap-tools-0.9.1-1 The log: [2005/10/24 16:32:27, 0] lib/smbldap.c:smbldap_open(822) smbldap_open: cannot access LDAP when not root.. [2005/10/24 16:32:27, 0] passdb/pdb_ldap.c:ldapsam_search_one_group(1972) ldapsam_search_one_group: Problem during the LDAP search: LDAP error: (Time limit exceeded) [root@sma-server-1 ~]# When I do it as root, the usrmgr message: The following error occured creating the local group Staffs: Access is denied. I installed Samba with ldap backend and applying IDEALX. I need to create/manage users and groups with usrmgr. Thank you very much, yaya
Le Wed, Oct 26, 2005 at 12:30:06PM +0700, yaya a ecrit:> When I do it as root, the usrmgr message: > The following error occured creating the local group Staffs: > Access is denied. > I installed Samba with ldap backend and applying IDEALX. I need to > create/manage users and groups with usrmgr.Did you tried setting priviledge to the "Domain Admins" group (for example), and then tried to use a member of this group ? . smbldap-usermod -G +512 adminuser . "enable privileges = yes" in smb.conf . net -U root%XXX rpc rights grant 'SMB-DOM\Domain Admins' SeMachineAccountPrivilege -- J?r?me **************************************************************************** This email is solely intended to the addressees and contains confidential information. Unless stated, the opinions and comments written down in this document are the sender's property and not the official vision of our Group. If you receive this email in error, please notify us by sending it back immediately to the email address of the sender and then please delete it from your own system. Please don't copy, use or forward the content of this document and its attachments to another person for any reason. Thank you for your understanding. ****************************************************************************