[Samba-it] Problema con Dominio Samba 3.0 e ldap

Fri Jun 23 09:44:01 MDT 2006

Si.

-------- Original Message  --------
From: Davide Marchesin <kernel66 at tiscali.it>
To: samba-it at xsec.it
Subject: Re:[Samba-it] Problema con Dominio Samba 3.0 e ldap
Date: 23/06/2006 01:09

> Ciao.....
> 
> Winbindd è in funzione al momento del join??
> 
> Davide
> 
> Pignedoli Luca wrote:
> 
>> Ciao a tutti.
>>
>> Sto' provando a configurare un Dominio con Samba-3.0.20b,
>> Openldap-2.2.24 e i smbldap-tools-0.9.1 su una SLES9.
>>
>> Ho configurato tutto seguendo le istruzioni su
>> http://us5.samba.org/samba/docs/man/Samba-Guide/happy.html#sbehap-bldg1
>>
>> quando arrivo al pinto di dare il comando:
>>
>> #net rpc join -S serverie -U root%secret
>>
>>
>> iniziano i problemi.
>>
>> La prima volta mi dice:
>> Creation of workstation account failed
>> Unable to join domain GTIE.
>>
>> pero' l'account del computer viene creato, o almeno in parte.
>>
>> Se provo a lanciare il comando:
>>
>> #smbldap-usershow serverie$
>> mi ritorna:
>> dn: uid=serverie$,ou=Computers,dc=gtie
>> objectClass: top,inetOrgPerson,posixAccount
>> cn: serverie$
>> sn: serverie$
>> uid: serverie$
>> uidNumber: 1000
>> gidNumber: 515
>> homeDirectory: /dev/null
>> loginShell: /bin/false
>> description: Computer
>> gecos: Computer
>>
>> ma credo che manchi qualcosa.
>>
>> Nel log mi ritrovo i seguenti msg:
>> 192.168.5.211.log
>> [2006/06/22 19:25:43, 0] rpc_server/srv_netlog_nt.c:get_md4pw(242)
>>  get_md4pw: Workstation SERVERIE$: no account in domain
>> [2006/06/22 19:25:43, 2] smbd/server.c:exit_server(612)
>>  Closing connections
>>
>> serverie.log
>> [2006/06/22 19:25:43, 2] lib/smbldap.c:smbldap_open_connection(630)
>>  smbldap_open_connection: connection opened
>> request 1 done
>> request 2 done
>> request 3 done
>> [2006/06/22 19:25:43, 2] passdb/pdb_ldap.c:init_sam_from_ldap(499)
>>  init_sam_from_ldap: Entry found for user: root
>> request 1 done
>> request 2 done
>> request 3 done
>> request 4 done
>> request 5 done
>> [2006/06/22 19:25:43, 2] passdb/pdb_ldap.c:init_group_from_ldap(2001)
>>  init_group_from_ldap: Entry found for group: 512
>> [2006/06/22 19:25:43, 2] auth/auth.c:check_ntlm_password(307)
>>  check_ntlm_password:  authentication for user [root] -> [root] ->
>> [root] succeeded
>> request 6 done
>> request 4 done
>> request 5 done
>> request 6 done
>> request 7 done
>> [2006/06/22 19:25:44, 2] smbd/server.c:exit_server(612)
>>  Closing connections
>>
>> Dove ho sbagliato?
>>
>> Questo e' il smb.conf:
>> # Global parameters
>> [global]
>>        workgroup = GTIE
>>        netbios name = serverie
>>        security = user
>>        enable privileges = yes
>>        username map = /etc/samba/smbusers
>>        server string = Samba Server %v
>>        encrypt passwords = Yes
>>        unix password sync = Yes
>>        passwd program = /opt/IDEALX/sbin/smbldap-passwd -u %u
>>        passwd chat = "Changing password for*\nNew password*" %n\n
>> "*Retype new password*" %n\n"
>>        log level = 2
>>        syslog = 0
>>        log file = /var/log/samba/%m.log
>>        max log size = 100000
>>        time server = Yes
>>        socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
>>        mangling method = hash2
>>        Dos charset = 850
>>        Unix charset = ISO8859-1
>>        logon script = logon.bat
>>        logon drive = H:
>>        logon home =
>>        logon path =
>>        domain logons = Yes
>>        domain master = Yes
>>        preferred master = Yes
>>        os level = 65
>>        wins support = yes
>>        passdb backend = ldapsam:ldap://127.0.0.1/
>>        ldap admin dn = cn=Manager,dc=gtie
>>        ldap suffix = dc=gtie
>>        ldap group suffix = ou=Groups
>>        ldap user suffix = ou=Users
>>        ldap machine suffix = ou=Computers
>>        ldap idmap suffix = ou=Idmap
>>        ldap delete dn = Yes
>>        idmap uid = 10000-20000
>>        idmap gid = 10000-20000
>>        add user script = /opt/IDEALX/sbin/smbldap-useradd -m "%u"
>>        delete user script = /opt/IDEALX/sbin/smbldap-userdel "%u"
>>        add group script = /opt/IDEALX/sbin/smbldap-groupadd -p "%g"
>>        delete group script = /opt/IDEALX/sbin/smbldap-groupdel "%g"
>>        add machine script = /opt/IDEALX/sbin/smbldap-useradd -w "%u"
>>        add user to group script = /opt/IDEALX/sbin/smbldap-groupmod -m
>> "%u" "%g"
>>        delete user from group script =
>> /opt/IDEALX/sbin/smbldap-groupmod -x "%u" "%g"
>>        set primary group script = /opt/IDEALX/sbin/smbldap-usermod -g
>> '%g' '%u'
>>        load printers = Yes
>>        create mask = 0640
>>        directory mask = 0750
>>        nt acl support = No
>>        printing = cups
>>        printcap name = cups
>>        deadtime = 10
>>        guest account = nobody
>>        map to guest = Bad User
>>        dont descend = /proc,/dev,/etc,/lib,/lost+found,/initrd
>>        show add printer wizard = yes
>>        preserve case = yes
>>        short preserve case = yes
>>        case sensitive = no
>>
>>
>>
>>
>> Grazie mille.
>> _______________________________________________
>> Samba-it mailing list
>> Samba-it at xsec.it
>> https://lists.xsec.it/mailman/listinfo/samba-it
>>
>>
>>  
>>
> 
> _______________________________________________
> Samba-it mailing list
> Samba-it at xsec.it
> https://lists.xsec.it/mailman/listinfo/samba-it
> 
> 