Samba 4 - Alpha 8 / OpenLDAP missing schema attributes

David Collier-Brown davec-b at rogers.com
Wed Aug 5 11:12:37 MDT 2009 

MICHAEL BROWN wrote:
>>>> Andrew Bartlett <abartlet at samba.org> Tuesday, August 04, 2009 >>>
>>>>         
> On Tue, 2009-08-04 at 16:47 -0500, MICHAEL BROWN wrote:
>   
>> Hello,
>> I just setup Samba 4, alpha 8, with OpenLDAP to use replication.  However, after setting up everything,
>> I started importing my POSIX users and groups but there are no "uidNumber" or "gidNumber" attributes like
>> there are with using Samba 4's POSIX schema backend.  *PLEASE* tell me I am missing something here.  
>>     
>
>   
>>> This really should 'just work'.  Did you run provision-backend with the
>>> current code?  (If you did not, then you might still be running the old
>>> configuration, generated with the former schema). 
>>>       
>
> Yes, the "provision-backend" and "provision" scripts both ran with no problems.  One key thing (on this issue) that should
> be noted to the users is that OpenLDAP must have all of the SASL libraries installed, and linked properly to the Berkeley BDB
> backend, etc., or Samba and OpenLDAP WILL NOT WORK with the required "samba-admin" user within the "provision" scripts.
>
> Oliver wrote:
>
>   
>>> but the posix-related attributes are still missing.
>>>       
>
> Oliver,
> is this something you are working on to fix?
>
> The strange thing is the same schema is used when provisioning Samba 4 *without* OpenLDAP and it works
> perfect.  It is just when OpenLDAP is used and the scripts "auto populate" the backend, is when these *key* POSIX objects are left out.
>
> I do hope this is a "easy" fix because I am dead in the water doing further testing, without these objects, within my environment.. hint, hint =)
>
>
>
>
> NOTICE - This communication may contain confidential and privileged information that is for the sole use of the intended recipient. Any viewing, copying or distribution of, or reliance on this message by unintended recipients is strictly prohibited.  If you have received this message in error, please notify us immediately by replying to the message and deleting it from your computer.
>
>   
Is there an appropriate place in the scripts to detect a failure and
diagnose the
LDAP?

--dave--

David Collier-Brown,         | Always do right. This will gratify
System Programmer and Author | some people and astonish the rest
davecb at spamcop.net           |                      -- Mark Twain
(416) 223-8968

More information about the samba-technical mailing list