Adding machine to domain crashes LDAP (smbldap-useradd)
Chris Beach
chrisb at pintys.com
Tue Jan 11 09:11:14 MST 2011
I figured it out, the 'inetOrgPerson' was set to account on mine for
whatever reason, now it all works :)
my $add = $ldap->add ( "uid=$user,$config{computersdn}",
attr => [
'objectclass' => ['top','inetOrgPerson', 'posixAccount'],
'cn' => "$user",
'sn' => "$user",
'uid' => "$user",
'uidNumber' => "$uid",
'gidNumber' => "$gid",
'homeDirectory' => '/dev/null',
'loginShell' => '/bin/false',
'description' => 'Computer',
'gecos' => 'Computer',
]
);
On Tue, Jan 11, 2011 at 10:39 AM, Chris Beach <chrisb at pintys.com> wrote:
> Hmm, it still crashes with the command:
>
> */usr/sbin/smbldap-useradd -W "fs5c1l1$"*
> *failed to add entry: Unexpected EOF at /usr/sbin//smbldap_tools.pm line
> 616.
> failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-useradd
> line 386.*
>
> Line 616 of smbldap_tools.pm is blank, so I assume it's the code just
> before it:
>
> # bind to a directory with dn and password
> my $add = $ldap->add(
> "uid=$user,$config{computersdn}",
> attr => [
>
> #'objectclass' => ['top', 'person', 'organizationalPerson',
> 'inetOrgPerson', 'posixAccount'],
> 'objectclass' => [ 'top', 'account', 'posixAccount' ],
> 'cn' => "$user",
>
> #'sn' => "$user",
> 'uid' => "$user",
> 'uidNumber' => "$uid",
> 'gidNumber' => "$gid",
> 'homeDirectory' => '/dev/null',
> 'loginShell' => '/bin/false',
> 'description' => 'Computer',
> 'gecos' => 'Computer',
> ]
> );
>
> line 616 is here (blank).
>
> On Tue, Jan 11, 2011 at 10:21 AM, Michael Wood <esiotrot at gmail.com> wrote:
>
>> On 11 January 2011 16:57, Chris Beach <chrisb at pintys.com> wrote:
>> > I apologize if this shouldn't be posted on the samba mailing list, I
>> figured
>> > it's more appropriate here then LDAP, but maybe not.
>> >
>> > When I try and add a machine to my Domain (just upgraded the domain
>> > controller to samba 3.3.14, with LDAP 2.3.43 as back-end) it crashes
>> LDAP,
>>
>> I assume you mean OpenLDAP 2.3.43?
>>
>> > and brings down my domain :\
>> >
>> > The error I get is: smbd[11973]: _samr_create_user: Running the
>> command
>> > `/usr/sbin/smbldap-useradd -W "fs5c1l1$"' gave 3
>> >
>> > and then ldap crashes:
>>
>> What happens if you tun that command from the command line without
>> involving Samba at all?
>>
>> > smbd[11973]: nss_ldap: failed to bind to LDAP server ldap://127.0.0.1:
>> Can't
>> > contact LDAP server
>> >
>> > Can anyone suggest where I start looking, I haven't been able to find
>> what
>> > "gave 3" means, I've got a new user waiting for their laptop, and can't
>> get
>> > it on the domain.
>>
>> The "gave 3" thing is more probably the exit status of the
>> smbldap-useradd command. You'd have to check its documentation to see
>> what that means.
>>
>> Samba, smbldap-useradd, etc. should not be able to crash the LDAP
>> server. If it does, it is a bug in the LDAP server and you should
>> probably look in its log files and contact the OpenLDAP mailing
>> list(s) about it.
>>
>> --
>> Michael Wood <esiotrot at gmail.com>
>>
>
>
>
> --
> Chris Beach
> IT Analyst
>
>
--
Chris Beach
IT Analyst
More information about the samba-technical
mailing list