similar to: Enforcing password history policy on password resets

?Hi Team, Environment:? Samba 4.20.4 AD-DC on bookworm. I am trying to setup password change for users as self-service in the account-console in Keycloak (25.0.4 on Bookworm). I have setup Keycloak user federation with writable (Active Directory) LDAP and Kerberos and without synchronization (so there are no local Keycloak actions, everything goes directly to Samba). I have tested the

Hi everyone, How feasible would it be to get samba to back-up every version of a file that the Windows user saves? Specifically: 1) can you trap the "file saved" event somehow in a meaninful way? 2) is it possible to distinguish something like Access MDB access - ie, continual updates of some sort - from a regular file save? 3) what sort of level of knowledge of Samba, C/C++,

Does anyone know of a good example somewhere of an implemention for adding records with HABTM relations that have lots of possibilities. The best way that I''ve seen it done is where you have two lists (multiple select lists) where you have the possibilities on the left and ones you''ve added on the right with arrows to add and delete items. But the only ways I know how to

I have recently upgraded a Samba server running on a Red Hat Enterprise 4 (32 bit) server. The version of samba upgraded to is 3.0.25b. I noticed that a new index had to be added to my ldap (openldap) server for the sambaSID attribute. So I added the index line to slapd.conf as follows: Index sambaSID eq,sub Afterwards I ran slapindex to recreate the indices in the openldap database.

Hi, I have an ldap provider and consumer that appear to work correctly, EG, new users are sync'ed and a search on either server (ldapsearch -x -b 'dc=example,dc=com' '(cn=djohn)') returns an oject. However when an XP user attempt to connect to the consumer server the authentication fails: [2011/06/10 16:11:21, 0] lib/util_sock.c:write_data(1059) [2011/06/10 16:11:21, 0]

Hi Harry, sadmin and tadmin are both admin logins. I was trying to domain join with both. sadmin is in ldap The olcdbindex.ldif gave this error SASL/EXTERNAL authentication started SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth SASL SSF: 0 modifying entry "olcDatabase={1}hdb,cn=config" ldap_modify: Other (e.g., implementation specific) error (80) additional

Hi Rob, > olcDbIndex: ou eq > olcDbIndex: mail eq > olcDbIndex: surname eq > olcDbIndex: givenname eq > olcDbIndex: loginShell eq > olcDbIndex: uniqueMember eq,pres > olcDbIndex: sambaSID eq > olcDbIndex: sambaPrimaryGroupSID eq > olcDbIndex: sambaGroupType eq > olcDbIndex: sambaSIDList eq > olcDbIndex: sambaDomainName eq > olcDbIndex: default sub >

Hi Harry, Here are the outputs. I've attached them as logs with this email too. root at sam3dc:/tmp/ldifs-gr# ldapmodify -Y external -H ldapi:/// -f olcdbindex.ldif SASL/EXTERNAL authentication started SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth SASL SSF: 0 modifying entry "olcDatabase={1}hdb,cn=config" root at sam3dc:/tmp/ldifs-gr# service slapd stop

Hi, I'm running Samba 4 (latest git) as DC in my test environment. Joining Windows clients works as expected, however if I try to join a Linux box by using Samba 3 "net ads join", I get this error: client # net ads join -U Administrator%password Failed to join domain: failed to set machine spn: Critical extension is unavailable As far as I can remember this used to work somewhere

Hey Folks, I will teach a mini course on LDAP next week and I'm with the following question: Is There any documentation that give some details about what LDAP Controls and Extensions are provided by the Samba 4 Implementation? Thanks in advance.

I'm running the samba-client-3.0.20-0.1 SUSE RPM. I was using the version that came with 9.3 but upgraded to see if this specific problem would go away. Guest access does not appear to be working correctly, and it looks like the problem is due to guest not getting mapped into the LDAP query correctly. Specifically, I can login with local account, join workstation to the domain, browse

Hi list, We have a network with some XP and some Windows 7 computer, we use samba 3.6.6 on debian 6.0.6 from debian-backports. It's a pdc with passdb backend = ldapsam. In our logs there are lots of: ARCServer slapd[1263]: SASL [conn=46778] Failure: realm changed: authentication aborted I found out that at that time this emerges the tcpdump says: 12:59:54.656399 IP client.49551 >

Hi All, I am experiencing a strange problem with authentication process. Everything was going very fine until today, my users account stop to login on domain, but the administrator account is the only one that can do it without problems. I get this error log. Sep 19 11:04:32 zeus smbd[3227]: [2005/09/19 11:04:32, 2] smbd/sesssetup.c:setup_new_vc_session(608) Sep 19 11:04:32 zeus smbd[3227]:

Greetings All. First let me introduce my situation Machine1: Pdc Samba + OpenLDAP(master) Machine2: Bdc Samba + OpenLDAP(slave) LDAP stores Samba and POSIX information for each user. Case1: I login to Machine1 and invoke smbpasswd. I change my passwords (samba and posix without any problem). In next few seconds they get propagated to Machin2 wher I can login with new credentials. ldap log

Hi list, I?m trying to get help from list but I am not being happy. What I need to do to get It??? I getting this on syslog file: Sep 21 14:59:15 zeus slapd[2123]: conn=18 fd=15 ACCEPT from IP=127.0.0.1:32791 (IP=0.0.0.0:389) Sep 21 14:59:15 zeus slapd[2123]: conn=18 op=0 BIND dn="cn=samba,ou=DSA,dc=cultura,dc=gov,dc=br" method=128 Sep 21 14:59:15 zeus slapd[2123]: conn=18 op=0 BIND

Hi ! I have an OpenLDAP where users DN are in the form ? uid=P1234,ou=people,dc=example,dc=com ? and where the login is in the ? eduPersonPrincipalName ? attribute (ex : jdoe). I have configured my system (Debian Squeeze) to authenticate against LDAP (libpam-ldapd + libnss-ldapd with a mapping uid<->eduPersonPrincipalName), if I do ? ssh jdoe at server ?, it's works great. Now I want to

The log files are attached, I have NEVER had so much trouble with a samba PDC before. I need to turn in my unix admin license, this is pathetic... Anyway, I am here. When trying to join a domain with the administrator account I get "no mapping between account name and security ID's was done" And the joining fails... All the needed files are attached, from the ldap log. to the

Hi everyone, I am trying to setup a PDC using Samba and OpenLDAP. For some reason, I've used both the examples provided in the Official Howto and also the smbldap-tools howto developed by IDEALX. I am able to get the directory up and running. I am able to get the following working: 1. LDAP Directory server and successful Queries through Samba 2. Add user and machine accounts. 3.

Hi, all. I am trying to set up SAMBA PDC with OpenLDAP using smbldap-tools from IDEALX. This is on a SLES 9 and I had run the latest online update as well as SP1 and SP2 for it. At this point smb is off and ldap is running. I have gotten up to where I needed to test for: ldapsearch -x -b "dc=sample,dc=com" "(ObjectClass=*)" # extended LDIF # # LDAPv3 # base

Hello all=20 =20 First of all Sorry for the long e-mail =20 I am trying to get samba working as a domain member and store the idmap = in a ldap database. =20 The join is successful and all commands are working like it should = wbinfo =96u, wbinfo =96g kinit enz But the id administrator command gives me the following =20 # id administrator id: administrator: no such user =20 If I do