Displaying 20 results from an estimated 53 matches for "ldap_search_base".
2008 Oct 11
1
Multiple ldap_search_base in dovecot-ldap
Can we use multiple ldap_search_base fields in a dovecot-ldap config file?
--
View this message in context: http://www.nabble.com/Multiple-ldap_search_base-in-dovecot-ldap-tp19929802p19929802.html
Sent from the Dovecot mailing list archive at Nabble.com.
2007 Feb 15
1
Dovecot forward problems
...But, at this time, I've tried to test forwarding features of
postfix+dovecot+ldap.
I've setted up this user entry (forwardActive=TRUE) in my ldap server.
Here follows some entries that I put at my main.cf
# Accounts
accounts_server_host = $ldap_server_host
accounts_search_base = $ldap_search_base
accounts_query_filter =
(&(&(objectClass=VirtualMailAccount)(mail=%s))(forwardActive=FALSE)(acco
untActive=TRUE)(delete=FALSE))
accounts_result_attribute = mailbox
accounts_cache = no
virtual_transport = dovecot
virtual_mailbox_base = /var/lib/imap/vmail/domains
virtual_mailbox_map...
2007 Feb 13
1
Problems to put dovecot-ldap.conf working
Hi Folks,
I'm having a little trouble to put dovecot authenticating in ldap.
My postfix and saslauthd are authenticating fine.
Here is what I have in my main.cf:
# Accounts
accounts_server_host = $ldap_server_host
accounts_search_base = $ldap_search_base
accounts_query_filter =
(&(&(objectClass=VirtualMailAccount)(mail=%s))(forwardActive=FALSE)(acco
untActive=TRUE)(delete=FALSE))
accounts_result_attribute = mailbox
accounts_cache = no
# aliases
aliases_server_host = $ldap_server_host
aliases_search_base = $ldap_search_base
aliases...
2019 Feb 11
3
visibility of groups when multiple Samba servers use the same LDAP server
...suffix", that's the point):
passdb backend = ldapsam:ldap://ldap.domain.tld
ldap suffix = dc=domain,dc=tld
ldap user suffix = ou=people
ldap group suffix = ou=server01,ou=smb,ou=Groups
NSS uses LDAP via SSSD like this:
[domain/LDAP]
id_provider = ldap
ldap_uri = ldap://ldap.domain.tld
ldap_search_base = dc=domain,dc=tld
ldap_user_search_base = ou=People,dc=domain,dc=tld
ldap_group_search_base = ou=server01,ou=smb,ou=Groups,dc=domain,dc=tld
The sambaDomainName is stored in an entry in LDAP path
ou=smb,dc=domain,dc=tld. Each server has it's own entry, but all use the
same SID.
This setup...
2014 Jul 23
1
sssd problems after dc1 is no longer online
...dc2.samba.company.com, dc3.samba.company.com
krb5_server = x.y.143.15, x.y.143.16
#krb5_kpasswd = dc2.samba.company.com, dc3.samba.company.com
krb5_kpasswd = x.y.143.15, x.y.143.16
ldap_krb5_keytab = /etc/krb5.sssd.keytab
ldap_krb5_init_creds = true
ldap_uri = ldap://x.y.143.15, ldap://x.y.143.16
ldap_search_base = dc=samba,dc=merit,dc=unu,dc=edu
ldap_user_object_class = user
ldap_user_name = samAccountName
ldap_user_uid_number = uidNumber
ldap_user_gid_number = gidNumber
ldap_user_home_directory = unixHomeDirectory
ldap_user_shell = loginShell
ldap_group_object_class = group
ldap_group_name = cn
ldap_gro...
2013 Apr 14
1
sssd getent problem with Samba 4.0
...s]
[pam]
[domain/default]
access_provider = simple
#simple_allow_users = myuser
enumerate = false
cache_credentials = True
id_provider = ldap
auth_provider = krb5
chpass_provider = krb5
krb5_realm = HH3.SITE
krb5_server = hh16.hh3.site
krb5_kpasswd = hh16.hh3.site
ldap_uri = ldap://hh16.hh3.site/
ldap_search_base = dc=hh3,dc=site
ldap_tls_cacertdir = /usr/local/samba/private/tls
ldap_id_use_start_tls = False
ldap_default_bind_dn = cn=lynn2,cn=Users,dc=hh3,dc=site
ldap_default_authtok = xx
ldap_default_authtok_type = password
ldap_user_object_class = person
ldap_user_name = samAccountName
ldap_user_uid_numbe...
2015 Jul 02
2
Secondary groups not recognized by Samba
...omain.com
ad_domain = mydomain.com
krb5_realm = MYDOMAIN.COM
cache_credentials = True
id_provider = ad
auth_provider = ad
chpass_provider = ad
access_provider = ad
ldap_schema = ad
krb5_store_password_if_offline = True
default_shell = /bin/bash
ldap_id_mapping = False
fallback_homedir = /home/%d/%u
ldap_search_base = dc=mydomain,dc=com?subtree?
ldap_group_search_base = dc=mydomain,dc=com?subtree?(objectClass=group)
ldap_user_search_base = dc=mydomain,dc=com?subtree?(objectClass=user)
ldap_group_member = member
#!==============================================================
smb.conf
#!======================...
2019 Feb 11
2
visibility of groups when multiple Samba servers use the same LDAP server
...ldap suffix = dc=domain,dc=tld
>> ldap user suffix = ou=people
>> ldap group suffix = ou=server01,ou=smb,ou=Groups
>>
>> NSS uses LDAP via SSSD like this:
>>
>> [domain/LDAP]
>> id_provider = ldap
>>
>> ldap_uri = ldap://ldap.domain.tld
>> ldap_search_base = dc=domain,dc=tld
>>
>> ldap_user_search_base = ou=People,dc=domain,dc=tld
>> ldap_group_search_base = ou=server01,ou=smb,ou=Groups,dc=domain,dc=tld
>>
>> The sambaDomainName is stored in an entry in LDAP path
>> ou=smb,dc=domain,dc=tld. Each server has it's...
2013 Oct 01
1
Should I forget sssd ?
...krb5_realm = RADIODJIIDO.NC
> krb5_server = serveur.radiodjiido.nc
> krb5_kpasswd = serveur.radiodjiido.nc
> #next line only lists users with uidNumber/gidNumber entered via ldbedit
> ldap_id_mapping = false
> ldap_referrals = false
> ldap_uri = ldap://serveur.radiodjiido.nc
> ldap_search_base = dc=radiodjiido,dc=nc
> ldap_user_object_class = user
> ldap_user_name = samAccountName
> ldap_user_uid_number = uidNumber
> ldap_user_gid_number = gidNumber
> ldap_user_home_directory = unixHomeDirectory
> ldap_user_shell = loginShell
> ldap_group_object_class = group
> ld...
2015 Jan 07
1
Password Must Change using SSSD in Samba 4.1.10
...ies = 3
[pam]
reconnection_retries = 3
offline_credentials_expiration = 0
[domain/EXAMPLE]
entry_cache_timeout = 600
entry_cache_group_timeout = 600
min_id = 1000
id_provider = ldap
auth_provider = krb5
chpass_provider = krb5
ldap_schema = rfc2307bis
ldap_uri = ldap://smbad.intra.example.com:390/
ldap_search_base = dc=intra,dc=example,dc=com
cache_credentials = true
krb5_server = smbad.intra.example.com:8880
krb5_realm= INTRA.EXAMPLE.COM
ldap_default_bind_dn = cn=admin,dc=intra,dc=example,dc=com
ldap_default_authtok_type = password
ldap_default_authtok = 6pNEn7Eo3zmz9MxciGLx
4. I have also tried to achie...
2019 Oct 16
3
Can't setup kerberos auth for samba4 server?
...d fails because it cant find /etc/krb5.keytab.
/etc/sssd/sssd.conf is set to:
[sssd]
services = nss, pam, autofs
domains = ADA.DE <http://ada.de/>
debug_level = 0x0270
[domain/ADA.DE <http://ada.de/>]
enumerate = true
cache_credentials = True
krb5_realm = ADA.DE <http://ada.de/>
ldap_search_base = dc=ada,dc=de
krb5_server = ad01.ada.de, ad02.ada.de
id_provider = ad
auth_provider = ad
ldap_uri = ldap://ad01.ada.de:389/, ldap://ad02.ada.de:389/
ldap_id_use_start_tls = True
ldap_tls_cacertdir = /etc/openldap/cacerts
debug_level = 0x0270
[nss]
homedir_substring = /home
debug_level = 0x0270
[...
2016 Jun 23
2
sssd.conf file missing
...I ran into problems because I had not created an sssd.conf file. Eventually I did create one, and its contents are the following:
[<domain>.org]
enumate = true
cache_credentials = TRUE
id_provider = ldap
auth_provider = ldap
chpass_provider = ldap
ldap_uri = ldap://ldap.<domain>.org
ldap_search_base = dc=<domain>,dc=org
tls_reqcert = demand
ldap_tls_cacert /etc/pki/tls/certs/ca-bundle.crt
If there are any additions or corrections that I need to make, please let me know.
I reran the service sssd restart command, and the error message that I am seeing via journalctl -xe is the following:...
2015 May 11
2
ldap host attribute is ignored
.../myldapserver.com", "basedn=o=XXX"
>
> my /etc/openldap/ldap.conf:
> BASE o=XXX
> URI ldap://myldapserver.com/
> TLS_CACERTDIR /etc/ssl/certs
> SASL_NOCANON on
>
> My /etc/sssd/sssd.conf:
> [domain/default]
> ldap_uri = ldap://myldapserver.com/
> ldap_search_base = ou=YYY,o=XXX
> ldap_schema = rfc2307bis
> id_provider = ldap
> ldap_user_uuid = entryuuid
> ldap_group_uuid = entryuuid
> ldap_id_use_start_tls = True
> enumerate = False
> cache_credentials = False
> ldap_tls_cacertdir = /etc/openldap/cacerts/
> chpass_provider = ldap...
2016 Jun 23
3
sssd.conf file missing
...nd its contents are the following:
>>
>> [<domain>.org]
>> enumate = true
>> cache_credentials = TRUE
>>
>> id_provider = ldap
>> auth_provider = ldap
>> chpass_provider = ldap
>>
>> ldap_uri = ldap://ldap.<domain>.org
>> ldap_search_base = dc=<domain>,dc=org tls_reqcert = demand
>> ldap_tls_cacert /etc/pki/tls/certs/ca-bundle.crt
>>
>> If there are any additions or corrections that I need to make, please let me know.
>>
>> I reran the service sssd restart command, and the error message that I am...
2016 Sep 02
4
Samba4 and sssd authentication not working due "Transport encryption required."
On Fri, 2 Sep 2016 12:33:34 -0700
John Yocum via samba <samba at lists.samba.org> wrote:
> On 09/02/2016 08:36 AM, Fosiul Alam via samba wrote:
> > Hi Experts
> > I have setup samba4 version "samba-4.4.5" , Windows Authentication
> > working fine.
> > however sssd authentication not working, Same setup work with older
> > version of samba4 , so i
2019 Feb 11
2
visibility of groups when multiple Samba servers use the same LDAP server
...;>>> ldap group suffix = ou=server01,ou=smb,ou=Groups
>>>>
>>>> NSS uses LDAP via SSSD like this:
>>>>
>>>> [domain/LDAP]
>>>> id_provider = ldap
>>>>
>>>> ldap_uri = ldap://ldap.domain.tld
>>>> ldap_search_base = dc=domain,dc=tld
>>>>
>>>> ldap_user_search_base = ou=People,dc=domain,dc=tld
>>>> ldap_group_search_base =
>>>> ou=server01,ou=smb,ou=Groups,dc=domain,dc=tld
>>>>
>>>> The sambaDomainName is stored in an entry in LDAP path
&...
2016 Sep 03
1
Samba4 and sssd authentication not working due "Transport encryption required."
...n sssd tls authenticaiton ?
> Thanks for the help
>
>
> # A native LDAP domain
> [domain/LDAP]
> enumerate = true
> cache_credentials = TRUE
>
> id_provider = ldap
> auth_provider = ldap
> chpass_provider = ldap
>
> ldap_uri = ldap://ldap.mydomain.org
> ldap_search_base = dc=mydomain,dc=org
> tls_reqcert = demand
> ldap_tls_cacert = /etc/pki/tls/certs/ca-bundle.crt
>
>
>
> On Fri, Sep 2, 2016 at 10:09 PM, Rowland Penny via samba <
> samba at lists.samba.org> wrote:
>
>> On Fri, 2 Sep 2016 12:33:34 -0700
>> John Yocum v...
2015 May 11
3
ldap host attribute is ignored
On 05/09/2015 01:24 PM, Jonathan Billings wrote:
> Is it normal to have pam_unix and pam_sss twice for each each section?
No. See my previous message. I think it's the result of copying
portions of SuSE configurations.
2015 Jan 07
0
Password Must Change using SSSD in Samba 4.1.10
...ies = 3
[pam]
reconnection_retries = 3
offline_credentials_expiration = 0
[domain/EXAMPLE]
entry_cache_timeout = 600
entry_cache_group_timeout = 600
min_id = 1000
id_provider = ldap
auth_provider = krb5
chpass_provider = krb5
ldap_schema = rfc2307bis
ldap_uri = ldap://smbad.intra.example.com:390/
ldap_search_base = dc=intra,dc=example,dc=com
cache_credentials = true
krb5_server = smbad.intra.example.com:8880
krb5_realm= INTRA.EXAMPLE.COM <http://intra.example.com/>
ldap_default_bind_dn = cn=admin,dc=intra,dc=example,dc=com
ldap_default_authtok_type = password
ldap_default_authtok = 6pNEn7Eo3zmz9Mxc...
2019 Feb 11
0
visibility of groups when multiple Samba servers use the same LDAP server
...ldapsam:ldap://ldap.domain.tld
> ldap suffix = dc=domain,dc=tld
> ldap user suffix = ou=people
> ldap group suffix = ou=server01,ou=smb,ou=Groups
>
> NSS uses LDAP via SSSD like this:
>
> [domain/LDAP]
> id_provider = ldap
>
> ldap_uri = ldap://ldap.domain.tld
> ldap_search_base = dc=domain,dc=tld
>
> ldap_user_search_base = ou=People,dc=domain,dc=tld
> ldap_group_search_base = ou=server01,ou=smb,ou=Groups,dc=domain,dc=tld
>
> The sambaDomainName is stored in an entry in LDAP path
> ou=smb,dc=domain,dc=tld. Each server has it's own entry, but all u...