[Samba] samba-tool ldapcmp: LDAP error 32 LDAP_NO_SUCH_OBJECT
Darshaka Pathirana
dpat at syn-net.org
Tue Feb 6 11:39:37 UTC 2024
Hi all,
can someone confirm if `samba-tool ldapcmp` causes problems with special characters like `ß` or maybe Umlauts in the CN?
```
% samba-tool ldapcmp --use-kerberos=required ldap://dc01.ag.example.com ldap://dc02.ag.example.com
* Comparing [DOMAIN] context...
* Objects to be compared: 1533
LdbError for dn CN=M GRÖSS,CN=USERS,DC=AG,DC=example,DC=COM: (32, 'LDAP error 32 LDAP_NO_SUCH_OBJECT - <acl_read: Error retrieving instanceType for base. at ../../source4/dsdb/samdb/ldb_modules/acl_read.c:967> <>')
LdbError for dn CN=I FÖSSL,CN=USERS,DC=AG,DC=example,DC=COM: (32, 'LDAP error 32 LDAP_NO_SUCH_OBJECT - <acl_read: Error retrieving instanceType for base. at ../../source4/dsdb/samdb/ldb_modules/acl_read.c:967> <>')
LdbError for dn CN=T AUSSERHOFER,CN=USERS,DC=AG,DC=example,DC=COM: (32, 'LDAP error 32 LDAP_NO_SUCH_OBJECT - <acl_read: Error retrieving instanceType for base. at ../../source4/dsdb/samdb/ldb_modules/acl_read.c:967> <>')
* Result for [DOMAIN]: SUCCESS
[...]
% samba-tool -V
4.17.12-Debian
% lsb_release -a
No LSB modules are available.
Distributor ID: Debian
Description: Debian GNU/Linux 12 (bookworm)
Release: 12
Codename: bookworm
```
Running `ldbsearch` on dc01 and dc02 does not show anything suspicious. Called like this (JFTR):
``
% ldbsearch -H ldap://dc01.ag.example.com --use-kerberos required '(&(objectclass=person)(sAMAccountName=ifoessl))'
[...]
% ldbsearch -H ldap://dc02.ag.example.com --use-kerberos required '(&(objectclass=person)(sAMAccountName=ifoessl))'
[...]
```
Anything else I should/can investigate?
Thanks,
- Darsha
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <http://lists.samba.org/pipermail/samba/attachments/20240206/b4d9fd9f/OpenPGP_signature.sig>
More information about the samba
mailing list