Trying to get Samba working with LDAP
Tony Moran
voices at ayahuasca.net
Mon Mar 1 12:55:57 GMT 1999
On Thu, 25 Feb 1999, Martin Hofbauer Bacher Systems EDV wrote:
>
> You have differences in the "dn:"
>
> dn: .... o=uk in smb.conf
>
> dn: ....c=uk in the LDAP -db
Thanks Martin, that was it - (doh) - the other differences were on
purpose cos of my editing.. However, all is not solved :
Smbpasswd still won't work.
If you can spot anything here, I'd be indebted..thanks, Tony
###Start
webemea# /usr/local/samba/bin/smbpasswd -D 10 infmin
New SMB password:
Retype new SMB password:
Connected to LDAP server
Searching in [sn=Samba, o=3Com GIS, c=uk] for
[(&(uid=infmin)(objectclass=sambaAccount))]
1 matching entries found
get: [uid] = [infmin]
Retrieving account [infmin]
get: [uidNumber] = [1001]
get: [ntuid] = [1]
get: [rid] = [2001]
get: [lmPassword] = [1]
get: [ntPassword] = [2]
get: [pwdLastSet] = [35C11F1B]
Connection closed
pwdb_smb_map_names
lookupsmbpwnam: unix user name infmin
lookupsmbpwuid: unix uid 1001
initialising map
lookupsmbpwuid: unix uid 1001
sid_to_string returning S-1-5-21-1108334765-1890153664-4018903297-8193
lookupsmbpwsid: nt sid S-1-5-21-1108334765-1890153664-4018903297-8193
lookupsmbpwntnam: nt user name 1
name '1' split into domain: and nt name:1'
Failed to find entry for user infmin.
Failed to change password entry for infmin
###End
Heres the debug info from ldap - sorry about the length of it
###Start
webemea# /etc/rc2.d/S101ldap
slapd 1.2.0-Beta2 (Mon Feb 22 11:02:19 GMT 1999)
root at webemea:/usr/local/depot/ldap/servers/slapd
slapd starting
listening for connections on 3, activity on:
before select active_threads 0
select activity on 1 descriptors
new connection on 5
activity on:
listening for connections on 3, activity on: 5r
before select active_threads 0
select activity on 1 descriptors
activity on: 5r
read activity on 5
ber_get_next
ber_get_next: tag 0x30 len 40 contents:
ber_dump: buf 0x5e548, ptr 0x5e548, end 0x5e570
current len 40, contents:
02 01 01 ` # 02 01 02 04 1c c n = M a n
a g e r , 20 o = 3 C o m 20 G I S
, 20 c = u k 80 00
do_bind
do_bind: version 2 dn (cn=Manager, o=3Com GIS, c=uk) method 128
==> ldbm_back_bind: dn: CN=MANAGER,O=3COM GIS,C=UK
dn2entry_r: dn: "CN=MANAGER,O=3COM GIS,C=UK"
=> dn2id( "CN=MANAGER,O=3COM GIS,C=UK" )
=> ldbm_cache_open( "/usr/local/openldap/trial-slapd/dn2id.gdbm", 2, 600 )
ldbm_cache_open (blksize 8192) (maxids 2046) (maxindirect 2)
<= ldbm_cache_open (opened 0)
<= dn2id NOID
dn2entry_r: dn: "O=3COM GIS,C=UK"
=> dn2id( "O=3COM GIS,C=UK" )
=> ldbm_cache_open( "/usr/local/openldap/trial-slapd/dn2id.gdbm", 2, 600 )
<= ldbm_cache_open (cache 0)
<= dn2id 1
=> id2entry_r( 1 )
=> ldbm_cache_open( "/usr/local/openldap/trial-slapd/id2entry.gdbm", 2,
600 )
ldbm_cache_open (blksize 8192) (maxids 2046) (maxindirect 2)
<= ldbm_cache_open (opened 1)
=> str2entry
<= str2entry 0x5eb38
entry_rdwr_rlock: ID: 1
<= id2entry_r( 1 ) (disk)
====> cache_return_entry_r
entry_rdwr_runlock: ID: 1
send_ldap_result 0::
ber_flush: 14 bytes to sd 5
0 0c 02 01 01 a 07 0a 01 00 04 00 04 00
listening for connections on 3, activity on: 5r
before select active_threads 0
select activity on 1 descriptors
activity on: 5r
read activity on 5
ber_get_next
ber_get_next: tag 0x30 len 96 contents:
ber_dump: buf 0x5e510, ptr 0x5e510, end 0x5e570
current len 96, contents:
02 01 02 c [ 04 1a s n = S a m b a ,
20 o = 3 C o m 20 G I S , 20 c = u
k 0a 01 01 0a 01 00 02 01 00 02 01 00 01 01 00
a0 , a3 0d 04 03 u i d 04 06 i n f m i
n a3 1b 04 0b o b j e c t c l a s s
04 0c s a m b a A c c o u n t 0 00
(end)
do_search
SRCH "SN=SAMBA,O=3COM GIS,C=UK" 1 0 0 0 0
filter: (&(uid=INFMIN)(objectclass=SAMBAACCOUNT))
attrs:
=> ldbm_back_search
using base "SN=SAMBA,O=3COM GIS,C=UK"
onelevel_candidates: base: "SN=SAMBA,O=3COM GIS,C=UK"
dn2entry_r: dn: "SN=SAMBA,O=3COM GIS,C=UK"
=> dn2id( "SN=SAMBA,O=3COM GIS,C=UK" )
=> ldbm_cache_open( "/usr/local/openldap/trial-slapd/dn2id.gdbm", 2, 600 )
<= ldbm_cache_open (cache 0)
<= dn2id 2
=> id2entry_r( 2 )
=> ldbm_cache_open( "/usr/local/openldap/trial-slapd/id2entry.gdbm", 2,
600 )
<= ldbm_cache_open (cache 1)
=> str2entry
<= str2entry 0x5ea40
entry_rdwr_rlock: ID: 2
<= id2entry_r( 2 ) (disk)
subtree_candidates: base: "SN=SAMBA,O=3COM GIS,C=UK"
=> filter_candidates
=> list_candidates 0xa0
=> filter_candidates
=> ava_candidates 0xa3
=> index_read( "id2children" "=" "2" )
=> ldbm_cache_open( "/usr/local/openldap/trial-slapd/id2children.gdbm", 2,
600 )
ldbm_cache_open (blksize 8192) (maxids 2046) (maxindirect 2)
<= ldbm_cache_open (opened 2)
<= index_read 1 candidates
<= ava_candidates 1
<= filter_candidates 1
=> filter_candidates
=> list_candidates 0xa0
=> filter_candidates
=> ava_candidates 0xa3
=> index_read( "uid" "=" "INFMIN" )
<= index_read 4 candidates (allids - not indexed)
<= ava_candidates 4
<= filter_candidates 4
=> filter_candidates
=> ava_candidates 0xa3
=> index_read( "objectclass" "=" "SAMBAACCOUNT" )
=> ldbm_cache_open( "/usr/local/openldap/trial-slapd/objectclass.gdbm", 2,
600 )
ldbm_cache_open (blksize 8192) (maxids 2046) (maxindirect 2)
<= ldbm_cache_open (opened 3)
<= index_read 1 candidates
<= ava_candidates 1
<= filter_candidates 1
<= list_candidates 1
<= filter_candidates 1
listening for connections on 3, activity on: 5r
before select active_threads 1
<= list_candidates 1
<= filter_candidates 1
====> cache_return_entry_r
entry_rdwr_runlock: ID: 2
=> id2entry_r( 3 )
=> ldbm_cache_open( "/usr/local/openldap/trial-slapd/id2entry.gdbm", 2,
600 )
<= ldbm_cache_open (cache 1)
=> str2entry
<= str2entry 0x5f828
entry_rdwr_rlock: ID: 3
<= id2entry_r( 3 ) (disk)
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> send_search_entry (uid=infmin, sn=Samba, o=3Com GIS, c=uk)
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
=> acl_get: edn UID=INFMIN,SN=SAMBA,O=3COM GIS,C=UK
ber_flush: 470 bytes to sd 5
0 82 01 d2 02 01 02 d 82 01 cb 04 & u i d
= i n f m i n , 20 s n = S a m b
a , 20 o = 3 C o m 20 G I S , 20 c
= u k 0 82 01 9f 0 0f 04 03 u i d 1 08
04 06 i n f m i n 0 " 04 02 c n 1 1c
04 1a I n f o r m a t i o n 20 S e
r v i c e s 20 A d m i n 0 ( 04 0b
d e s c r i p t i o n 1 19 04 17 3
C o m 20 W I S 20 A d m i n i s t
r a t i o n 0 13 04 09 u i d n u m
b e r 1 06 04 04 1 0 0 1 0 12 04 09 g
i d n u m b e r 1 05 04 03 1 0 1 0
0c 04 05 n t u i d 1 03 04 01 1 0 0d 04
03 r i d 1 06 04 04 2 0 0 1 0 12 04 08
g r o u p r i d 1 06 04 04 2 0 0 0
0 11 04 0a l m p a s s w o r d 1 03
04 01 1 0 11 04 0a n t p a s s w o r
d 1 03 04 01 2 0 18 04 0a p w d l a s
t s e t 1 0a 04 08 3 5 C 1 1 F 1 B
0 1c 04 07 s m b h o m e 1 11 04 0f \
\ s a m b a 1 \ i n f m i n 0 10
04 09 h o m e d r i v e 1 03 04 01 Z
0 15 04 06 s c r i p t 1 0b 04 09 l o
g o n . b a t 0 $ 04 07 p r o f i
l e 1 19 04 17 \ \ s a m b a 1 \ i
n f m i n \ p r o f i l e 0 18 04
0c w o r k s t a t i o n s 1 08 04
06 t m o r a n 0 1d 04 0b o b j e c
t c l a s s 1 0e 04 0c s a m b a A
c c o u n t
<= send_search_entry
====> cache_return_entry_r
entry_rdwr_runlock: ID: 3
send_ldap_result 0::
ber_flush: 14 bytes to sd 5
0 0c 02 01 02 e 07 0a 01 00 04 00 04 00
select activity on 1 descriptors
activity on: 5r
read activity on 5
ber_get_next
ber_get_next: tag 0x30 len 5 contents:
ber_dump: buf 0x5d0e0, ptr 0x5d0e0, end 0x5d0e5
current len 5, contents:
02 01 03 B 00
do_unbind
listening for connections on 3, activity on:
before select active_threads 0
###End
Heres what I've got in my test Directory :
###Start
webemea# bin/ldapsearch -b 'sn=Samba, o=3Com GIS, c=uk' infmin
ldap_search: Bad search filter
webemea# bin/ldapsearch -b 'sn=Samba, o=3Com GIS, c=uk' 'uid=infmin'
webemea# bin/ldapsearch -b 'sn=Samba, o=3Com GIS, c=uk'
'objectClass=Samba'
webemea# bin/ldapsearch -b 'sn=Samba, o=3Com GIS, c=uk' 'objectClass=*'
webemea# bin/ldapsearch -b 'o=3Com GIS, c=uk' 'objectclass=*'
o=3Com GIS, c=uk
o=3Com GIS
description=3Com GIS Europe at Hemel Hempstead
objectclass=organization
sn=Samba, o=3Com GIS, c=uk
sn=Samba
description=GIS Samba Service Directory
authority=Tony Moran <tony_moran at ayahuasca.net>
objectclass=sn
uid=infmin, sn=Samba, o=3Com GIS, c=uk
uid=infmin
cn=Information Services Admin
description=3Com WIS Administration
uidnumber=1001
gidnumber=101
ntuid=1
rid=2001
grouprid=2000
lmpassword=1
ntpassword=2
pwdlastset=35C11F1B
smbhome=\\samba1\infmin
homedrive=Z
script=logon.bat
profile=\\samba1\infmin\profile
workstations=tmoran
objectclass=sambaAccount
###End
More information about the samba-technical
mailing list