Samba 3.0 / idmap backend ldap

Leandro Ariel Gomez Chavarria lgomez at
Wed Nov 19 18:54:56 GMT 2003


Let see if I understand what you mean. 
You said that when winbindd connects to the slave, this one tells
winbindd to rebind his connection to the master? on a write operation or
any kind?

If that, it never happened. When winbindd connects to the slave stay
there and if (supouse) insert a new SambaSID in this one and increments
uidNumber, the changes never arrives to the master, so, when I restart
winbindd and connects to the master the uidNumber it's incorrect; and
the recently added SambaSID doesn't exists. If I request a new
Uid/SambaSID for a different user it (of course) give me a Uid already
assigned to a different SambaSID in the slave, and the master sends to
the slave the update/insert for that new record, and the first user
regain a new Uid next time it request it.

I thought that open ldap can synchronize on both ways, isn't it true?

Be sides, once winbindd bind his connection to one ldap server; it stay
there? I mean if I have 2 ldap servers (master and slave) and a fqdn in
my dns for both servers (for example in my case ldap.sys.arg means the 2
differents ip's) shouldn't be able to balance the requests between

anyway, here is my ldap stuff from the smb.conf

        ldap suffix = dc=openldap,dc=e200,dc=arg
        ldap admin dn = cn=Manager,dc=openldap,dc=e200,dc=arg
        idmap backend = ldap:ldap://ldap.sys.arg:389
        ldap idmap suffix = ou=smbIdMap

thanks, leandro.-

>>> "Gerald (Jerry) Carter" <jerry at> 11/19/03 11:07am >>>
Hash: SHA1

Leandro Ariel Gomez Chavarria wrote:

| Hi all, I'm testing openldap in a RedHat 9 (openldap-2.0.27-8
| rpm's) to store IdMaps for samba 3.0 using idmap backend = ldap,
| because I have it in a HA configuration, so I need a
| unique idMap across the nodes of the cluster.
| I install open ldap in 2 linuxboxes (lxcluster01 and
| lxcluster02) to run as Master and Slave ldap servers, everything
| seems to work fine, but when I test the slave I notice that
| when I create a new entry it doesn't replicate on the master,
| I think this have to be the "normal" behavior, or I'm wrong?
| I ran in debug mode all the processes to see what's
| going on and I never saw the slave trying to contact
| the master. Note that the replication from the master
| to the slave works fine.

The slave should send a referral back to winbindd
for the master (e.g. updateref).  Winbindd should
then rebind to the master and issue the ldapadd().
Did you see this?

- --
cheers, jerry
Hewlett-Packard            -------------------------

SAMBA Team                 ----------------------

GnuPG Key                  ----

"If we're adding to the noise, turn off this song" --Switchfoot (2003)
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - 


More information about the samba-technical mailing list