Displaying 20 results from an estimated 24 matches for "bind_dn".
2003 Mar 17
2
Samba 2.2.8 compile failure - Solaris 8, SunCC, LDAP
...sparc SUNW,Sun-Fire-280R
While this worked fine for 2.2.7, using '--with-ldapsam' yields the
following fatal error.
|Compiling passdb/pdb_ldap.c
|"passdb/pdb_ldap.c", line 276: undefined symbol: ldap_state
|"passdb/pdb_ldap.c", line 276: undefined struct/union member: bind_dn
|"passdb/pdb_ldap.c", line 276: left operand of "->" must be pointer to struct/union
|"passdb/pdb_ldap.c", line 276: warning: improper pointer/integer combination: arg #1
|"passdb/pdb_ldap.c", line 938: warning: argument #2 is incompatible with prototype:...
2017 Apr 27
1
Setup a new samba AD DC
...to:
> > Where is the better place to set:
> >
> > - logon script = netlogon.bat
> > and other logon options
>
> Actually the best place to set them is per user in AD.
Thank Rowland, thanks to your help, at this moment my new network with:
+ samba 4.5.8 AD_DC+BIND_DNS+ISC_DHCP+NTP (Fedora 25 + rpm rebuilded)
+ samba 4.4.4 AD Member Server (Centos7 + standard rpm)
is on and working.
Now I want add logon script, or some thinks like this
What does it mean "per user in AD"?
Can explain to me better?
Thank.
--
Dario Lesca
(inviato dal mio Linux Fed...
2011 Aug 04
0
dovecot + postfix + kerberos + AD - Multiple mailboxes ???
...main.cf:*
virtual_mailbox_maps = ldap:/etc/postfix/ldap-users.cf,
ldap:/etc/postfix/ldap-users_oblr.cf
I create a two ldap files for search Multiple mailboxes in attribute AD
(mail, othermailbox).
*ldap-users.cf:*
server_host = srv-ad.cn.energy
search_base = dc=cn,dc=energy
version = 3
bind = yes
bind_dn = admin
bind_pw = passwd
chase_referrals = no
scope = sub
query_filter =
(&(objectclass=person)(|(mail=%s))(!(userAccountControl=514)))
result_attribute = mail
result_format = %s/
*ldap-users_oblr.cf:*
server_host = srv-ad.cn.energy
search_base = dc=cn,dc=energy
version = 3
bind = yes
bind_dn...
2010 Apr 06
2
Authenticating against ActiveDirectory - can't read userPassword/unicodePwd?
...m working on right now needs to have LDAP
authentication build in, meaning that if the user enabled it, we will query
about his basic data (email,pwd) on a user-setup LDAP directory. It used to
work fine when I was testing with OpenLDAP. The code, essentially, is this:
connection.bind(self.bind_dn,self.password)
connection.search2(self.base_dn,1,"(& (userPassword=#{password})
(mail=#{email}))",nil,false,5,5000)
It binds and then searches for the user by mail and password. The entries
must have a userPassword and mail attributes. It''s part of the core schema
(I...
2009 Oct 31
2
Post login script issue with pop3 protocol
...ll.
I want to track user last login data (ip address, login date, etc)
with dovecot, followed dovecot tutorial[1], and it now works with
IMAP, but failed with POP3. i don't know why.
My script:
----
LDAP_URI='ldap://127.0.0.1:389'
LDAP_BASEDN='o=domains,dc=iredmail,dc=org'
BIND_DN='cn=vmailadmin,dc=iredmail,dc=org'
BIND_PW='plain_passwd'
if [ X"${USER}" != X"dump-capability" ]; then
ldapmodify -c -x \
-H "${LDAP_URI}" \
-D "${BIND_DN}" \
-w "${BIND_PW}" <<EOF
dn: mail=${U...
2006 Mar 14
3
LDAP Authentication
I have to do user authentication for a project i''m working on. The trick
is they want me to use the existing LDAP database for it. Does anyone
know how to authenticate using LDAP in RoR?
~Rahul
2019 Aug 06
1
Configuration help
...es/samba-ad-dc
ln -s /var/lib/samba/private/tls/cert.pem /usr/local/share/ca-certificates/samba-ad-dc/samba.crt
update-ca-certificates
/etc/ldap/ldap.conf
BASE dc=some,dc=dom,dc=tld
URI ldaps://dc1.some.dom.tld ldaps://dc2.some.dom.tld
TLS_REQCERT allow
# Optional, depending on need add:
#BIND_DN = CN=ldapBindUser,OU=Service-Accounts,DC=some,DC=dom,DC=tld
#BIND_PW = SomePasshere
Something like that.
Greetz,
Louis
> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces at lists.samba.org] Namens
> Guillaume Couvreur via samba
> Verzonden: dinsdag 6 augustu...
2010 Feb 18
5
LDAP as password database - some problems / suggestions
Hi all,
Using dovecot-1.2.6, I use dovecot with an LDAP backend for user
authentication. In general this works ok, but I have some issues
with this...
In LDAP, I have users like this:
dn:cn=user1,ou=users,dc=kapott,dc=org
dn:cn=user2,ou=users,dc=kapott,dc=org
etc.
When authenticating users, I explicitely want to use the
AUTH_BIND feature (and NOT lookup passwords).
My problem: not ALL
2017 Mar 22
2
last_login LDAP - killed with signal 11 (core dumped)
...me is compared case-sensitively.
#mail_max_userip_connections = 10
}
90-plugins.conf
plugin {
#setting_name = value
#last_login_dict = proxy::lastlogin
last_login_dict = proxy:dict:lastlogin
zlib_save = gz
zlib_save_level = 6
}
dovecot-ldap-dict.conf.ext:
uri = ldap://ldap.internal
bind_dn = cn=Manager,dc=mail,dc=com
password = XXXX
tls = no
debug = 1
map {
pattern = last-login/$user
filter = (&(mail=%{user})(objectClass=mailUser)) # the () is required
base_dn = o=domains,dc=mail,dc=com
username_attribute = mail
value_attribute = lastLoginTime
fields {
mail=$use...
2010 Feb 13
2
Dovecot+Postfix+Maildir with ActiveDirectory userbase
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
has anyone implemented a mail server with maildir, Postfix and Dovecot using
Active Directory ad userbase and password authentication?
Do I need Samba to authenticate users?
Can I use credential caching just like mysql?
Ciao,
luigi
- --
/
+--[Luigi Rosa]--
\
This morning at breakfast, I noticed that Kellogg's have put a helpline
number
2017 Mar 22
1
last_login LDAP - killed with signal 11 (core dumped)
...#setting_name = value
> > #last_login_dict = proxy::lastlogin
> > last_login_dict = proxy:dict:lastlogin
> > zlib_save = gz
> > zlib_save_level = 6
> > }
> >
> >
> > dovecot-ldap-dict.conf.ext:
> > uri = ldap://ldap.internal
> > bind_dn = cn=Manager,dc=mail,dc=com
> > password = XXXX
> > tls = no
> > debug = 1
> >
> > map {
> > pattern = last-login/$user
> > filter = (&(mail=%{user})(objectClass=mailUser)) # the () is required
> > base_dn = o=domains,dc=mail,dc=com
> &g...
2015 Aug 05
2
LDAP bindpw password
> SIGH, does nobody read the samba wiki ????
> Have a look here:
> https://wiki.samba.org/index.php/Authenticating_other_services_against_AD
>
Yes, I read that document before writing to the list, but I cannot
understand where I can set or modify the bind password.
2019 Apr 09
2
Possible incorrect file permissions in documentation for setting up Samba with LDAP(S)?
Hi All,
This Samba release changelog
(https://wiki.samba.org/index.php/Updating_Samba#Incorrect_TLS_File_Permissions)
specifically mentions a security issue and that that the multiple *.pem
files needed for LDAP via TLS all need "special permissions" - and
mentions to delete old files without the required permissions to force
file renewal.
Yet in the official Samba documentation
2010 Nov 14
1
dovecot with Active Directory problem
...ostfix operates though connects with LDAP.
The following are samples.
------------------------
# Active Directory Server settings
domain = example.com
server_host = ldap://xxx.xxx.xxx.xxx:389
search_base = dc=example, dc=com
version = 3
timeout = 30
# Active Directory Searcher settings
bind = yes
bind_dn = cn=Mail Administrator, cn=Users, dc=example, dc=com
bind_pw = *********
# Filter Query
query_filter =
(&(&(objectCategory=person)(|(mail=%s)(userPrincipalName=%s)))(!(userAccountControl:1.2.840.113556.1.4.803:=2)))
result_attribute = userPrincipalName
result_filter = %s/
chase_referrals...
2019 Aug 06
3
Configuration help
Distro : Debian 9
log samba and smb as attachments
Le mar. 6 ao?t 2019 ? 09:33, Rowland penny via samba <samba at lists.samba.org>
a ?crit :
> On 06/08/2019 07:54, Guillaume Couvreur via samba wrote:
> > Hello, here are the google logs.
> >
> > *[2019-08-05 17:04:31,544+0200] [SwingWorker-pool-1-thread-2] [ERROR]
> > [plugin.ldap.AbstractLdapHandler] Failed to
2017 Mar 22
0
last_login LDAP - killed with signal 11 (core dumped)
...>
>
> 90-plugins.conf
> plugin {
> #setting_name = value
> #last_login_dict = proxy::lastlogin
> last_login_dict = proxy:dict:lastlogin
> zlib_save = gz
> zlib_save_level = 6
> }
>
>
> dovecot-ldap-dict.conf.ext:
> uri = ldap://ldap.internal
> bind_dn = cn=Manager,dc=mail,dc=com
> password = XXXX
> tls = no
> debug = 1
>
> map {
> pattern = last-login/$user
> filter = (&(mail=%{user})(objectClass=mailUser)) # the () is required
> base_dn = o=domains,dc=mail,dc=com
> username_attribute = mail
> value_a...
2019 Apr 09
0
Possible incorrect file permissions in documentation for setting up Samba with LDAP(S)?
...ent support) ldap.conf
BASE dc=your,dc=domain,dc=tld
URI ldaps://dc1.your.domain.tld ldaps://dc2.your.domain.tld
# note, i have a separeted OU for my service-accounts. ( OU=Srv-Acc )
# su-service stands for 'ServiceUser'-'the_service_its_used_for' so its easy to identify.
BIND_DN = CN=su-ldap,OU=Srv-Acc,CN=your,DC=domain,DC=tld
BIND_PW = yourpass
TLS_CACERT /etc/ssl/certs/ca-certificates.crt
TLS_REQCERT allow
And now you can deploy your root CA.
Open the Group Policy Management Console.
1 Select a GPO to edit, or create a new GPO to deploy the certificate.
2 Naviga...
2017 Apr 25
3
Setup a new samba AD DC
Il giorno mar, 25/04/2017 alle 14.36 +0100, Rowland Penny via samba ha
scritto:
> On Tue, 25 Apr 2017 15:09:55 +0200
> Dario Lesca via samba <samba at lists.samba.org> wrote:
>
>
> > Thanks Rowland, then the AD-DC is ok.
> > This little virtual server (3Gb of disk) must do only the DNS and
> > AD-DC for my network.
> >
> > However I would like to
2016 May 11
1
Change Password after expired
Hi list,
Same wish here!
I'd like my users to change their password using LTB (great tool) but
since 4.2.10 (debian jessie) I lost the connection to samba4.
I tried using TLS and port 636 in LTB's config.inc.php with a dedicated
user and put the self signed AC from private/tls but it didn't work.
Before the upgrade, i was on samba 4.1.17 (debian jessie) and simple
bind on port 389
2016 Jan 05
6
Stymied with samba vs openldap SSL ("Failed to issue the StartTLS instruction...")
I know this is something which should have a simple fix but I'm failing
to see it somehow.
I'm moving samba service between a couple of FreeBSD systems (9.3 to
10.2), and I'm stuck on getting samba on the new machine to connect to
our openldap server over ssl - frustrating since I've been running
samba+ldap for 15 years or so; feel sure I'm missing something basic!