Samba4 + OpenLDAP - problem
mmaciej
mmaciej at natimax.pl
Fri Jul 24 07:44:25 MDT 2009
Hi
I have tried samba4 alpha8 and worked great for windows machines naw I would
like to use OpenLDAP but I can't provision
I have:
debian lenny with 2.6.30.2
BerkeleyDB4.5.20
Krb5-1.6.3
OpenSSL-0.9.8k
OpenLDAP-2.4.15
Cyrus-SASL-2.1.23
Samba4alpha8
I did:
setup/provision-backend --realm=mydomain.net --ldap-admin-pass=secret
--domain=sambadc --ldap-backend-type=openldap --server-role='domain
controller'
started slapd with some errors:
backend_startup_one: starting "cn=Samba"
backend_startup_one: starting
"cn=Schema,cn=Configuration,dc=mydomain,dc=net"
hdb_db_open: "cn=Schema,cn=Configuration,dc=mydomain,dc=net"
hdb_db_open: database "cn=Schema,cn=Configuration,dc=mydomain,dc=net":
dbenv_open(/usr/local/samba/private/ldap/db/schema).
hdb_monitor_db_open: monitoring disabled; configure monitor database to
enable
=> bdb_entry_get: ndn: "cn=schema,cn=configuration,dc=mydomain,dc=net"
=> bdb_entry_get: oc: "(null)", at: "contextCSN"
bdb_dn2entry("cn=schema,cn=configuration,dc=mydomain,dc=net")
=> hdb_dn2id("cn=schema,cn=configuration,dc=mydomain,dc=net")
<= hdb_dn2id: get failed: DB_NOTFOUND: No matching key/data pair found
(-30989)
backend_startup_one: starting "cn=Configuration,dc=mydomain,dc=net"
hdb_db_open: "cn=Configuration,dc=mydomain,dc=net"
hdb_db_open: database "cn=Configuration,dc=mydomain,dc=net":
dbenv_open(/usr/local/samba/private/ldap/db/config).
=> bdb_entry_get: ndn: "cn=configuration,dc=mydomain,dc=net"
=> bdb_entry_get: oc: "(null)", at: "contextCSN"
bdb_dn2entry("cn=configuration,dc=mydomain,dc=net")
=> hdb_dn2id("cn=configuration,dc=mydomain,dc=net")
<= hdb_dn2id: get failed: DB_NOTFOUND: No matching key/data pair found
(-30989)
backend_startup_one: starting "dc=mydomain,dc=net"
hdb_db_open: "dc=mydomain,dc=net"
hdb_db_open: database "dc=mydomain,dc=net":
dbenv_open(/usr/local/samba/private/ldap/db/user).
=> bdb_entry_get: ndn: "dc=mydomain,dc=net"
=> bdb_entry_get: oc: "(null)", at: "contextCSN"
bdb_dn2entry("dc=mydomain,dc=net")
=> hdb_dn2id("dc=mydomain,dc=net")
<= hdb_dn2id: get failed: DB_NOTFOUND: No matching key/data pair found
(-30989)
slapd starting
Anyway I tried:
setup/provision --ldap-backend=ldapi --ldap-backend-type=openldap
--password=secret --username=samba-admin --realm=mydomain.net
--domain=SAMBADC --server-role='domain controller'
And I have:
Setting up share.ldb
Setting up secrets.ldb
Setting up the registry
Setting up templates db
Setting up idmap db
Failed to bind - LDAP client internal error: NT_STATUS_IO_TIMEOUT
Failed to connect to
'ldapi://%2Fusr%2Flocal%2Fsamba%2Fprivate%2Fldap%2Fldapi'
module partition initialization failed
module show_deleted initialization failed
module extended_dn_out_dereference initialization failed
module operational initialization failed
module kludge_acl initialization failed
module samldb initialization failed
module asq initialization failed
module server_sort initialization failed
module paged_results initialization failed
module rootdse initialization failed
Unable to load modules for /usr/local/samba/private/sam.ldb: (null)
Traceback (most recent call last):
File "setup/provision", line 192, in <module>
ldap_backend_type=opts.ldap_backend_type)
File "bin/python/samba/provision.py", line 1052, in provision
ldap_backend_type=ldap_backend_type)
File "bin/python/samba/provision.py", line 775, in setup_samdb
ldap_backend_type=ldap_backend_type, erase=erase)
File "bin/python/samba/provision.py", line 564, in setup_samdb_partitions
credentials=credentials, lp=lp)
File "bin/python/samba/samdb.py", line 49, in __init__
self.connect(url)
File "bin/python/samba/samdb.py", line 54, in connect
super(SamDB, self).connect(self.lp.private_path(url))
_ldb.LdbError: (80, None)
A bit from slapd console:
slap_ap_lookup: str2ad(cmusaslsecretDIGEST-MD5): attribute type undefined
send_ldap_result: conn=1 op=2 p=3
send_ldap_result: err=0 matched="" text=""
SASL Canonicalize [conn=1]: authzid="samba-admin"
SASL proxy authorize [conn=1]: authcid="samba-admin at mydomain.net"
authzid="samba-admin at mydomain.net"
SASL Authorize [conn=1]: proxy authorization allowed authzDN=""
send_ldap_sasl: err=0 len=40
do_bind: SASL/DIGEST-MD5 bind: dn="cn=samba-admin,cn=samba" sasl_ssf=1
send_ldap_response: msgid=3 tag=97 err=0
ber_flush2: 56 bytes to sd 22
0000: 30 36 02 01 03 61 31 0a 01 00 04 00 04 00 87 28 06...a1........(
0010: 72 73 70 61 75 74 68 3d 30 65 39 65 31 65 66 63 rspauth=0e9e1efc
0020: 34 30 63 35 35 32 33 35 63 37 66 65 39 36 30 38 40c55235c7fe9608
0030: 63 62 36 64 64 65 30 62 cb6dde0b
ldap_write: want=56, written=56
0000: 30 36 02 01 03 61 31 0a 01 00 04 00 04 00 87 28 06...a1........(
0010: 72 73 70 61 75 74 68 3d 30 65 39 65 31 65 66 63 rspauth=0e9e1efc
0020: 34 30 63 35 35 32 33 35 63 37 66 65 39 36 30 38 40c55235c7fe9608
0030: 63 62 36 64 64 65 30 62 cb6dde0b
<== slap_sasl_bind: rc=0
slap_listener_activate(8):
>>> slap_listener(ldapi://%2Fusr%2Flocal%2Fsamba%2Fprivate%2Fldap%2Fldapi)
connection_get(23)
connection_get(23): got connid=2
connection_read(23): checking for input on id=2
ber_get_next
ldap_read: want=8, got=8
0000: 30 53 02 01 01 63 4e 04 0S...cN.
ldap_read: want=77, got=77
0000: 00 0a 01 00 0a 01 00 02 01 00 02 01 00 01 01 00 ................
0010: a1 20 87 0b 6f 62 6a 65 63 74 43 6c 61 73 73 87 . ..objectClass.
0020: 11 64 69 73 74 69 6e 67 75 69 73 68 65 64 4e 61 .distinguishedNa
0030: 6d 65 30 19 04 17 73 75 70 70 6f 72 74 65 64 53 me0...supportedS
0040: 41 53 4c 4d 65 63 68 61 6e 69 73 6d 73 ASLMechanisms
ber_get_next: tag 0x30 len 83 contents:
ber_get_next
What am I donig wrong?
Cheers mmaciej
--
View this message in context: http://www.nabble.com/Samba4-%2B-OpenLDAP---problem-tp24644818p24644818.html
Sent from the Samba - samba-technical mailing list archive at Nabble.com.
More information about the samba-technical
mailing list