Mario Codeniera
2020-Feb-26 01:15 UTC
[Samba] samba-tool to list users of the trust domain
Thanks Andrew, however there's an LDAP error. There are so heaps of users on our main AD. I put -U and using an account on the main AD. ERROR(ldb): uncaught exception - LDAP error 4 LDAP_SIZE_LIMIT_EXCEEDED - <> <> File "/usr/lib64/python3.6/site-packages/samba/netcmd/__init__.py", line 186, in _run return self.run(*args, **kwargs) File "/usr/lib64/python3.6/site-packages/samba/netcmd/user.py", line 541, in run attrs=["samaccountname"]) On Wed, Feb 26, 2020 at 2:01 PM Andrew Bartlett <abartlet at samba.org> wrote:> On Wed, 2020-02-26 at 13:56 +1300, Mario Codeniera wrote: > > It seems to generate an error 'No such file or directory' if I put -H > > option. > > -H ldap://$SERVER > > -H takes an LDAP URI, otherwise it assumes a file path. > > Andrew Bartlett > -- > Andrew Bartlett > https://samba.org/~abartlet/ > Authentication Developer, Samba Team https://samba.org > Samba Development and Support, Catalyst IT - Expert Open Source > Solutions > https://catalyst.net.nz/services/samba > > > > > > >
Andrew Bartlett
2020-Feb-26 01:20 UTC
[Samba] samba-tool to list users of the trust domain
You may be able to use another tool like 'net rpc users' otherwise we will need to patch samba-tool to support 'paging' the search of users. We don't notice this with Samba <-> Samba because a Samba server does not restrict the LDAP result size in this way (we impose a much larger per-MB limit). Andrew Bartlett On Wed, 2020-02-26 at 14:15 +1300, Mario Codeniera wrote:> Thanks Andrew, however there's an LDAP error. There are so heaps of > users on our main AD. > I put -U and using an account on the main AD. > > ERROR(ldb): uncaught exception - LDAP error 4 > LDAP_SIZE_LIMIT_EXCEEDED - <> <> > File "/usr/lib64/python3.6/site-packages/samba/netcmd/__init__.py", > line 186, in _run > return self.run(*args, **kwargs) > File "/usr/lib64/python3.6/site-packages/samba/netcmd/user.py", > line 541, in run > attrs=["samaccountname"]) > > On Wed, Feb 26, 2020 at 2:01 PM Andrew Bartlett <abartlet at samba.org> > wrote: > > On Wed, 2020-02-26 at 13:56 +1300, Mario Codeniera wrote: > > > It seems to generate an error 'No such file or directory' if I > > put -H > > > option. > > > > -H ldap://$SERVER > > > > -H takes an LDAP URI, otherwise it assumes a file path. > > > > Andrew Bartlett-- Andrew Bartlett https://samba.org/~abartlet/ Authentication Developer, Samba Team https://samba.org Samba Development and Support, Catalyst IT - Expert Open Source Solutions https://catalyst.net.nz/services/samba
Mario Codeniera
2020-Feb-26 01:39 UTC
[Samba] samba-tool to list users of the trust domain
Thank you very much Andrew, net rpc user seems work well with -S option. Hope there will also patch for samba-tool at least there's an option :-) As get info for a particular user et al, much more options using this tool. On Wed, Feb 26, 2020 at 2:20 PM Andrew Bartlett <abartlet at samba.org> wrote:> You may be able to use another tool like 'net rpc users' otherwise we > will need to patch samba-tool to support 'paging' the search of users. > > We don't notice this with Samba <-> Samba because a Samba server does > not restrict the LDAP result size in this way (we impose a much larger > per-MB limit). > > Andrew Bartlett > > On Wed, 2020-02-26 at 14:15 +1300, Mario Codeniera wrote: > > Thanks Andrew, however there's an LDAP error. There are so heaps of > > users on our main AD. > > I put -U and using an account on the main AD. > > > > ERROR(ldb): uncaught exception - LDAP error 4 > > LDAP_SIZE_LIMIT_EXCEEDED - <> <> > > File "/usr/lib64/python3.6/site-packages/samba/netcmd/__init__.py", > > line 186, in _run > > return self.run(*args, **kwargs) > > File "/usr/lib64/python3.6/site-packages/samba/netcmd/user.py", > > line 541, in run > > attrs=["samaccountname"]) > > > > On Wed, Feb 26, 2020 at 2:01 PM Andrew Bartlett <abartlet at samba.org> > > wrote: > > > On Wed, 2020-02-26 at 13:56 +1300, Mario Codeniera wrote: > > > > It seems to generate an error 'No such file or directory' if I > > > put -H > > > > option. > > > > > > -H ldap://$SERVER > > > > > > -H takes an LDAP URI, otherwise it assumes a file path. > > > > > > Andrew Bartlett > -- > Andrew Bartlett > https://samba.org/~abartlet/ > Authentication Developer, Samba Team https://samba.org > Samba Development and Support, Catalyst IT - Expert Open Source > Solutions > https://catalyst.net.nz/services/samba > > > > > > >