smbpasswd and ldap

Andrew Bartlett abartlet at pcug.org.au
Sat Dec 8 09:58:04 GMT 2001 

Samba 3.0 alpha doesn't support LDAP SAM backends (just plain broken,
won't compile).

Use 2.2.2 or supply the patch to bring 2.2.2's support back into HEAD.

Andrew Bartlett

Steve Lee wrote:
> 
> I'm about to start setting samba up on our LDAP servers too.
> can you use the default RedHat OpenLDAP ? or must
> i recompile ?  Also, can i use the samba source 2.2.2 or
> the 3.0 alpha.
> 
> Thank You
> 
> sorry for off topic questions.
> 
> On 3 Dec 2001, Michael Torrie wrote:
> 
> > I've compiled samba with the --with-ldapsam option and have setup up an
> > ldap server.  When I try to change the password of a user, say
> > Administrator, get the following stuff with full debugging turned on (-D
> > 255):
> >
> > New SMB password:
> > Retype new SMB password:
> > ldap_open_connection: connection opened
> > ldap_connect_system: succesful connection to the LDAP server
> > ldap_search_one_user: searching
> > for:[(&(uid=Administrator)(objectclass=sambaAccount))]
> > get_single_attribute: [uid] = [Administrator]
> > Entry found for user: Administrator
> > get_single_attribute: [sambaDomain] = [NULL]
> > get_single_attribute: [pwdLastSet] = [3B9E4575]
> > get_single_attribute: [logonTime] = [00000000]
> > get_single_attribute: [logoffTime] = [00000000]
> > get_single_attribute: [kickoffTime] = [00000000]
> > get_single_attribute: [pwdCanChange] = [3982F885]
> > get_single_attribute: [pwdMustChange] = [FFFFFFFF]
> > get_single_attribute: [gecos] = [Root user]
> > get_single_attribute: [homeDrive] = [K:]
> > homeDrive is set to K:
> > get_single_attribute: [smbHome] = [NULL]
> > smbHome is set to
> > smbHome fell back to \\samba\%u
> > get_single_attribute: [scriptPath] = [testmess.bat]
> > scriptPath is set to testmess.bat
> > get_single_attribute: [profilePath] = [\\samba\profiles\Administrator]
> > profilePath is set to \\samba\profiles\Administrator
> > get_single_attribute: [description] = [NULL]
> > get_single_attribute: [userWorkstations] = [NULL]
> > get_single_attribute: [rid] = [1f4]
> > get_single_attribute: [primaryGroupID] = [200]
> > ldap_open_connection: connection opened
> > ldap_connect_system: succesful connection to the LDAP server
> > ldap_search_one_user: searching
> > for:[(&(uid=)(objectclass=sambaAccount))]
> > No user to modify!
> > Failed to modify entry for user Administrator.
> > Failed to modify password entry for user Administrator
> >
> > Is this a bug in the LDAP part of samba?  How come the search string is
> > correct the first time:
> > (&(uid=Administrator)(objectclass=sambaAccount))
> > but not the second time:
> > (&(uid=)(objectclass=sambaAccount))
> >
> > Any ideas?
> >
> > thanks,
> > Michael
> >
> >
> >
> 
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  http://lists.samba.org/mailman/listinfo/samba

-- 
Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net

More information about the samba mailing list