[Samba] 3.0.23 for Debian Sarge: LDAP problems

Uwe Laverenz laverenz at molkerei-ammerland.de
Thu Jul 20 12:31:34 GMT 2006 

Hi,

I always prefer the Samba packages for Debian-Stable from the
Samba-Team and I never had a problem so far (thank you, Simo!).

Yesterday I updated from 3.0.22 to 3.0.23 in my LDAP-based network. I
updated samba.schema, added "index sambaSID eq,sub" to my slapd.conf
and ran slapindex. When I started slapd and samba afterwards, I saw
error messages like these (from smbd.log):

[2006/07/20 00:14:36, 0] lib/smbldap.c:smb_ldap_setup_conn(638)
  ldap_initialize: Time limit exceeded
[2006/07/20 00:14:36, 1] lib/smbldap.c:another_ldap_try(1150)
  Connection to LDAP server failed for the 1 try!
[2006/07/20 00:14:37, 0] lib/smbldap.c:smb_ldap_setup_conn(638)
  ldap_initialize: Time limit exceeded
[2006/07/20 00:14:37, 1] lib/smbldap.c:another_ldap_try(1150)
  Connection to LDAP server failed for the 2 try!
...
... [message repeated several times]
...
[2006/07/20 00:14:50, 1] lib/smbldap.c:another_ldap_try(1150)
  Connection to LDAP server failed for the 15 try!
[2006/07/20 00:14:51, 0] lib/smbldap.c:smb_ldap_setup_conn(638)
  ldap_initialize: Time limit exceeded
[2006/07/20 00:14:51, 0] smbd/server.c:main(960)
  ERROR: failed to setup guest info.

So Samba/smbd does not work anymore. The same errors occur when I run
the net command:

athena:~# net groupmap list
[2006/07/20 14:14:48, 0] lib/smbldap.c:smb_ldap_setup_conn(638)
  ldap_initialize: Time limit exceeded
[2006/07/20 14:14:49, 0] lib/smbldap.c:smb_ldap_setup_conn(638)
  ldap_initialize: Time limit exceeded
...
... [message repeated several times]
...
[2006/07/20 14:15:18, 0] passdb/pdb_ldap.c:ldapsam_setsamgrent(3039)
  ldapsam_setsamgrent: LDAP search failed: Time limit exceeded
[2006/07/20 14:15:18, 0]
passdb/pdb_ldap.c:ldapsam_enum_group_mapping(3111)
  ldapsam_enum_group_mapping: Unable to open passdb


Switching back to the previous slapd.conf and samba.schema doesn't work,
disabling TLS did not help either. The slapd can be connected with any
other non-Samba tool (ldapsearch, phpldapadmin).

Does anybody have an idea what the problem might be?

thank you,
Uwe

More information about the samba mailing list