samba_3_0+ldapsam_nua: creating machine trust accounts fails

Alex Deiter tiamat at
Fri Apr 25 12:21:35 GMT 2003


With samba samba-3.0a23 i'm unable to create new Machine Trust Accounts with

# smbpasswd -D 5 -a -m pc-new
Netbios name list:-
Trying to load: ldapsam_nua
Attempting to find an passdb backend to match ldapsam_nua (ldapsam_nua)
Found pdb backend ldapsam_nua (at pos 5)
pdb backend ldapsam_nua has a valid init
ldapsam_search_one_user: searching
ldapsam_open_connection: connection opened
ldap_connect_system: succesful connection to the LDAP server
The LDAP server is succesful connected
We don't find this user [pc-new$] count=0
ldapsam_search_one_user: searching
ldapsam_open: allready connected to the LDAP server
ldapsam_search_one_user: searching for:[uid=pc-new$]
ldapsam_open: allready connected to the LDAP server
Adding new user
Setting entry for user: pc-new$
ldapsam_get_next_available_nua_rid: searching
ldapsam_open: allready connected to the LDAP server
search_top_nua_rid: 3 entries in the base!
Entry found for user: tiamat
Entry found for user: test
Entry found for user: pc-install$
ldapsam_search_one_user: searching for:[rid=7002]
ldapsam_open: allready connected to the LDAP server
NUA RID 7002 (0x1b5a), declared valid
ldapsam_open: allready connected to the LDAP server
failed to add user dn= uid=pc-new$,ou=computers,dc=komi,dc=mts,dc=ru with:
Object class violation
        object class 'sambaAccount' requires attribute 'rid'
failed to modify/add user with uid = pc-new$ (dn =
Failed to add entry for user pc-new$.
Failed to modify password entry for user pc-new$



        passdb backend = ldapsam_nua
        non unix account range = 3000-3100
        ldap delete dn = yes
        ldap admin dn = cn=root,dc=komi,dc=mts,dc=ru
        ldap server = localhost
        ldap port = 389
        ldap ssl = No
        ldap suffix = dc=komi,dc=mts,dc=ru
        ldap machine suffix = ou=computers
        ldap user suffix = ou=users
        workgroup = KOMI
        guest account = nobody
        log file = /var/log/samba/%m.log
        lock directory = /var/run/samba
        pid directory = /var/run
        log level = 1
        security = user
        encrypt passwords = yes
        local master = yes
        os level = 133
        domain master = yes
        preferred master = yes
        domain logons = yes


More information about the samba-technical mailing list