Samba4 OpenLDAP backend

nitin bhadauria bhadauria.nitin at gmail.com
Mon Apr 26 01:04:09 MDT 2010 

As you said now i am using Openldap from CVS and i end up with error..

/usr/local/bin/python setup/provision --realm=SAMBA.DOMAIN.COM --domain=
domain.com --adminpass=passw0rd --ldap-backend-type=openldap
--slapd-path="/usr/local/libexec/slapd" --server-role='domain controller'
config file testing succeeded
Failed to bind - LDAP client internal error:
NT_STATUS_UNEXPECTED_NETWORK_ERROR
Failed to connect to
'ldapi://%2Fusr%2Flocal%2Fsamba%2Fprivate%2Fldap%2Fldapi'
Setting up share.ldb
Setting up secrets.ldb
Setting up the registry
Setting up the privileges database
Setting up idmap db
Setting up SAM db
Setting up sam.ldb partitions and settings
Setting up sam.ldb rootDSE
Pre-loading the Samba 4 and AD schema
Adding DomainDN: DC=samba,DC=domain,DC=com
pdc_fsmo_init: no domain object present: (skip loading of domain details)

Traceback (most recent call last):
  File "setup/provision", line 249, in <module>
    nosync=opts.nosync,ldap_dryrun_mode=opts.ldap_dryrun_mode,useeadb=eadb)
  File "bin/python/samba/provision.py", line 1327, in provision
    dom_for_fun_level=dom_for_fun_level)
  File "bin/python/samba/provision.py", line 919, in setup_samdb
    "DESCRIPTOR": descr
  File "bin/python/samba/provision.py", line 242, in setup_add_ldif
    ldb.add_ldif(data, controls)
  File "bin/python/samba/__init__.py", line 251, in add_ldif
    self.add(msg,controls)
_ldb.LdbError: (8, 'LDAP error 8 LDAP_STRONG_AUTH_REQUIRED -  <modifications
require authentication> <>')
A transaction is still active in ldb context [0xa721748] on
/usr/local/samba/private/secrets.ldb


Nitin B.

On Mon, Apr 26, 2010 at 9:47 AM, Andrew Bartlett <abartlet at samba.org> wrote:

> On Mon, 2010-04-26 at 09:21 +0530, nitin bhadauria wrote:
> > Hello Jelmer,
> >
> > It worked when i build python with shared library .
> > Thanks for that.
> >
> > But now i stuck with setup provision . when i try to run the command..
> >
> > ./setup/provision --realm=samba.domain.com
> > --domain=domain.com--adminpass=passw0rd --ldap-backend-type=openldap
> > --ldap-backend-extra-port=9389 --slapd-path="/usr/local/libexec/slapd"
> > --server-role='domain controller'
> >
> > I got the following error..
> >
> > lt_dlopenext failed: (rdnval) rdnval.so: cannot open shared object file:
> No
> > such file or directory
> > slaptest: bad configuration file!
> >
> > I am using openldap 2.4.21 and i have and i have used following
> > configuretion..
>
> As per:  http://wiki.samba.org/index.php/Samba4/LDAP_Backend/OpenLDAP
>
> You must install OpenLDAP from CVS to obtain the rdnval overlay.
>
> Do you really want and need the OpenLDAP backend?  The normal LDB
> backend supports a wider range of features and is the one under day to
> day development.  We developed the OpenLDAP backend before we got
> replication with DRS going, and while it will remain, it cannot
> interoperate with any other Windows DC in the forest.
>
> Andrew Bartlett
>
> --
> Andrew Bartlett                                http://samba.org/~abartlet/<http://samba.org/%7Eabartlet/>
> Authentication Developer, Samba Team           http://samba.org
> Samba Developer, Cisco Inc.
>
>

More information about the samba-technical mailing list