[Samba-it] modify/delete: sambaPrimaryGroupSID: no such value

Marco Gaiarin gaio at sv.lnf.it
Thu Dec 1 17:33:01 MST 2005 

Problema già passato in questa lista l'anno scorso, e in altre liste
samba più e più volte, ma di cui non riesco a trovare la soluzione.

Instalazione di samba fatta a fine giugno, con backend ldap;
sostanzialmente non più usata da quella volta.
Il mese scorso abbiamo installato delle macchine XP, quindi funzionava.


Oggi un collega stava installando una macchina XP, e non riusciva a
farne join al dominio.
Provo io dal server con server manager for domain, ma nisba.

Se guardo i log con livello 3 vedo:

[2005/12/01 17:11:25, 3] rpc_server/srv_pipe.c:api_rpcTNP(1538)
  api_rpcTNP: rpc command: SAMR_CREATE_USER
[2005/12/01 17:11:25, 3] smbd/sec_ctx.c:push_sec_ctx(256)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2005/12/01 17:11:25, 3] smbd/uid.c:push_conn_ctx(365)
  push_conn_ctx(102) : conn_ctx_stack_ndx = 0
[2005/12/01 17:11:25, 3] smbd/sec_ctx.c:set_sec_ctx(288)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2005/12/01 17:11:25, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2005/12/01 17:11:25, 3] smbd/sec_ctx.c:push_sec_ctx(256)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2005/12/01 17:11:25, 3] smbd/uid.c:push_conn_ctx(365)
  push_conn_ctx(102) : conn_ctx_stack_ndx = 0
[2005/12/01 17:11:25, 3] smbd/sec_ctx.c:set_sec_ctx(288)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 3] rpc_server/srv_samr_nt.c:_samr_create_user(2324)
  _samr_create_user: Running the command /usr/sbin/smbldap-useradd -w -d /dev/null -s /bin/false "carpino$"' gave 0
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2005/12/01 17:11:26, 3] smbd/uid.c:push_conn_ctx(365)
  push_conn_ctx(102) : conn_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2005/12/01 17:11:26, 2] passdb/pdb_ldap.c:init_group_from_ldap(2000)
  init_group_from_ldap: Entry found for group: 998
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 3] passdb/pdb_ldap.c:ldapsam_add_sam_account(1832)
  ldapsam_add_sam_account: User exists without samba attributes: adding them
[2005/12/01 17:11:26, 2] passdb/pdb_ldap.c:init_ldap_from_sam(912)
  init_ldap_from_sam: Setting entry for user: carpino$
[2005/12/01 17:11:26, 2] passdb/pdb_ldap.c:ldapsam_add_sam_account(1942)
  ldapsam_add_sam_account: added: uid == carpino$ in the LDAP database
[...]
  api_rpcTNP: rpc command: SAMR_SET_USERINFO
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 3] smbd/uid.c:push_conn_ctx(365)
  push_conn_ctx(102) : conn_ctx_stack_ndx = 0
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499)
  init_sam_from_ldap: Entry found for user: carpino$
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 3] smbd/uid.c:push_conn_ctx(365)
  push_conn_ctx(102) : conn_ctx_stack_ndx = 0
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2005/12/01 17:11:26, 3] smbd/uid.c:push_conn_ctx(365)
  push_conn_ctx(102) : conn_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2005/12/01 17:11:26, 2] passdb/pdb_ldap.c:init_group_from_ldap(2000)
  init_group_from_ldap: Entry found for group: 100
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 3] groupdb/mapping.c:smb_set_primary_group(1055)
  smb_set_primary_group: Running the command /usr/sbin/smbldap-usermod -g "users" "carpino$"' gave 0
[2005/12/01 17:11:26, 2] passdb/pdb_ldap.c:init_ldap_from_sam(912)
  init_ldap_from_sam: Setting entry for user: carpino$
[2005/12/01 17:11:26, 1] passdb/pdb_ldap.c:ldapsam_modify_entry(1495)
  ldapsam_modify_entry: Failed to modify user dn= uid=carpino$,ou=Host,dc=pp,dc=lnf,dc=it with: No such attribute
        modify/delete: sambaPrimaryGroupSID: no such value
[2005/12/01 17:11:26, 0] passdb/pdb_ldap.c:ldapsam_update_sam_account(1720)
  ldapsam_update_sam_account: failed to modify user with uid = carpino$, error: modify/delete: sambaPrimaryGroupSID: no such value (Success)
[...]
  api_rpcTNP: rpc command: SAMR_DELETE_DOM_USER
[2005/12/01 17:11:26, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499)
  init_sam_from_ldap: Entry found for user: carpino$
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 3] smbd/uid.c:push_conn_ctx(365)
  push_conn_ctx(102) : conn_ctx_stack_ndx = 0
[2005/12/01 17:11:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2005/12/01 17:11:26, 3] passdb/pdb_ldap.c:ldapsam_delete_sam_account(1614)
  ldapsam_delete_sam_account: Deleting user carpino$ from LDAP.
[2005/12/01 17:11:26, 3] rpc_server/srv_samr_nt.c:smb_delete_user(3810)
  smb_delete_user: Running the command /usr/sbin/smbldap-userdel "carpino$"' gave 0
[...]

Con un discreto sprezzo del pericolo ho riavviato slapd, e non ha
giovato. Non ho riavviato samba...

Alcune note:

+ il file di schema è allineato

+ in smbldap.conf ho messo:

	defaultComputerGid="998"

 e 998 è il grupo guest, sid -514

+ non ho capito... perchè esegue:

	smbldap-usermod -g "users" "carpino$"

 ?! A che cosa serve mettere il computer nel gruppo users?


Ok, posso creare le entry completamente con smbldap-useradd, ma... che
cosa si è rotto?!


Grazie.

-- 
dott. Marco Gaiarin				    GNUPG Key ID: 240A3D66
  Associazione ``La Nostra Famiglia''                http://www.sv.lnf.it/
  Polo FVG  -  Via della Bontà, 7 - 33078  -  San Vito al Tagliamento (PN)
  gaio(at)sv.lnf.it		tel +39-0434-842711    fax +39-0434-842797

			Grazie parlamento europeo!
		http://punto-informatico.it/p.asp?i=53925&r=PI

More information about the samba-it mailing list