[Samba-it] Samba 3 + LDAP -> non riesco a fare il join

Fri Nov 7 16:01:01 MST 2003

Un dominio con Samba 3 e LDAP (file di configurazione alla fine del
messaggio).

Problema da una macchina W2k non riesco a fare il join al dominio.

Errore: utente non valido

Sembra che non riesca ad aggiungere l'accounti macchina, ma anche facendo un
smbldap-useradd.pl -w nomeMAcchina non cambia niente.

Esiste l'utente administrator e l'utente root.

Dove sbaglio?

bye
v.

-----smb.conf-------
[global]
	workgroup = ISPETTORIA
netbios name = SRV1ISP

security = user

server string = Primo server SMB/LDAP dell'ispettoria
encrypt passwords = Yes
passwd program = /usr/local/sbin/smbldap-passwd.pl -o %u
passwd chat = *new*password* %n\n *new*password* %n\n *successfully*
unix password sync = Yes

log file = /var/log/samba/log.%m
log level = 2
max log size = 0

socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

domain logons = Yes
os level = 255
preferred master = False
domain master = True
dns proxy = No
wins support = Yes

passdb backend = ldapsam:ldap://ldap.ispettoria.sdb.org/

ldap suffix = dc=ISPETTORIA,dc=SDB,dc=ORG
ldap admin dn = cn=Manager,dc=ISPETTORIA,dc=SDB,dc=ORG
ldap ssl = No

	ldap machine suffix = ou=Computers
	ldap user suffix = ou=People
	ldap group suffix = ou=Group
	ldap idmap suffix = ou=People
ldap filter = (&(uid=*%u*)(objectclass=sambaSamAccount))

;Map to guest = bad user

add user script = /usr/local/sbin/smbldap-useradd.pl -w %u
;domain admin group = " @"Domain Admins" "

admin users = root, administrator

;username map = /ets/samba/smbusers
;ntaclsupport = yes

[home]
	comment = Home Directories (Area riservata per ogni utente)
	path = /home/%u
	read only = No
	create mask = 0664
	directory mask = 0775
	browseable = Yes
;	valid users = %S

[printers]
	comment = All Printers
	path = /var/spool/samba
	printable = Yes
	browseable = No

[netlogon]
comment = Network Logon Service
path = /usr/local/netlogon
guest ok = Yes

------------ log di smb ----------
[2003/11/07 15:54:05, 2] smbd/sesssetup.c:setup_new_vc_session(535)
  setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all
old
resources.
[2003/11/07 15:54:05, 2] smbd/sesssetup.c:setup_new_vc_session(535)
  setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all
old
resources.
[2003/11/07 15:54:05, 2] lib/smbldap.c:smbldap_search_suffix(1066)
  smbldap_search_suffix: searching
for:[(&(&(uid=*administrator*)(objectclass=sa
mbaSamAccount))(objectclass=sambaSamAccount))]
[2003/11/07 15:54:05, 2] passdb/pdb_ldap.c:init_sam_from_ldap(462)
  init_sam_from_ldap: Entry found for user: administrator
[2003/11/07 15:54:05, 2] passdb/pdb_ldap.c:ldapsam_search_one_group(1615)
  ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gid
Number=200))]
[2003/11/07 15:54:05, 0] passdb/pdb_ldap.c:ldapsam_search_one_group(1630)
  ldapsam_search_one_group: Problem during the LDAP search: LDAP error:  (No
suc
h object)check_ntlm_password:  authentication for user [administrator] ->
[admin
istrator] -> [administrator] succeeded
[2003/11/07 15:54:05, 0] smbd/service.c:set_admin_user(321)
  administrator logged in as admin user (root privileges)
[2003/11/07 15:54:05, 2] lib/smbldap.c:smbldap_search_suffix(1066)
  smbldap_search_suffix: searching
for:[(&(&(uid=*root*)(objectclass=sambaSamAcc
ount))(objectclass=sambaSamAccount))]
[2003/11/07 15:54:05, 2] passdb/pdb_ldap.c:init_sam_from_ldap(462)
  init_sam_from_ldap: Entry found for user: root
[2003/11/07 15:54:05, 2] rpc_server/srv_samr_nt.c:_samr_lookup_domain(2537)
  Returning domain sid for domain ISPETTORIA ->
S-1-5-21-2734843942-968433682-29
77028111
[2003/11/07 15:54:05, 2] lib/smbldap.c:smbldap_search_suffix(1066)
  smbldap_search_suffix: searching
for:[(&(&(uid=*w2kpro-test$*)(objectclass=sam
baSamAccount))(objectclass=sambaSamAccount))]
[2003/11/07 15:54:05, 2] smbd/server.c:exit_server(558)
  Closing connections