Daniel Bramkamp
2005-Nov-15 18:44 UTC
[Samba] Samba 2.2 to Samba 3.0 migration - LDAP backend
Hi list, I am having some issues migrating a Samba 2.2 installation to Samba 3.0. I am using the LDAP backend and converted the LDAP database to the new schema using the provided convertSambaAccount script. As far as I can tell that worked fine. The new ldif file has everything in it. Populating the LDAP database with the converted ldif file works ok as well. However, when I try to login to the domain using a windows box the sambaNTpassword and sambaLMpassword attributes are deleted from the directory and I get an error. The same happens when I access Samba via smbclient -U administrator -L IP. Prior to that the attributes do exist. After using smbpasswd to set the password again everything works as expected. Any ideas what is causing this behaviour or if I made a mistake while migrating the database ? Thanks in advance -- Daniel Bramkamp
On 11/15/05, Daniel Bramkamp <bramkamp@team-datentechnik.de> wrote:> I am having some issues migrating a Samba 2.2 installation to Samba > 3.0. I am using the LDAP backend and converted the LDAP database to the > new schema using the provided convertSambaAccount script. As far as I > can tell that worked fine. The new ldif file has everything in it. > Populating the LDAP database with the converted ldif file works ok as > well. However, when I try to login to the domain using a windows box > the sambaNTpassword and sambaLMpassword attributes are deleted from the > directory and I get an error. The same happens when I access Samba via > smbclient -U administrator -L IP. Prior to that the attributes do exist. > > After using smbpasswd to set the password again everything works as > expected. Any ideas what is causing this behaviour or if I made a > mistake while migrating the database ?It sounds like you might be running into the issue described here: http://marc.theaimsgroup.com/?l=samba&m=113207146109418&w=2 Josh Kelley
Daniel Bramkamp
2005-Nov-16 09:37 UTC
[Samba] Samba 2.2 to Samba 3.0 migration - LDAP backend
Quoting Josh Kelley <joshkel@gmail.com>:> It sounds like you might be running into the issue described here: > http://marc.theaimsgroup.com/?l=samba&m=113207146109418&w=2Thanks for pointing that out. The pwdLastSet attribute was indeed set to 0 on all accounts which made Samba delete the attributes and set the D flag on the account. Setting it to a UNIX timestamp before importing the LDIF file solved the problem. Thanks again -- Daniel Bramkamp team! datentechnik GmbH & Co.KG Werner von Siemens Stra?e 12a 49124 Georgsmarienh?tte Tel.: 05401-8226-0 Fax : 05401-8226-20 eMail: bramkamp@team-datentechnik.de