Er,there it is. I want to use samba to build a domain. I want to join computers into this domain. And I need to access this domain to get sid of computers in the domain, using C# class DirectoryEntry as 'ldap://my domain info' in my another program. ---- On Fri, 20 Apr 2018 01:27:54,"Rowland Penny via samba" <samba at lists.samba.org> wrote:>On Fri, 20 Apr 2018 01:03:40 +0800 (CST) >Ryan <ryanyang51 at 163.com> wrote: > >> So bath samba 4.7.6 and 4.8.0 hava this problem. Can it be comfirmed >> to be a bug? If so, it seems to be an important issue that should be >> resolved as an important function of a DC. Up to now I only have >> samba 4.5.x that work normal. But 4.5.x won't have new version any >> more. While I want to keep my samba to be the newest security >> version. Hope this problem get resolved soon. Thanks for your help >> RyanYang >> > >You have been very vague about what you are trying to do, you just >mentioned adexplorer and ldap. I can assure that connecting to a Samba >AD DC via ldap still works >Can you give examples of what you are trying to do ? > >Rowland > >-- >To unsubscribe from this list go to the following URL and read the >instructions: https://lists.samba.org/mailman/options/samba
On Fri, 20 Apr 2018 10:01:33 +0800 (CST) Ryan <ryanyang51 at 163.com> wrote:> Er,there it is. I want to use samba to build a domain. I want to join > computers into this domain. And I need to access this domain to get > sid of computers in the domain, using C# class DirectoryEntry as > 'ldap://my domain info' in my another program. >So basically you want to run something like this: ldbsearch -H ldap://dc4.samdom.example.com -b dc=samdom,dc=example,dc=com -s sub '(&(objectclass=computer)(cn=*))' -U Administrator on a windows machine and extract the 'objectSid' It works for me on a Unix machine against a 4.7.6 DC, so it sounds like the problem isn't a Samba one, it is either a windows one or something in your C# Rowland
On Fri, 20 Apr 2018 17:14:03 +0800 "ryanyang51 at 163.com" <ryanyang51 at 163.com> wrote:> But the program works well with samba4.5.x. In fact I think it's the > compile progress or the rpm has something wrong. So I want to know if > my configure option or build option is not right. Although they are > right for 4.5.x. >I downloaded adexplorer to a win10 machine and ran it. Entered the following info: Connect to --> dc4.samdom.example.com User --> Adminisrator Password --> xxxxxxxxxx Clicked on OK and I got a warning 'The directory service is unavailable' I Changed the User to 'samdom\Adminisrator' Clicked OK again and it now works. So it looks like something has changed and you need to update your C# program. Rowland
Perfect ! You are right. objectClass: posixAccount was missing and caused the problems. Thanks a lot! Bye, Peer On 20.04.2018 12:40, Rowland Penny via samba wrote:> On Fri, 20 Apr 2018 17:14:03 +0800 > "ryanyang51 at 163.com" <ryanyang51 at 163.com> wrote: > >> But the program works well with samba4.5.x. In fact I think it's the >> compile progress or the rpm has something wrong. So I want to know if >> my configure option or build option is not right. Although they are >> right for 4.5.x. >> > I downloaded adexplorer to a win10 machine and ran it. > > Entered the following info: > > Connect to --> dc4.samdom.example.com > User --> Adminisrator > Password --> xxxxxxxxxx > > Clicked on OK and I got a warning 'The directory service is unavailable' > > I Changed the User to 'samdom\Adminisrator' > > Clicked OK again and it now works. > > So it looks like something has changed and you need to update your C# > program. > > Rowland >-- Mit freundlichen Grüßen, Peer-Joachim Koch ________________________________________________________ Max-Planck-Institut für Biogeochemie Dr. Peer-Joachim Koch Hans-Knöll Str.10 Telefon: ++49 3641 57-6705 D-07745 Jena Telefax: ++49 3641 57-7705
I tried 'domain\username' in adexplorer as you say.But it doesn't work, too. It's the same warning. Do you remember I've ever mentioned that when I try to join the domain it succeed but still warned 'change the primary domain dns name of this computer to "" failed. the rpc server is unavailable.' I tried this in windows 7 and windows8.1, bath gave this warning. Do you get any clue from this for my problem? Thanks.>On Fri, 20 Apr 2018 17:14:03 +0800 >"ryanyang51 at 163.com" <ryanyang51 at 163.com> wrote: > >> But the program works well with samba4.5.x. In fact I think it's the >> compile progress or the rpm has something wrong. So I want to know if >> my configure option or build option is not right. Although they are >> right for 4.5.x. >> > >I downloaded adexplorer to a win10 machine and ran it. > >Entered the following info: > > Connect to --> dc4.samdom.example.com > User --> Adminisrator > Password --> xxxxxxxxxx > >Clicked on OK and I got a warning 'The directory service is unavailable' > >I Changed the User to 'samdom\Adminisrator' > >Clicked OK again and it now works. > >So it looks like something has changed and you need to update your C# >program. > >Rowland > >-- >To unsubscribe from this list go to the following URL and read the >instructions: https://lists.samba.org/mailman/options/samba