ADS Authentication + LDAP Question
El Farto
elfarto at gmail.com
Tue Feb 22 20:45:54 GMT 2005
Hi, i'm setting up a samba server that authenticates agains an ADS DC via ldap
i've sucesfully joined the samba machine to the domain and the usual
wbinfo -u/-g and getent passwd shows the ADS users as users in the
samba box, the problem is, when i try to access a share on the samba
box from one windows 2003 server (is the PDC) i get those errors on
the samba log
[2005/02/22 17:34:10, 0] passdb/pdb_ldap.c:ldapsam_search_one_group(1982)
ldapsam_search_one_group: Problem during the LDAP search: LDAP
error: 0000208D: NameErr: DSID-031001A1, problem 2001 (NO_OBJ
ECT), data 0, best match of:
''
(No such object)
and authentication fails.
I will appreciate any help
this is the [global] part of my smb.conf
[global]
workgroup = MYDOMAIN
server string = Samba Server at linuxdvr
security = ADS
log file = /var/log/samba/log.%m
realm = MYDOMAIN.COM
netbios name= LINUXDVR
client use spnego = yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
passdb backend = ldapsam:ldap://adsserver.mydomain.com
ldap admin dn = "cn=administrator,cn=Users,dc=mydomain,dc=com"
username map = /etc/samba/smbusers
idmap uid = 10000-20000
idmap gid = 10000-20000
template primary group = "Domain Users"
template shell = /bin/false
winbind separator = +
wins server = 192.168.0.3
More information about the samba-technical
mailing list