ADS Authentication + LDAP Question

El Farto elfarto at
Tue Feb 22 20:45:54 GMT 2005

Hi, i'm setting up a samba server that authenticates agains an ADS DC via ldap
i've sucesfully joined the samba machine to the domain and the usual
wbinfo -u/-g and getent passwd shows the ADS users as users in the
samba box, the problem is, when i try to access a share on the samba
box from one windows 2003 server (is the PDC) i get those errors on
the samba log

[2005/02/22 17:34:10, 0] passdb/pdb_ldap.c:ldapsam_search_one_group(1982)
  ldapsam_search_one_group: Problem during the LDAP search: LDAP
error: 0000208D: NameErr: DSID-031001A1, problem 2001 (NO_OBJ
ECT), data 0, best match of:
   (No such object)

and authentication fails.

I will appreciate any help
this is the [global] part of my smb.conf
   workgroup = MYDOMAIN
   server string = Samba Server at linuxdvr
   security = ADS
   log file = /var/log/samba/log.%m
   realm = MYDOMAIN.COM
   netbios name= LINUXDVR
   client use spnego = yes
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
   passdb backend = ldapsam:ldap://
   ldap admin dn = "cn=administrator,cn=Users,dc=mydomain,dc=com"
   username map = /etc/samba/smbusers
   idmap uid = 10000-20000
   idmap gid = 10000-20000
   template primary group = "Domain Users"
   template shell = /bin/false
   winbind separator = +
   wins server =

More information about the samba-technical mailing list