[Samba-it] problemi ad aggiungere users
cucca
liste at cuccarini.it
Fri Jun 24 15:42:01 MDT 2005
Salve a tutti,
continuano i miei problemi (mai risolti a direi il vero) nella
gestione di un server samba da windows. Provando ad aggiungere un utente,
ottengo il quasi impallamento del pc, usrmgr mi ritorna errore nello
script...
Cosa potrebbe essere? Il tutto viene eseguito da una macchina correttamente
joinata al dominio...
Grazie per il vostro aiuto
Denis
Vi riporto i log di samba:
[2005/06/24 15:21:05, 5] lib/smbldap.c:smbldap_search(1038)
smbldap_search: base => [dc=BLABLABLA,dc=it], filter =>
[(&(uid=pippolaser)(objectclass=sambaSamAccount))], scope => [2]
[2005/06/24 15:21:05, 4] passdb/pdb_ldap.c:ldapsam_getsampwnam(1334)
ldapsam_getsampwnam: Unable to locate user [pippolaser] count=0
[2005/06/24 15:21:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 1005) - sec_ctx_stack_ndx = 0
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam(293)
Finding user pippolaser
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam_internals(223)
Trying _Get_Pwnam(), username as lowercase is pippolaser
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam_internals(239)
Trying _Get_Pwnam(), username as uppercase is PIPPOLASER
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam_internals(247)
Checking combinations of 0 uppercase letters in pippolaser
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam_internals(251)
Get_Pwnam_internals didn't find user [pippolaser]!
[2005/06/24 15:21:05, 5] rpc_server/srv_samr_nt.c:_samr_create_user(2311)
_samr_create_user: can add this account : False
[2005/06/24 15:21:05, 3] rpc_server/srv_samr_nt.c:_samr_create_user(2324)
_samr_create_user: Running the command `/usr/local/sbin/smbldap-useradd.pl
-m "pippolaser"' gave 0
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam(293)
Finding user pippolaser
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam_internals(223)
Trying _Get_Pwnam(), username as lowercase is pippolaser
Il mio smb.conf:
[global]
workgroup = BLABLABLA
server string = Server
interfaces = 192.168.50.3/24 127.0.0.1/24
dns proxy = no
log level = 10
log file = /var/log/samba/log.%m
max log size = 1000
syslog = 0
panic action = /usr/share/samba/panic-action %d
security = user
encrypt passwords = true
passdb backend = ldapsam:ldap://127.0.0.1
obey pam restrictions = no
passwd program = /usr/local/sbin/smbldap-passwd.pl -o %u
passwd chat = *new*password* %n\n *new*password* %n\n *successfully*
hide dot files = yes
default case = Lower
veto files = /.*/
use sendfile = no
admin users = administrator
wins support = yes
name resolve order = wins lmhosts host bcast
time server = yes
kernel change notify = yes
winbind use default domain = yes
template primary group = "Domain Users"
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
read raw = yes
write raw = yes
max xmit = 65535
dead time = 15
getwd cache = yes
lpq cache time = 30
printing = cups
printcap name = CUPS
printcap = cups
load printers = yes
ldap suffix = dc=BLABLABLA,dc=it
ldap admin dn = cn=admin,dc=BLABLABLA,dc=it
ldap ssl = no
ldap user suffix = ou=People
ldap idmap suffix = ou=People
ldap group suffix = ou=Group
ldap machine suffix = ou=Hosts
ldap password sync = yes
idmap uid = 15000 - 20000
idmap gid = 15000 - 20000
os level = 255
preferred master = yes
domain master = yes
local master = yes
domain logons = yes
logon path =
logon home =
logon script = startup.bat
add user script = /usr/local/sbin/smbldap-useradd.pl -m "%u"
ldap delete dn = Yes
delete user script = /usr/local/sbin/smbldap-userdel.pl "%u"
add machine script = /usr/local/sbin/smbldap-useradd.pl -w "%u"
add group script = /usr/local/sbin/smbldap-groupadd.pl -p "%g"
delete group script = /usr/local/sbin/smbldap-groupdel.pl "%g"
add user to group script = /usr/local/sbin/smbldap-groupmod.pl -m "%u" "%g"
delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u"
"%g"
set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"
[homes]
comment = Home Directories
browseable = no
writable = no
create mask = 0700
directory mask = 0700
[public]
path = /dati/public/
read only = no
create mask = 0666
directory mask = 0777
[scambio]
path = /dati/scambio/
read only = no
create mask = 0777
directory mask = 0777
[netlogon]
path = /var/lib/samba/netlogon
read only = yes
write list = @admin
browseable = no
[printers]
comment = All Printers
browseable = no
path = /tmp
printable = yes
public = no
writable = no
create mode = 0777
guest ok = yes
[print$]
comment = Printer Drivers
path = /var/lib/samba/printers
browseable = yes
read only = no
guest ok = yes
[Stampante PDF]
printing = bsd
path = /tmp
printable = yes
guest ok = yes
use client driver = yes
print command = /usr/local/sbin/stampapdf.sh %s %u
comment = Stampante PDF
[http]
path=/var/www
comment=internet zone
browseable=yes
writeable=yes
/etc/libnss-ldap.conf:
host 127.0.0.1
base dc=BLABLABLA,dc=it
nss_base_passwd ou=People,dc=BLABLABLA,dc=it
nss_base_shadow ou=People,dc=BLABLABLA,dc=it
nss_base_group ou=Group,dc=BLABLABLA,dc=it
nss_base_hosts ou=Hosts,dc=BLABLABLA,dc=it
ldap_version 3
sirio:/usr/local/sbin# net groupmap list
Domain Admins (S-1-5-21-3155700216-2377338514-2295902335-512) -> Domain
Admins
Domain Users (S-1-5-21-3155700216-2377338514-2295902335-513) -> Domain Users
Domain Guests (S-1-5-21-3155700216-2377338514-2295902335-514) -> Domain
Guests
NT Users (S-1-5-32-545) -> NT Users
Hosts (S-1-5-21-3155700216-2377338514-2295902335-1601) -> Hosts
Domain Computers (S-1-5-21-3155700216-2377338514-2295902335-515) -> Domain
Computers
Server Operators (S-1-5-32-549) -> Server Operators
Account Operators (S-1-5-32-548) -> Account Operators
Power Users (S-1-5-32-547) -> Power Users
Guests (S-1-5-32-546) -> Guests
prova (S-1-5-21-3155700216-2377338514-2295902335-3005) -> prova
Administrators (S-1-5-32-544) -> Administrators
Print Operators (S-1-5-32-550) -> Print Operators
Backup Operators (S-1-5-32-551) -> Backup Operators
Ed ecco l'utente admin:
sirio:/usr/local/sbin# smbldap-usershow.pl "administrator"
dn: uid=administrator,ou=People,dc=BLABLABLA,dc=it
objectClass: top,inetOrgPerson,posixAccount,sambaSamAccount
cn: administrator
sn: administrator
uid: administrator
homeDirectory: /home/administrator
loginShell: /bin/bash
gecos: System User
sambaLogonTime: 0
sambaLogoffTime: 2147483647
displayName: System User
sambaSID: S-1-5-21-3155700216-2377338514-2295902335-1000
uidNumber: 0
sambaLMPassword: 96F32FD9E7AB7476AAD3B435B51404EE
sambaNTPassword: 2B114FDC1717AEBBAC7C91D859362C96
sambaPwdCanChange: 1116506649
sambaPwdMustChange: 2147483647
sambaPasswordHistory:
0000000000000000000000000000000000000000000000000000000000000000
sambaPwdLastSet: 1116506649
userPassword: {SMD5}nNm8wlmQkso0bHCwWNnDsrou+nU=
sambaKickoffTime: 0
gidNumber: 512
sambaPrimaryGroupSID: S-1-5-21-3155700216-2377338514-2295902335-512
description: System Administrator
sambaAcctFlags: [UX ]
More information about the samba-it
mailing list