samba - Aug 2016 - samba-tool domain provision no such option: --slapd-path

Hello,

because of the login problem with windows 10 and the required changes in
"server max protocol" i try to setup an AD.

The AD works fine, now I have an other problem.

In my Samba3 install i have the following config:

mailserver with standanlone openLDAP <- sync -> samba3 with openLDAP

so the mailserver can receive mails even if the pdc is down.

as i can see at
https://wiki.samba.org/index.php/Samba4/LDAP_Backend/OpenLDAP#Setup_OpenLDAP

but my samba-tool does not known --use-ntvfs and --slapd-path


samba-tool domain provision --use-rfc2307 --interactive
--ldap-backend-type=openldap
...
"Warning: LDAP-Backend must be setup with path to slapd, e.g. --slapd-
path=\"/usr/local/libexec/slapd\"!"


samba-tool domain provision --use-rfc2307 --interactive
--ldap-backend-type=openldap --slapd-path=\"/usr/sbin/slapd\"
Usage: samba-tool domain provision [options]

samba-tool domain provision: error: no such option: --slapd-path

samba -V
Version 4.4.5-Debian

slapd -V
@(#) $OpenLDAP: slapd  (Jan 16 2016 23:00:08) $
	root at chimera:/tmp/buildd/openldap-2.4.40+dfsg/debian/build/servers/slapd

Hello Basti,

Am 22.08.2016 um 15:46 schrieb basti via samba:
> as i can see at
>
https://wiki.samba.org/index.php/Samba4/LDAP_Backend/OpenLDAP#Setup_OpenLDAP
> 
> but my samba-tool does not known --use-ntvfs and --slapd-path
There is no openLDAP support for the Samba AD DC (yet). Nadezhda Ivanova
is working on that, but as far as I know, there's no plan when this will
be part of an official release.

Here's a presentation from Nadezhda:
http://ldapcon.org/2015/?page_id=143



> mailserver with standanlone openLDAP <- sync -> samba3 with openLDAP
> so the mailserver can receive mails even if the pdc is down.
* You can set up a second DC (recommended anyway) to have a failover.
Then you don't have to worry if one goes down. By the way, there is no
"PDC" in an AD. All are DCs.

* You can write a script that exports stuff from AD and pushes it to
your openLDAP on your mailserver.



Regards,
Marc

On 22.08.2016 16:07, Marc Muehlfeld via samba wrote:
> * You can set up a second DC (recommended anyway) to have a failover.
> Then you don't have to worry if one goes down. By the way, there is no
> "PDC" in an AD. All are DCs.
i need the users on the linux box in a way like "getent passwd" at the
moment on my samba4 there is no user how is part of ad there
> * You can write a script that exports stuff from AD and pushes it to
> your openLDAP on your mailserver.
how can i get data from samba/ldap