Samba4 + OpenLDAP - problem

Motaz Diab forzamotaz at yahoo.com
Wed Aug 5 03:14:59 MDT 2009


I face your problem so if you find the solution, can you send me please?


mmaciej wrote:
> 
> Hi
> I have tried samba4 alpha8 and worked great for windows machines naw I
> would like to use OpenLDAP but I can't provision
> I have: 
> debian lenny with 2.6.30.2
> BerkeleyDB4.5.20 
> Krb5-1.6.3
> OpenSSL-0.9.8k
> OpenLDAP-2.4.15
> Cyrus-SASL-2.1.23
> Samba4alpha8
> I did:
> 
> setup/provision-backend --realm=mydomain.net --ldap-admin-pass=secret
> --domain=sambadc --ldap-backend-type=openldap --server-role='domain
> controller'
> 
> started slapd with some errors:
> backend_startup_one: starting "cn=Samba"
> backend_startup_one: starting
> "cn=Schema,cn=Configuration,dc=mydomain,dc=net"
> hdb_db_open: "cn=Schema,cn=Configuration,dc=mydomain,dc=net"
> hdb_db_open: database "cn=Schema,cn=Configuration,dc=mydomain,dc=net":
> dbenv_open(/usr/local/samba/private/ldap/db/schema).
> hdb_monitor_db_open: monitoring disabled; configure monitor database to
> enable
> => bdb_entry_get: ndn: "cn=schema,cn=configuration,dc=mydomain,dc=net"
> => bdb_entry_get: oc: "(null)", at: "contextCSN"
> bdb_dn2entry("cn=schema,cn=configuration,dc=mydomain,dc=net")
> => hdb_dn2id("cn=schema,cn=configuration,dc=mydomain,dc=net")
> <= hdb_dn2id: get failed: DB_NOTFOUND: No matching key/data pair found
> (-30989)
> backend_startup_one: starting "cn=Configuration,dc=mydomain,dc=net"
> hdb_db_open: "cn=Configuration,dc=mydomain,dc=net"
> hdb_db_open: database "cn=Configuration,dc=mydomain,dc=net":
> dbenv_open(/usr/local/samba/private/ldap/db/config).
> => bdb_entry_get: ndn: "cn=configuration,dc=mydomain,dc=net"
> => bdb_entry_get: oc: "(null)", at: "contextCSN"
> bdb_dn2entry("cn=configuration,dc=mydomain,dc=net")
> => hdb_dn2id("cn=configuration,dc=mydomain,dc=net")
> <= hdb_dn2id: get failed: DB_NOTFOUND: No matching key/data pair found
> (-30989)
> backend_startup_one: starting "dc=mydomain,dc=net"
> hdb_db_open: "dc=mydomain,dc=net"
> hdb_db_open: database "dc=mydomain,dc=net":
> dbenv_open(/usr/local/samba/private/ldap/db/user).
> => bdb_entry_get: ndn: "dc=mydomain,dc=net"
> => bdb_entry_get: oc: "(null)", at: "contextCSN"
> bdb_dn2entry("dc=mydomain,dc=net")
> => hdb_dn2id("dc=mydomain,dc=net")
> <= hdb_dn2id: get failed: DB_NOTFOUND: No matching key/data pair found
> (-30989)
> slapd starting
> 
> Anyway I tried:
> setup/provision  --ldap-backend=ldapi --ldap-backend-type=openldap
> --password=secret --username=samba-admin --realm=mydomain.net
> --domain=SAMBADC --server-role='domain controller'
> 
> 
> 
> And I have:
> Setting up share.ldb
> Setting up secrets.ldb
> Setting up the registry
> Setting up templates db
> Setting up idmap db
> Failed to bind - LDAP client internal error: NT_STATUS_IO_TIMEOUT
> Failed to connect to
> 'ldapi://%2Fusr%2Flocal%2Fsamba%2Fprivate%2Fldap%2Fldapi'
> module partition initialization failed
> module show_deleted initialization failed
> module extended_dn_out_dereference initialization failed
> module operational initialization failed
> module kludge_acl initialization failed
> module samldb initialization failed
> module asq initialization failed
> module server_sort initialization failed
> module paged_results initialization failed
> module rootdse initialization failed
> Unable to load modules for /usr/local/samba/private/sam.ldb: (null)
> Traceback (most recent call last):
>   File "setup/provision", line 192, in <module>
>     ldap_backend_type=opts.ldap_backend_type)
>   File "bin/python/samba/provision.py", line 1052, in provision
>     ldap_backend_type=ldap_backend_type)
>   File "bin/python/samba/provision.py", line 775, in setup_samdb
>     ldap_backend_type=ldap_backend_type, erase=erase)
>   File "bin/python/samba/provision.py", line 564, in
> setup_samdb_partitions
>     credentials=credentials, lp=lp)
>   File "bin/python/samba/samdb.py", line 49, in __init__
>     self.connect(url)
>   File "bin/python/samba/samdb.py", line 54, in connect
>     super(SamDB, self).connect(self.lp.private_path(url))
> _ldb.LdbError: (80, None)
> 
> 
> 
> 
> A bit from slapd console:
> slap_ap_lookup: str2ad(cmusaslsecretDIGEST-MD5): attribute type undefined
> send_ldap_result: conn=1 op=2 p=3
> send_ldap_result: err=0 matched="" text=""
> SASL Canonicalize [conn=1]: authzid="samba-admin"
> SASL proxy authorize [conn=1]: authcid="samba-admin at mydomain.net"
> authzid="samba-admin at mydomain.net"
> SASL Authorize [conn=1]:  proxy authorization allowed authzDN=""
> send_ldap_sasl: err=0 len=40
> do_bind: SASL/DIGEST-MD5 bind: dn="cn=samba-admin,cn=samba" sasl_ssf=1
> send_ldap_response: msgid=3 tag=97 err=0
> ber_flush2: 56 bytes to sd 22
>   0000:  30 36 02 01 03 61 31 0a  01 00 04 00 04 00 87 28  
> 06...a1........(  
>   0010:  72 73 70 61 75 74 68 3d  30 65 39 65 31 65 66 63  
> rspauth=0e9e1efc  
>   0020:  34 30 63 35 35 32 33 35  63 37 66 65 39 36 30 38  
> 40c55235c7fe9608  
>   0030:  63 62 36 64 64 65 30 62                            cb6dde0b          
> ldap_write: want=56, written=56
>   0000:  30 36 02 01 03 61 31 0a  01 00 04 00 04 00 87 28  
> 06...a1........(  
>   0010:  72 73 70 61 75 74 68 3d  30 65 39 65 31 65 66 63  
> rspauth=0e9e1efc  
>   0020:  34 30 63 35 35 32 33 35  63 37 66 65 39 36 30 38  
> 40c55235c7fe9608  
>   0030:  63 62 36 64 64 65 30 62                            cb6dde0b          
> <== slap_sasl_bind: rc=0
> slap_listener_activate(8): 
>>>> slap_listener(ldapi://%2Fusr%2Flocal%2Fsamba%2Fprivate%2Fldap%2Fldapi)
> connection_get(23)
> connection_get(23): got connid=2
> connection_read(23): checking for input on id=2
> ber_get_next
> ldap_read: want=8, got=8
>   0000:  30 53 02 01 01 63 4e 04                            0S...cN.          
> ldap_read: want=77, got=77
>   0000:  00 0a 01 00 0a 01 00 02  01 00 02 01 00 01 01 00  
> ................  
>   0010:  a1 20 87 0b 6f 62 6a 65  63 74 43 6c 61 73 73 87   .
> ..objectClass.  
>   0020:  11 64 69 73 74 69 6e 67  75 69 73 68 65 64 4e 61  
> .distinguishedNa  
>   0030:  6d 65 30 19 04 17 73 75  70 70 6f 72 74 65 64 53  
> me0...supportedS  
>   0040:  41 53 4c 4d 65 63 68 61  6e 69 73 6d 73            ASLMechanisms     
> ber_get_next: tag 0x30 len 83 contents:
> ber_get_next
> 
> 
> What am I donig wrong?
> Cheers mmaciej
> 

-- 
View this message in context: http://www.nabble.com/Samba4-%2B-OpenLDAP---problem-tp24644818p24823473.html
Sent from the Samba - samba-technical mailing list archive at Nabble.com.



More information about the samba-technical mailing list