On Sat, 2014-11-22 at 21:43 -0800, Greg Zartman wrote:> I've been crawling around in the Samba python code and I can't seem
to
> determine what --ldapadminpass does for us on the user side? It looks to
> me from what I can discern from the code is that this is for internal
> Samba<->LDAP communication using the cn=samba-admin.
>
> Are these creds (ldapadminpass + samba-admin) usable at all to connect
> directly to the Samba LDAP server and talk to it? I'm working on a
perl
> API for pulling specific data from the Active Directory and I'm
currently
> creating a domain admins user for these comms, but it would be cleaner if I
> could use these buildin creds.
It is used as part of the resurrected OpenLDAP backend, it isn't used
for or recognised by the Samba LDAP server.
You could use the machine account, or create a service user as you
suggest.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba