[Samba-it] Samba + LDAP + RHEL 4

Pignedoli Luca lucap78 at interfree.it
Fri Dec 2 16:58:01 MST 2005 

>        -U or --user=<name>             user name
>
>Prova con
>
>net rpc rights list -U root%password
>
>sempre che tu abbia l'utente root abilitato in samba, oppure usa un
>account che hai creato su ldap con uid 0.
>
>(in smb.conf -> "invalid users = root")
>
>  
>
Ho provato ma non funziona :(

Ho provato a ricreare il db ldap mettendo come utente amministratore
Administrator,  mi cambia l'errore nei log:

[2005/12/02 16:49:00, 1] auth/auth_util.c:make_server_info_sam(807)
  User Administrator in passdb, but getpwnam() fails!
[2005/12/02 16:49:00, 0] auth/auth_sam.c:check_sam_security(327)
  check_sam_security: make_server_info_sam() failed with
'NT_STATUS_NO_SUCH_USER'

Ma continua a non andare.

Questo e' il mio smb.conf:
[global]
   workgroup = test
   server string = Domain
   dns proxy = no
   os level = 255
   domain master = yes
   preferred master = yes
   domain logons = yes
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
#### Debugging/Accounting ####
   log file = /var/log/samba/%m.log
   max log size = 1000
   syslog = 0
   panic action = /usr/share/samba/panic-action %d
####### Authentication #######
   security = user
   encrypt passwords = true
   passdb backend = ldapsam:ldap://127.0.0.1
   obey pam restrictions = yes
   passwd program = /opt/IDEALX/sbin/smbldap-passwd %u
   passwd chat = *New*password* %n\n *Retype*new*password* %n\n
all*authentication*tokens*updated*
####### LDAP SERVERS #######
ldap admin dn = cn=admin,dc=test
ldap suffix = dc=test
ldap group suffix = ou=Groups
ldap user suffix = ou=Users
ldap machine suffix = ou=Computers
ldap idmap suffix = ou=Idmap
ldap passwd sync = Yes
ldap delete dn = Yes
####### Configurazione Utenti #######
add user script = /opt/IDEALX/sbin/smbldap-useradd -m "%u"
delete user script = /opt/IDEALX/sbin/smbldap-userdel "%u"
add machine script = /opt/IDEALX/sbin/smbldap-useradd -w "%u"
add group script = /opt/IDEALX/sbin/smbldap-groupadd -p "%g"
delete group script = /opt/IDEALX/sbin/smbldap-groupdel "%g"
add user to group script = /opt/IDEALX/sbin/smbldap-groupmod -m "%u" "%g"
delete user from group script = /opt/IDEALX/sbin/smbldap-groupmod -x
"%u" "%g"
set primary group script = /usr/opt/IDEALX/smbldap-usermod -g "%g" "%u"
idmap backend = ldap:ldap://127.0.0.1
idmap uid = 10000-20000
idmap gid = 10000-20000
enable privileges = Yes
logon script = %U.bat
logon path = \\%L\profiles\%U
logon home = \\%L\%U
logon drive = Z:
veto files = /*.eml/*.nws/*.{*}/*.mp3/
veto oplock files = /*.doc/*.xls/*.mdb/
abort shutdown script = /sbin/shutdown -c
inherit acls = yes
inherit owner = yes
inherit permissions = yes
map acl inherit = Yes
acl compatibility = Auto
acl group control = yes
nt acl support = yes

Non ci salto fuori :(

More information about the samba-it mailing list