thr3ads.net - samba - [Samba] Samba 3 member server connected to Samba 4 DC (using nslcd) [Jul 2013]

If this information is useful, please help other people find it:
Share via:

Chris Alavoine

2013-Jul-08 16:54 UTC

[Samba] Samba 3 member server connected to Samba 4 DC (using nslcd)

Hi all,

I am having a problem connecting a Samba 3 member server to my newly
created Samba 4 DC.

I am using nslcd at the Samba 4 end successfully and this has allowed me to
login using domain accounts - I've also got this working with visudo and
/etc/security/access.conf to control sudo access with groups created on the
DC. All good.

My problem is that I have a Samba 3 member server (fileserver) that I'm
trying to get to get work in this scenario. I've installed nslcd and am
using the following conf file:

# /etc/nslcd.conf
# nslcd configuration file. See nslcd.conf(5)
# for details.

# The user and group nslcd should run as.
uid nslcd
gid nslcd

# The location at which the LDAP server(s) should be reachable.
uri ldap://10.30.54.2

# The search base that will be used for all queries.
base dc=test,dc=internal,dc=com

# The LDAP protocol version to use.
#ldap_version 3

binddn cn=nslcd-service,cn=Users,dc=essence,dc=internal,dc=com
bindpw ******


If I then do a "getent group" I get success and can see all the
groups,
however "getent passwd" fails and I see this in the logs:

Jul  8 17:51:46 test-fs-001 nslcd[4587]: [8e1f29] passwd entry
CN=ice,CN=Users,DC=test,DC=internal,DC=com does not contain uid value

I've tried a few different conf attempts, but am confused why groups would
work and users wouldn't. Any help much appreciated.

Thanks,
Chris.

-- 
ACS (Alavoine Computer Services Ltd)
Chris Alavoine
mob +44 (0)7724 710 730
www.alavoinecs.co.uk
http://twitter.com/#!/alavoinecs
http://www.linkedin.com/pub/chris-alavoine/39/606/192

Marc Muehlfeld

2013-Jul-08 17:05 UTC

head link

[Samba] Samba 3 member server connected to Samba 4 DC (using nslcd)

Hello Chris,

Am 08.07.2013 18:54, schrieb Chris Alavoine:> My problem is that I have a Samba 3 member server (fileserver) that I'm
> trying to get to get work in this scenario. I've installed nslcd and am
> using the following conf file:
Why don't you use winbind on your member server?
http://wiki.samba.org/index.php/Samba4/Domain_Member




> If I then do a "getent group" I get success and can see all the
groups,
> however "getent passwd" fails and I see this in the logs:
>
> Jul  8 17:51:46 test-fs-001 nslcd[4587]: [8e1f29] passwd entry
> CN=ice,CN=Users,DC=test,DC=internal,DC=com does not contain uid value
Does this account have an "uid" attribute in AD?



Regards,
Marc

Maybe Matching Threads

Search for more possibly parallel threads

samba - Jul 2013 - Samba 3 member server connected to Samba 4 DC (using nslcd)

[Samba] Samba 3 member server connected to Samba 4 DC (using nslcd)

[Samba] Samba 3 member server connected to Samba 4 DC (using nslcd)

Maybe Matching Threads