Andreas Bittner
2005-Nov-26 22:18 UTC
[Samba] samba as pdc with ldap: trouble with smbldap-populate: error adding from cn=Domain Admins,ou=Groups onwards
hello there,
i am new to smbldap-tools and i try to follow some tutorials to setup a
samba-pdc but with migration from an old nt4 pdc server.
first i want a very easy and basic setup, no tls/crypto/ssl just for
testing.
im also using the following tutorial:
<http://www.susewiki.org/index.php?title=SAMBA-PDC_OpenLDAP_DYNDS_CLAM>
i installed the smbldap-tools rpm on a suse 10 box. (called LINUX)
i copied the smbldap-tool config files to: /etc/smbldap-tools/
-rw-r--r-- 1 root root 7854 Nov 26 21:12 smbldap.conf
-rw------- 1 root root 422 Nov 26 21:18 smbldap_bind.conf
and the smbldap-tool scripts to: /usr/local/sbin/
-rwxr-xr-x 1 root root 5379 Nov 26 21:52 smbldap-groupadd
-rwxr-xr-x 1 root root 2473 Nov 26 21:52 smbldap-groupdel
-rwxr-xr-x 1 root root 8550 Nov 26 21:52 smbldap-groupmod
-rwxr-xr-x 1 root root 2009 Nov 26 21:52 smbldap-groupshow
-rwxr-xr-x 1 root root 9495 Nov 26 21:52 smbldap-passwd
-rwxr-xr-x 1 root root 14533 Nov 26 21:52 smbldap-populate
-rwxr-xr-x 1 root root 18377 Nov 26 21:52 smbldap-useradd
-rwxr-xr-x 1 root root 3244 Nov 26 21:52 smbldap-userdel
-rwxr-xr-x 1 root root 7633 Nov 26 21:52 smbldap-userinfo
-rwxr-xr-x 1 root root 18947 Nov 26 21:52 smbldap-usermod
-rwxr-xr-x 1 root root 1950 Nov 26 21:52 smbldap-usershow
-rwxr-xr-x 1 root root 26153 Nov 26 21:52 smbldap_tools.pm
---------
now my question is about these opt directories of the smbldap-tools:
do i need to do anything in the /opt/IDEALX/sbin/ directory?
what about that configure.pl script there? i found out that it needs a
running samba server to use it, but i first want to setup my ldap
directory. is this correct?
my /etc/openldap/slapd.conf has the following additions/changes:
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/samba3.schema
access to attrs=userPassword,sambaLMPassword,sambaNTPassword
by self write
by anonymous auth
by * none
database bdb
suffix "dc=mycomp,dc=de"
rootdn "cn=Manager,dc=mycomp,dc=de"
rootpw secret
index objectClass,uidNumber,gidNumber,memberUid eq
index cn,sn,uid,displayName pres,sub,eq
index mail,givenname eq,subinitial
index sambaSID,sambaPrimaryGroupSID,sambaDomainName eq
my /etc/openldap/ldap.conf has the following:
HOST 127.0.0.1
BASE dc=mycomp,dc=de
the file /etc/smbldap-tools/smbldap.conf has the following:
SID="S-1-5-21-50867963-246823577-285429281"
# SID from the old running NT4 domain server via:
# net rpc getsid -S OLD-NT4-PDC -W MYCOMP
sambaDomain="MYCOMP"
ldapTLS="0"
suffix="dc=mycomp,dc=de"
sambaUnixIdPooldn="sambaDomainName=MYCOMP,${suffix}"
userSmbHome="\\LINUX\%U"
userProfile="\\LINUX\profiles\%U"
mailDomain="mycomp.de"
------------------
the file /etc/smbldap-tools/smbldap_bind.conf is:
slaveDN="cn=Manager,dc=mycomp,dc=de"
slavePw="secret"
masterDN="cn=Manager,dc=mycomp,dc=de"
masterPw="secret"
-----------------
so when i use smbldap-populate now i get the following output:
-----------------------------------------------------------------
linux:/usr/local/sbin # ./smbldap-populate
Populating LDAP directory for domain MYCOMP
(S-1-5-21-50867963-246823577-285429281)
(using builtin directory structure)
adding new entry: dc=mycomp,dc=de
adding new entry: ou=Users,dc=mycomp,dc=de
adding new entry: ou=Groups,dc=mycomp,dc=de
adding new entry: ou=Computers,dc=mycomp,dc=de
adding new entry: ou=Idmap,dc=mycomp,dc=de
adding new entry: uid=root,ou=Users,dc=mycomp,dc=de
adding new entry: uid=nobody,ou=Users,dc=mycomp,dc=de
adding new entry: cn=Domain Admins,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 9.
adding new entry: cn=Domain Users,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 10.
adding new entry: cn=Domain Guests,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 11.
adding new entry: cn=Domain Computers,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 12.
adding new entry: cn=Administrators,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 16.
adding new entry: cn=Account Operators,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 18.
adding new entry: cn=Print Operators,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 19.
adding new entry: cn=Backup Operators,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 20.
adding new entry: cn=Replicators,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 21.
adding new entry: sambaDomainName=MYCOMP,dc=mycomp,dc=de
Please provide a password for the domain root:
Changing password for root
New password :
Retype new password :
---------------------------
whats wrong here? what did i miss?
the slapd is started and the first entries get added according to the
output.
any ideas? did i miss any files or configurations?
thanks.
andreas
Willi Schiegel
2005-Dec-02 12:24 UTC
[Samba] samba as pdc with ldap: trouble with smbldap-populate: error adding from cn=Domain Admins,ou=Groups onwards
Hello Andreas, Andreas Bittner wrote:> adding new entry: cn=Domain Admins,ou=Groups,dc=mycomp,dc=de > failed to add entry: no structural object class provided at > ./smbldap-populate line 471, <GEN1> line 9.Did you copy the samba schema to the LDAP schema directory and include it to the configuration file include /etc/openldap/schema/samba.schema Greetings, Willi Schiegel