search for: idmap_ldap

Displaying 20 results from an estimated 176 matches for "idmap_ldap".

2011 Jan 17
3
Winbind uselessly using up Idmap range in ldap
...e tdb already registered! [2011/01/17 10:13:50.303768, 0] winbindd/idmap.c:149(smb_register_idmap) Idmap module passdb already registered! [2011/01/17 10:13:50.303783, 0] winbindd/idmap.c:149(smb_register_idmap) Idmap module nss already registered! [2011/01/17 10:13:50.312693, 0] winbindd/idmap_ldap.c:1471(idmap_ldap_set_mapping) ldap_set_mapping_internals: Failed to add S-1-5-21-8015792-1768810241-176008768-513 to 12350 mapping [gidNumber] [2011/01/17 10:13:50.312747, 0] winbindd/idmap_ldap.c:1473(idmap_ldap_set_mapping) ldap_set_mapping_internals: Error was: (Already exists) [2011/...
2010 Jul 10
0
Anyone had success: Samba4, idmap_ldap (alloc only), idmap_adex
After spending some time trying to figure out how to merge the allocating backend from idmap_ldap and the rest of idmap_adex, I have found that it may not be worth the effort to avoid having to configure idmap_ldap. Has anyone had success with idmap_ldap as the uid/gid allocator and idmap_adex in Samba4? I haven't done much with ldap, so any instructions on how to add schema info neede...
2019 Jul 05
2
WBC_ERR_DOMAIN_NOT_FOUND error with RFC2307
...est. > > > > When I restore 'security = ads' then 'net ads testjoin' works and clients > > can again connect to shares (only without the right group information for > > access, as is the subject of this thread). > > > > > >> Read 'man idmap_ldap', your 'idmap config' lines don't seeem to be > correct. > >> > > I read 'idmap_ldap' and 'idmap_rfc2307'. The RFC2307 backend can just > use a > > stand-alone LDAP for read-only lookups of UID and GIDs, correct? It looks > > like the...
2010 Nov 10
1
[obnox@samba.org: 3.6:idmap:Q2: get rid of (all/most) idmap alloc parameters for idmap_ldap ?]
Hi Samba Users, I forgot to send this mail to the samba ML, too. The question is whether anyone is using the idmap alloc config options for idmap_ldap. I would like to remove them for Samba 3.6. Details below. Thanks - Michael ----- Forwarded message from Michael Adam <obnox at samba.org> ----- Date: Wed, 10 Nov 2010 11:19:56 +0100 From: Michael Adam <obnox at samba.org> To: samba-technical at lists.samba.org Subject: 3.6:idmap:Q2:...
2019 Jul 06
0
WBC_ERR_DOMAIN_NOT_FOUND error with RFC2307
...;>> When I restore 'security = ads' then 'net ads testjoin' works and clients >>> can again connect to shares (only without the right group information for >>> access, as is the subject of this thread). >>> >>> >>>> Read 'man idmap_ldap', your 'idmap config' lines don't seeem to be >> correct. >>> I read 'idmap_ldap' and 'idmap_rfc2307'. The RFC2307 backend can just >> use a >>> stand-alone LDAP for read-only lookups of UID and GIDs, correct? It looks >>> like...
2007 May 01
1
Problem with Samba-3.0.25rc3 & idmap_ldap (winbind dumps core)
...system and a replicating slave service established on a second RHEL4 system. I then install the samba-3.0.25rc3-5 packages, and alter my standard configuration according to the samba portion of the guide, taking into account the apparent changes needed due to the man pages for smb.conf & idmap_ldap. (Relevant configs attached below...) One step that I'm having a bit of a problem with, and I think it is contributing to the remainder of the problem below, is the entry of the credentials for the access to the ldap services. Several guides state that the proper method to store the cr...
2019 Jul 05
2
WBC_ERR_DOMAIN_NOT_FOUND error with RFC2307
...No logon servers are currently available to service the logon request. When I restore 'security = ads' then 'net ads testjoin' works and clients can again connect to shares (only without the right group information for access, as is the subject of this thread). > Read 'man idmap_ldap', your 'idmap config' lines don't seeem to be correct. > I read 'idmap_ldap' and 'idmap_rfc2307'. The RFC2307 backend can just use a stand-alone LDAP for read-only lookups of UID and GIDs, correct? It looks like the 'idmap_ldap' backend is mainly for also...
2009 Mar 09
0
idmap_nss needed together with idmap_ldap?
...re stored in an LDAP directory. The Unix boxes use nss_ldap but they also have a few local users (mostly system-users) whose user-ids are not synchronized. I've read the documentation about idmap_nss but I'm still not sure if this is needed for my setup. Will using idmap_nss in addition to idmap_ldap result in any benefit (e.g. when mapping local, non-ldap unix users)? I am thinking of a setup like: -------------------- 8< -------------------- idmap domains = NSS TRUSTEDDOMAINS # <is this needed?> idmap config NSS:backend = nss idmap config NSS:readonly = yes # </is this needed?&...
2003 Jul 01
0
Idmap_ldap strange issue
Hi, In my smb.conf I've the following IDMAP setup : passdb backend = ldapsam:ldap://127.0.0.1 idmap backend = ldap:ldap://127.0.0.1 idmap uid = 2000-10000 idmap gid = 2000-4000 ldap admin dn = cn=admin,o=xxx,c=be ldap suffix = o=xxx,c=be ldap machine suffix = ou=Computers ldap user suffix = ou=Users ldap idmap suffix = ou=Idmap ldap ssl = no The idmap mapping (sid uid/gid) is correctly save
2007 Jun 11
0
Samba 3.0.25a idmap_ldap "ldap suffix" used instead of "idmap config <DOMAIN>:ldap_base_dn"
Hi, I'm trying to setup a samba domain controler trusting a NT4 domain. and want to use Idmap information already stored in an LDAP location. smb.conf snippets are below. I'm not getting this to work. What I see, reading log.winbindd-idmap at log level 10 is that search for Idmap entries seems to use the "ldap suffix" parameter instead of the idmap config
2009 Aug 03
1
re Trouble with idmap_ldap in 3.3.6
We also have been using samba 2 and 3 for years with ldap idmap. This occurs whether I use sernet 3.3.7 rpms or build my own from samba.org3.3.7 tgz. I increased logging and here is what I get in log.winbindd-idmap. [root at niairphome2 ~]# tail -f /var/log/samba/log.winbindd-idmap [2009/08/03 10:46:24, 3] lib/module.c:do_smb_load_module(48) Error loading module
2009 Jul 11
2
Trouble with idmap_ldap in 3.3.6
Hello everyone, We've been running Samba for years, and with the exception of IDMAP, we've been very happy. Well, now we have a real need to keep this information in a shared DB, so I'm trying to set up the idmap_ldap plugin. I *think* I have lookups working correctly-- at least, I can see that Samba is contacting the LDAP directory. But since there's nothing actually *in* my directory yet, I can't be sure. But the real issue is that I'm having trouble getting LDAP to work as an allocatin...
2012 Apr 14
2
Configuration of idmap_ldap "No backend defined"
Hi list, I can't make idmap talk to my LDAP server. And I haven't found an updated howto. Some entries from log.windbindd-imap: [2012/04/13 20:05:40.500475, 5] winbindd/idmap.c:153(smb_register_idmap) Successfully added idmap backend 'ldap' [2012/04/13 20:05:40.501112, 5] winbindd/idmap.c:153(smb_register_idmap) Successfully added idmap backend 'tdb' [2012/04/13
2019 Jul 08
2
WBC_ERR_DOMAIN_NOT_FOUND error with RFC2307
...ity = ads' then 'net ads testjoin' works and > clients > >>> can again connect to shares (only without the right group information > for > >>> access, as is the subject of this thread). > >>> > >>> > >>>> Read 'man idmap_ldap', your 'idmap config' lines don't seeem to be > >> correct. > >>> I read 'idmap_ldap' and 'idmap_rfc2307'. The RFC2307 backend can just > >> use a > >>> stand-alone LDAP for read-only lookups of UID and GIDs, correct? It >...
2007 Jul 13
1
Problem with LDAP DOMAIN MEMBER SERVER and idmap
Hi guys i'm having a problem with connecting a domain memberserver and getting the idmaps to work correctly. I have winbindd running on both so it should be going. Both are linux servers. Here's my deal *Errors:* [2007/07/13 05:29:16, 0] sam/idmap_ldap.c:ldap_get_sid_from_id(269) ldap_get_sid_from_id: mapping not found for gidNumber: 0 [2007/07/13 05:29:16, 0] sam/idmap_ldap.c:ldap_get_sid_from_id(269) ldap_get_sid_from_id: mapping not found for gidNumber: 99 i can run a net groupmap list and see all the groups that exist fine. I try to logi...
2020 Oct 30
3
Samba as AD member & without winbind...
Am 30.10.20 um 10:57 schrieb Rowland penny via samba: > On 30/10/2020 09:20, Thomas Besser via samba wrote: >> actually we have running samba 4.5.16 under Devuan 2.0 (Ascii) as AD >> member without winbind configured. UID and GID informations coming >> from NSS (nslcd -> LDAP). LDAP and AD are in sync. > So you will have uidNumber and gidNumber attributes in AD. No, AD
2011 Feb 03
1
samba constantly creating mapping
Hi all, I have Samba server joined Active Directory domain based on win2008r2, using LDAP as idmap backend. Recently I upgraded from 3.3.x to 3.5.x (Sernet RPMs for Centos4). Now I constantly observe those messages in log: [2011/02/03 09:10:25.696896, 0] winbindd/idmap_ldap.c:1471(idmap_ldap_set_mapping) ldap_set_mapping_internals: Failed to add S-1-5-21-3807515285-1394671770-2144936185-513 to 21066 mapping [gidNumber] [2011/02/03 09:10:25.696927, 0] winbindd/idmap_ldap.c:1473(idmap_ldap_set_mapping) ldap_set_mapping_internals: Error was: (Already exists) [20...
2014 Sep 28
1
nss, samba3/ldap PDC, NT4 interdomain trust and performance
...o experiment with interdomain trust in 4.2 :-). But in the mean time being, I was wondering how y'all did in the glorious old days of samba3 to manage this kind of setup : large samba3/openldap PDC with interdomain trust. Would you advise to remove of the nss_ldap part and replace it with idmap_ldap in winbind? I have never been a great fan of idmap_ldap and I'd prefer not to add an extra OU to the ldap tree. According to the idmap documentation it cannot be used with standard rfc2307 attributes, is it sill true? Nlscd could also be a candidate since it has a basic caching ability but...
2004 Sep 08
0
[WINBIND] adds "weird" attributes in LDAP
...inShell: /bin/false sambaAcctFlags: [U ] sambaLogonScript: install.bat sambaPwdMustChange: 9223372036854775807 sambaPwdCanChange: 1090994939 if i connect to his share everything is fine, but winbind complains about Sep 8 08:17:48 nevanfs01 winbindd[25824]: [2004/09/08 08:17:48, 0] sam/idmap_ldap.c:ldap_get_sid_from_id(525) Sep 8 08:17:48 nevanfs01 winbindd[25824]: ldap_get_sid_from_id: mapping not found for gidNumber: 500 Sep 8 08:17:48 nevanfs01 winbindd[25824]: [2004/09/08 08:17:48, 0] sam/idmap_ldap.c:ldap_get_sid_from_id(525) Sep 8 08:17:48 nevanfs01 winbindd[25824]: ldap_get_...
2004 Jul 13
0
Winbind + LDAP Backend
I'm trying to set up Winbind to store all the UID's in a local LDAP database, but am having some trouble. I think I got most of it set up, but when I run "getent passwd", I get several hundred errors like this: [2004/07/13 11:59:03, 3] sam/idmap_ldap.c:ldap_get_id_from_sid(588) ldap_get_id_from_sid: Failure looking up idmap entry (No such object) [2004/07/13 11:59:03, 1] nsswitch/winbindd_user.c:winbindd_fill_pwent(50) error getting user id for sid S-1-5-21-789336058-1935655697-854245398-1260 [2004/07/13 11:59:03, 1] nsswitch/winbindd_user....