[Samba] Openldap + Samba 3 PDC

David Sonenberg dsonenberg at strozllc.com
Thu Dec 30 14:58:44 GMT 2004 

I'm new to ldap.  What should I set my DC's DN to, admin?  Anyway here's
the results of a ldapsearch.

ldapsearch -D "cn=Manager,dc=strozllc,dc=com" -W
# extended LDIF
#
# LDAPv3
# base <> with scope sub
# filter: (objectclass=*)
# requesting: ALL
#

# strozllc.com
dn: dc=strozllc,dc=com
objectClass: dcObject
objectClass: organization
dc: strozllc
o: Strozllc Com Network
description: Stroz Friedberg LLC

# Manager, strozllc.com
dn: cn=Manager,dc=strozllc,dc=com
objectClass: organizationalRole
cn: Manager
description: Directory Manager

# People, strozllc.com
dn: ou=People,dc=strozllc,dc=com
objectClass: top
objectClass: organizationalUnit
ou: People

# admin, People, strozllc.com
dn: cn=admin,ou=People,dc=strozllc,dc=com
cn: admin
objectClass: top
objectClass: organizationalRole
objectClass: simpleSecurityObject
userPassword:: xxxxxxxxxxxxxxxxxxxxxxxxxxxx

# Groups, strozllc.com
dn: ou=Groups,dc=strozllc,dc=com
objectClass: top
objectClass: organizationalUnit
ou: Groups

# admin, Groups, strozllc.com
dn: cn=admin,ou=Groups,dc=strozllc,dc=com
cn: admin
objectClass: top
objectClass: organizationalRole
objectClass: simpleSecurityObject
userPassword:: xxxxxxxxxxxxxxxxxxxxxxxxxxxx

# Computers, strozllc.com
dn: ou=Computers,dc=strozllc,dc=com
objectClass: top
objectClass: organizationalUnit
ou: Computers

# admin, Computers, strozllc.com
dn: cn=admin,ou=Computers,dc=strozllc,dc=com
cn: admin
objectClass: top
objectClass: organizationalRole
objectClass: simpleSecurityObject
userPassword:: xxxxxxxxxxxxxxxxxxxxxxxxxxxx

# search result
search: 2
result: 0 Success

# numResponses: 9
# numEntries: 8


David Sonenberg
Systems / Network Administrator
Stroz Friedberg, LLC
15 Maiden Lane, Suite 1208
New York, NY  10038
212.981.6527 (o)  |  917.495.4918 (c)

-----Original Message-----
From: awilliam at whitemice.org [mailto:awilliam at whitemice.org] 
Sent: Thursday, December 30, 2004 9:47 AM
To: David Sonenberg
Cc: OpenLDAP-Software at OpenLDAP.org; samba at lists.samba.org
Subject: Re: [Samba] Openldap + Samba 3 PDC

> I'm trying to get Samba up but I can't seem to get the LDAP connection

> working correctly.  I can run a search from ldapsearch, but samba is 
> complaining that it can't connect.

Can you actually do an ldapsearch?  NOT ANONYMOUSLY but binding as the
DN the DC will use?

> Here's the error from log.smbd
> [2004/12/29 16:04:04, 0] lib/smbldap.c:smbldap_connect_system(850)
>   failed to bind to server with dn= cn=Manager Error: Invalid 
> credentials

Your DCs bind DN is "cn=Manager"?  It think you forgot to setup this
part.

More information about the samba mailing list