samba - Mar 2009 - Re: ldap group authentication refresh [SOLVED]

Hi,

I resolved the problem.
I changed my smb.conf as follows:

[global]
netbios name = SAMBA
server string = %h
workgroup = DOMAIN.TLD
security = user
encrypt passwords = true
ldap passwd sync = yes
guest account = nobody
passdb backend = ldapsam:ldap://zarafa.hasselt.be
ldap admin dn = cn=root,ou=hasselt.be,o=hasselt,c=be
ldap suffix = o=hasselt,c=be
ldap group suffix = ou=groups
ldap user suffix = ou=hasselt.be
enable privileges = yes
socket options = TCP_NODELAY
case sensitive = no
default case = lower
preserve case = yes
short preserve case = yes
dns proxy = no
printcap name = /etc/printcap
log level = 3
log file = /var/log/samba/%m.log
max log size = 50
nt acl support = Yes
create mask = 0644
directory mask = 0755
level2 oplocks = True

I now have a Samba server that authenticates against an OpenLDAP directory
without the use of a domain.

Thank you all for your support.

Arthur





2009/3/10 Adam Tauno Williams <awilliam@whitemice.org>
> On Tue, 2009-03-10 at 14:41 +0100, Arthur Odekerken wrote:
> > Adam,
> > I get this whenever I do
> > [root@samba ~]# pdbedit --user=nobody
> > smbldap_search_domain_info: Searching
> > for:[(&(objectClass=sambaDomain)(sambaDomainName=DOMAIN.TLD))]
> > smbldap_open_connection: connection opened
> > ldap_connect_system: succesful connection to the LDAP server
> > smbldap_search_domain_info: Searching
> > for:[(&(objectClass=sambaDomain)(sambaDomainName=DOMAIN.TLD))]
> > smbldap_open_connection: connection opened
> > ldap_connect_system: succesful connection to the LDAP server
> > init_sam_from_ldap: Entry found for user: nobody
> > nobody:99:nobody
> > How do you map nobody to guest?
> > Do I have to do this in LDAP or local?
>
> As mentioned in the previous message:
> <quote>
> Is your guest account mapped to "nobody"? (Maybe that is the
default,
> don't remember;  I try not to rely on defaults).
> Like: guest account = nobody
> </quote>
>
> > 2009/3/10 Adam Tauno Williams <awilliam@whitemice.org>
> >         On Mon, 2009-03-09 at 22:21 +0100, Arthur Odekerken wrote:
> >         > nscd wasn't running on my machine.
> >         > After setting the option ldapsam:trusted = yes smbd
doesn"t
> >         start any longer
> >         > I get the following error in /var/log/smbd.log:
> >         > [2009/03/09 22:01:31, 0] smbd/server.c:main(1063)
> >         >   ERROR: failed to setup guest info.
> >         > I did add a nobody account & group to my LDAP
database with
> >         the following
> >         > DN's:
> >
> >
> >         Is your guest account mapped to "nobody"? (Maybe
that is the
> >         default,
> >         don't remember;  I try not to rely on defaults).
> >
> >         Like: guest account = nobody
> >
> >         I assume your nobody user shows up if your do an `id nobody`
> >         and a
> >         `pdbedit --user=nobody`
> >         --
> >         OpenGroupware developer: awilliam@whitemice.org
> >         <http://whitemiceconsulting.blogspot.com/>
> >
> >         OpenGroupare & Cyrus IMAPd documenation @
> >         <
> http://docs.opengroupware.org/Members/whitemice/wmogag/file_view>
> >
> >         --
> >
> >         To unsubscribe from this list go to the following URL and read
> >         the
> >         instructions:  https://lists.samba.org/mailman/options/samba
> >
> >
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>