[Samba-it] problemi ad aggiungere users

[cucca]

Salve a tutti,
	continuano i miei problemi (mai risolti a direi il vero) nella
gestione di un server samba da windows. Provando ad aggiungere un utente,
ottengo il quasi impallamento del pc, usrmgr mi ritorna errore nello
script...
Cosa potrebbe essere? Il tutto viene eseguito da una macchina correttamente
joinata al dominio...


Grazie per il vostro aiuto
Denis

Vi riporto i log di samba: 

[2005/06/24 15:21:05, 5] lib/smbldap.c:smbldap_search(1038)
  smbldap_search: base => [dc=BLABLABLA,dc=it], filter =>
[(&(uid=pippolaser)(objectclass=sambaSamAccount))], scope => [2]
[2005/06/24 15:21:05, 4] passdb/pdb_ldap.c:ldapsam_getsampwnam(1334)
  ldapsam_getsampwnam: Unable to locate user [pippolaser] count=0
[2005/06/24 15:21:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
  pop_sec_ctx (0, 1005) - sec_ctx_stack_ndx = 0
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam(293)
  Finding user pippolaser
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam_internals(223)
  Trying _Get_Pwnam(), username as lowercase is pippolaser
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam_internals(239)
  Trying _Get_Pwnam(), username as uppercase is PIPPOLASER
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam_internals(247)
  Checking combinations of 0 uppercase letters in pippolaser
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam_internals(251)
  Get_Pwnam_internals didn't find user [pippolaser]!
[2005/06/24 15:21:05, 5] rpc_server/srv_samr_nt.c:_samr_create_user(2311)
  _samr_create_user:  can add this account : False
[2005/06/24 15:21:05, 3] rpc_server/srv_samr_nt.c:_samr_create_user(2324)
  _samr_create_user: Running the command `/usr/local/sbin/smbldap-useradd.pl
-m "pippolaser"' gave 0
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam(293)
  Finding user pippolaser
[2005/06/24 15:21:05, 5] lib/username.c:Get_Pwnam_internals(223)
  Trying _Get_Pwnam(), username as lowercase is pippolaser


Il mio smb.conf:
[global]
workgroup = BLABLABLA
server string = Server
interfaces = 192.168.50.3/24 127.0.0.1/24
dns proxy = no
log level = 10
log file = /var/log/samba/log.%m
max log size = 1000
syslog = 0
panic action = /usr/share/samba/panic-action %d
security = user
encrypt passwords = true
passdb backend = ldapsam:ldap://127.0.0.1
obey pam restrictions = no
passwd program = /usr/local/sbin/smbldap-passwd.pl -o %u
passwd chat = *new*password* %n\n *new*password* %n\n *successfully*
hide dot files = yes
default case = Lower
veto files = /.*/
use sendfile = no
admin users = administrator
wins support = yes
name resolve order = wins lmhosts host bcast
time server = yes
kernel change notify = yes

winbind use default domain = yes
template primary group = "Domain Users"

socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
read raw = yes
write raw = yes
max xmit = 65535
dead time = 15
getwd cache = yes
lpq cache time = 30

printing = cups
printcap name = CUPS
printcap = cups
load printers = yes

ldap suffix = dc=BLABLABLA,dc=it
ldap admin dn = cn=admin,dc=BLABLABLA,dc=it
ldap ssl = no
ldap user suffix = ou=People
ldap idmap suffix = ou=People
ldap group suffix = ou=Group
ldap machine suffix = ou=Hosts
ldap password sync = yes
idmap uid = 15000 - 20000
idmap gid = 15000 - 20000

os level = 255
preferred master = yes
domain master = yes
local master = yes
domain logons = yes
logon path = 
logon home =
logon script = startup.bat

add user script = /usr/local/sbin/smbldap-useradd.pl -m "%u"
ldap delete dn = Yes
delete user script = /usr/local/sbin/smbldap-userdel.pl "%u"
add machine script = /usr/local/sbin/smbldap-useradd.pl -w "%u"
add group script = /usr/local/sbin/smbldap-groupadd.pl -p "%g"
delete group script = /usr/local/sbin/smbldap-groupdel.pl "%g"
add user to group script = /usr/local/sbin/smbldap-groupmod.pl -m "%u" "%g"
delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u"
"%g"
set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"

[homes]
	comment = Home Directories
	browseable = no
	writable = no
	create mask = 0700
	directory mask = 0700

[public]
	path = /dati/public/
	read only = no
	create mask = 0666
	directory mask = 0777

[scambio]
	path = /dati/scambio/
	read only = no
	create mask = 0777
	directory mask = 0777

[netlogon]
	path = /var/lib/samba/netlogon
	read only = yes
	write list = @admin
	browseable = no

[printers]
	comment = All Printers
	browseable = no
	path = /tmp
	printable = yes
	public = no
	writable = no
	create mode = 0777
	guest ok = yes

[print$]
	comment = Printer Drivers
	path = /var/lib/samba/printers
	browseable = yes
	read only = no
	guest ok = yes

[Stampante PDF]
	printing = bsd
	path = /tmp
	printable = yes
	guest ok = yes
	use client driver = yes
	print command = /usr/local/sbin/stampapdf.sh %s %u
	comment = Stampante PDF
	

[http]
	path=/var/www
	comment=internet zone
	browseable=yes
	writeable=yes


/etc/libnss-ldap.conf:
host 127.0.0.1

base dc=BLABLABLA,dc=it

nss_base_passwd         ou=People,dc=BLABLABLA,dc=it
nss_base_shadow         ou=People,dc=BLABLABLA,dc=it
nss_base_group          ou=Group,dc=BLABLABLA,dc=it
nss_base_hosts          ou=Hosts,dc=BLABLABLA,dc=it

ldap_version 3


sirio:/usr/local/sbin# net groupmap list
Domain Admins (S-1-5-21-3155700216-2377338514-2295902335-512) -> Domain
Admins
Domain Users (S-1-5-21-3155700216-2377338514-2295902335-513) -> Domain Users
Domain Guests (S-1-5-21-3155700216-2377338514-2295902335-514) -> Domain
Guests
NT Users (S-1-5-32-545) -> NT Users
Hosts (S-1-5-21-3155700216-2377338514-2295902335-1601) -> Hosts
Domain Computers (S-1-5-21-3155700216-2377338514-2295902335-515) -> Domain
Computers
Server Operators (S-1-5-32-549) -> Server Operators
Account Operators (S-1-5-32-548) -> Account Operators
Power Users (S-1-5-32-547) -> Power Users
Guests (S-1-5-32-546) -> Guests
prova (S-1-5-21-3155700216-2377338514-2295902335-3005) -> prova
Administrators (S-1-5-32-544) -> Administrators
Print Operators (S-1-5-32-550) -> Print Operators
Backup Operators (S-1-5-32-551) -> Backup Operators

Ed ecco l'utente admin:

sirio:/usr/local/sbin# smbldap-usershow.pl "administrator"
dn: uid=administrator,ou=People,dc=BLABLABLA,dc=it
objectClass: top,inetOrgPerson,posixAccount,sambaSamAccount
cn: administrator
sn: administrator
uid: administrator
homeDirectory: /home/administrator
loginShell: /bin/bash
gecos: System User
sambaLogonTime: 0
sambaLogoffTime: 2147483647
displayName: System User
sambaSID: S-1-5-21-3155700216-2377338514-2295902335-1000
uidNumber: 0
sambaLMPassword: 96F32FD9E7AB7476AAD3B435B51404EE
sambaNTPassword: 2B114FDC1717AEBBAC7C91D859362C96
sambaPwdCanChange: 1116506649
sambaPwdMustChange: 2147483647
sambaPasswordHistory:
0000000000000000000000000000000000000000000000000000000000000000
sambaPwdLastSet: 1116506649
userPassword: {SMD5}nNm8wlmQkso0bHCwWNnDsrou+nU=
sambaKickoffTime: 0
gidNumber: 512
sambaPrimaryGroupSID: S-1-5-21-3155700216-2377338514-2295902335-512
description: System Administrator
sambaAcctFlags: [UX         ]