samba + ldap

Doug Douglass samba at denverdata.com
Wed Oct 31 09:27:17 GMT 2001


Eric, Pascal,

The first problem I see is in your setting of "ldap filter" in smb.conf. The
objectClass posixAccount is not sufficient for use with samba. You must add
the sambaAccount schema (included with source) to your LDAP server and
create sambaAccount entries in your directory (either new entries or add the
objectClass to existing entries). I believe there is are Perl scripts to
assist with this included with the source, look in the examples or contrib
directories (I can't remember which)

Remember you must also create LDAP entries for machine accounts. These
entries will also be of objectClass sambaAccount.

HTH,
Doug

> -----Original Message-----
> From: samba-admin at lists.samba.org [mailto:samba-admin at lists.samba.org]On
> Behalf Of eric german
> Sent: Wednesday, October 31, 2001 8:32 AM
> To: samba-technical at samba.org; samba at samba.org
> Subject: samba + ldap
>
>
> We've tried to use Samba 2.2.2 with LDAP and unfortunetly it doesn't
> work. At first we've configured Samba with LDAPSAM then we've
> compiled it. Everything seemed working, we've run the command smbclient
> -U% -L localhost and we've had this message :
>     - session setup failed: code 0
> consulting logs (log.smbd) it appears a fatal error below
>
> thanks a lot for helping
> best regard
>
> eric and pascal
> france
>
>
>
> my smb.conf
>
>
> # Global parameters
> [global]
> 	workgroup = CPTEST
> 	netbios name = CPPLACEBO
> 	log level = 10
> 	domain logons = Yes
> 	domain master = True
> 	wins support = Yes
> 	ldap server = 10.75.1.22
> 	ldap suffix = o=gouv,c=fr
> 	ldap filter =
> (&(uid=%U,ou=personnes,ou=dgcp,ou=mefi,o=gouv,c=fr)(objectclass=po
> sixaccount))
> 	ldap admin dn = uid=samba,o=gouv,c=fr
>
> [DGCP]
> 	comment = Partage DGCP
> 	path = /home/siauve
> 	guest ok = Yes
>
> [home]
> 	comment = Home directory
> 	path = /home/%U
> 	read only = No
> 	browseable = No
>
>
> my log.smb
>
>
>   switch message SMBsesssetupX (pid 9579)
> [2001/10/31 11:16:16, 3] smbd/sec_ctx.c:set_sec_ctx(320)
>   setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2001/10/31 11:16:16, 5] smbd/uid.c:unbecome_user(215)
>   unbecome_user now uid=(0,0) gid=(0,0)
> [2001/10/31 11:16:16, 3] smbd/reply.c:reply_sesssetup_and_X(855)
>   Domain=[]  NativeOS=[BERCY] NativeLanMan=[Windows 4.0]
> [2001/10/31 11:16:16, 3] smbd/reply.c:reply_sesssetup_and_X(866)
>   sesssetupX:name=[]
> [2001/10/31 11:16:16, 6] param/loadparm.c:lp_file_list_changed(2203)
>   lp_file_list_changed()
>   file /usr/local/samba/lib/smb.conf -> /usr/local/samba/lib/smb.conf
> last mod_time: Fri Oct 26 13:23:09 2001
>
> [2001/10/31 11:16:16, 0] lib/fault.c:fault_report(40)
>   ===============================================================
> [2001/10/31 11:16:16, 0] lib/fault.c:fault_report(41)
>   INTERNAL ERROR: Signal 11 in pid 9579 (2.2.2)
>   Please read the file BUGS.txt in the distribution
> [2001/10/31 11:16:16, 0] lib/fault.c:fault_report(43)
>   ===============================================================
> [2001/10/31 11:16:16, 0] lib/util.c:smb_panic(1055)
>   PANIC: internal error
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  http://lists.samba.org/mailman/listinfo/samba
>





More information about the samba mailing list