NT4-style domain with ldapsam:editposix [PATCH]

Rowland Penny repenny241155 at gmail.com
Sat Feb 27 15:19:31 UTC 2016


On 26/02/16 17:03, Rowland Penny wrote:
> Hi, I am trying to set up an NT4-style PDC without using 
> smbldap-tools, I am basically following this webpage:
> http://wiki.samba.gr.jp/mediawiki/index.php?title=How_to_build_Samba_PDC_%28squeeze%29. 
>
>
> I am using Devuan jessie and self compiled Samba 4.3.5, all the 
> recommended packages from the Samba wiki page are installed and only 
> option passed to './configure is '--without-systemd'
>
> I have got smb.conf setup and running (copy attached) and the openldap 
> database has been populated, the only problem is that I cannot add any 
> users with smbpasswd. Running 'smbpasswd -a <username>' gets the user 
> added to ldap, but then smbpasswd segfaults. I have recompiled with 
> '--enable-debug' and run smbpasswd with gdb and got the output shown 
> in the attached file 'gdb_result'.
>
> I have also attached an ldap dump and a level 10 log-wb-EXAMPLE from 
> when I try to add the user.
>
> Is this due to something I have done (or not done) or is it a bug ?
>
> If it is a bug, I will open a bug report.
>
> Rowland
>

OK, I have now got 'smbpasswd -a' working, turned out, you shouldn't 
believe everything you read, in this case 'man idmap_ldap' :-)

The command to store the idmap admin password shown in idmap_ldap is 
wrong, it should be 'net idmap set secret DOMAIN password', the attached 
patch fixes this.

Rowland
-------------- next part --------------
A non-text attachment was scrubbed...
Name: idmap_ldap-manpage-update-command-to-store-admin-use.patch
Type: text/x-diff
Size: 2154 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20160227/cc0cea08/idmap_ldap-manpage-update-command-to-store-admin-use.diff>


More information about the samba-technical mailing list