similar to: Scaleable LDAP Backends for Samba; Domain Controllers group access

Hi,all: I'm working on populating an OpenLDAP server (Dapper) for pam authentication. I'm having trouble import LDIFs for my groups. The following is and example: (this imports on CentOS 5.3 i386, openldap version is 2.3.43-3.el5 ) # org.X.admins dn: cn=admins,dc=X,dc=org changetype: add objectClass: groupOfNames objectClass: top objectClass: posixGroup cn: admins gidNumber: 1001

Some more research for my howto at http://mandrake.vmlinuz.ca/bin/view/Main/SambaThreeDomainController Some folks have let me know that it is a bad thing to have your samba server access the database as the root dn. All well and good but how do I fix this? I have the default acls listed below which look pretty good but don't I need a special user or something? It would help if I understood

Thank you, those links were indeed helpful. It appears to me that while JumpCloud.com touts it's Samba compatibility (including "Samba Schema support"), their's is an imperfect implementation. Because they do not leverage the Samba group objectclass they are hampering Samba's ability. The method they've used to implement groups does not allow those groups to be used by

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I've a Samba PDC ( samba-server-3.0.6-4.2.100mdk ) My cleint machines are all XP Pro without SP2. I've never been able to get Samba to accept a printer driver for download to client machines. How can I achieve this? Note that this will not be an easy question to answer. I've already succeeded at installing pass-through printing and

Hi, I'm using OpenLDAP in CentOS 4.4 I'm trying to create a grou of users: # Grupos do TIM dn: ou=futebol,ou=accounts,dc=telbit,dc=pt objectClass: organizationalUnit description: Grupo de Futebol ou: futebol # Grupo do futebol dn: uid=futeboladas,ou=futebol,ou=accounts,dc=telbit,dc=pt objectClass: top uid: futeboladas objectClass: groupOfNames cn: Futeboladas member:

Hi, I have setup samba 3.0.7 with LDAP and NetApps Filers as our file store. We are going to lots of departmental shares, firstly we want only people from their own dept to have access to their department share, but users from other departments may need access to other dept shares, i would like to set up permissions on each dept share so a group is applied, then every user is added to the

Hi list, After reading a lot in the mailing list and the official Samba 3 howto, i am still unable to give domain admin rights to a user, so that he gets admin rights on all workstations in the domain. Here is what i have: - Samba 3.08 PDC, config: [global] workgroup = ANT netbios name = ANTSRV netbios aliases = RUN KITS HOMES LIB PRINTERS server string = ANT Samba

When I run net add groupmap rid=512 ntgroup="Domain Admins" UNIXgroup="ntadmins" i get this error: adding entry for group Domain Admins failed! The error isn't very specific and the log doesn't show any error. I look in the log (log level -1 in slapd.conf) and I can tell it is able to search. I can post the syslog if you need it. I think their is an error in my

I'm not seeing my LDAP groups listed when I use Windows file sharing tools to modify ACLs on a share. I see all of the LDAP users. Ubuntu 16.04, hosted LDAP ("in the cloud", although I hate that term, provided by JumpCloud.com), no AD. I'm able to assign LDAP users to ACLs. The groups are of objectClass 'groupsOfNames'. Is this expected behavior?

Hi, I have samba 3.0.24 installed and running on my linux (debian alike) system as a (PDC) Standalone Server with an LDAP backend. The problem that I'm facing is that I want to have users belonging to multiple (LDAP) groups. My LDAP user ldif is like: # user1, People, local.loc dn: uid=user1,ou=xxxxx,dc=xxxxx objectClass: top objectClass: inetOrgPerson objectClass: posixAccount

Hi, I have a RHEL 5.6 server with samba3x-3.5.4-0.70 instaled, it acts as a PDC, it has OpenLDAP in the same server. Everything works fine, so far, the windows xp and windows 7 machines are inside the domain, and users from the ldap can log from their machines. The thing is that i am trying to create groups, so some users can administrate others users, but not all the users. I know that samba

If this is off topic I apologize in advance. Using Samba 3.0.13 with an LDAP back-end and FreeRadius I was trying to add the Radius schema and kept getting object class violations. It's my limited understanding of LDAP that you can not have more than one structural objectclass. I'm no ldap expert so no email telling me how wrong I am. So I came up with a another solution. Using the

Hi, I'm trying to access to the internal's ldap of samba4 (running as AD-DC) with a simpleSecurityObject entry. It seems that the authentication process searches only 'user' objects (objectclass=user) in the ldb. Is that possible to configure the auth behavior ? I'd like to use simpleSecurityObject (that aren't 'user') to manage entries from cron, cgi and so

Hello, I have problem with idmap configuration. I would like to use LDAP as backend for idmap in Samba+ADS environment, but i have following errors in log.winbindd-idmap: [2011/06/08 16:57:54.805575,? 0] winbindd/idmap.c:201(smb_register_idmap_alloc)????????????????????????????????????????????????????????????????????????????????? ? idmap_alloc module ldap already

Hi, Have posted to this list a couple of times and have always received great responses and help. I have a basic * system setup Using 3 X100P cards with 6 Snom200 IP phones. It was a bit of a struggle getting everything up and running but have been pretty happy with the flexibility and ease of *. My major problem is one that has been discussed on this list many times before. The echo

Hello, I've been trying to get part of a disk visible from a HP J5600 Unix machine (hostname = oed209, IP = 192.168.33.209) running HP-UX 10.26 and Samba v1.9.18p7 to a MicronPC XKE Laptop (hostname = oed123, IP = 192.168.33.123) running W98SE. Net masks on both machines are set to 255.255.255.0. Neither machine uses DHCP. Hostnames, their aliases, and their IP addresses are defined on both

Dear list I have been at it for a few day trying to get my SuSE 8.2 server (FREESIDE) to produce a domain (SKOGFARET) for my Windows 2000 Server machine (BABYLON). I use OpenLDAP, and the setup seems to work in most ways, except the vital one [ie. I can mount shares, print, etc...] When I try to add W2K (BABYLON) to the domain, I get the following error: "The following error occured

Trying to migrate NT4 to samba 3.0.0 or 3.0.1pre3 with an ldap backend. I add a backup server account to the domain and joined. Getting the SID and the ldap init seem to work, and I start windbind. When I run net rpc vampire all I get is a ton of "Could not create posix account info for " errors. Then ofcourse pdbedit -L returns smbldap_search_suffix: Problem during the LDAP search:

I am about to enter people into ldap directory, but get this error: # ldapadd -x -W -a -D "cn=admin,dc=test,dc=example,dc=net" -f joe.ldif Enter LDAP Password: ldapadd: no DN specified Can someone please try to identify what I manage to .... or where the dn is missing. --- error from phpldapadmin Error Could not bind to the LDAP server. LDAP said: No such attribute Error number:

Hello, we, a public hospital, would like to migrate to samba4 from our samba3.x environment. According to the documentation samba4 does use a internal ldap server. We use openLDAP as directory for samba horde Oracle name resolution zope user authentication, Checkpoint Firewall authentication (only few users ), squid proxy authentication, logon authentication to our linux servers, logon