[Samba] LDAP SAM - Slow Bind
Adam Herbert
aherbert at cci-us.com
Mon Apr 1 15:04:28 GMT 2002
Hey guys,
I'm trying out the new pdb_ldapsam code and I'm having an issue where it
takes sevral seconds to bind to the LDAP server. I've checked reverse
DNS and that's ok. I have other apps on this box that use LDAP and do
not have a pause during the bind.
Any help would be apreciated.
Here is my smb.conf:
[global]
workgroup = HOME
netbios name = CALEB
interfaces = 192.168.102.1
bind interfaces only = Yes
update encrypted = Yes
obey pam restrictions = Yes
passdb backend = ldapsam:ldap://caleb.ah.cci-us.com
pam password change = Yes
domain logons = Yes
os level = 63
wins support = Yes
ldap suffix = ou=accounts,dc=ah,dc=cci-us,dc=com
ldap machine suffix =
ou=hosts,dc=ah,dc=cci-us,dc=com,ou=accounts,dc=ah,dc=cci-us,dc=com
ldap user suffix = ou=accounts,dc=ah,dc=cci-us,dc=com
ldap admin dn = cn=manager,dc=ah,dc=cci-us,dc=com
ldap ssl = no
utmp = Yes
host msdfs = Yes
[home]
comment = User Home Dirs
path = /tmp
read only = No
browseable = No
[Data]
comment = Data Share
path = /home/data
read only = No
Here is the debug of smbpasswd:
Initialising global parameters
params.c:pm_process() - Processing configuration file
"/usr/local/samba/lib/smb.conf"
Processing section "[global]"
doing parameter workgroup = HOME
doing parameter netbios name = CALEB
handle_netbios_name: set global_myname to: CALEB
doing parameter interfaces = 192.168.102.1
doing parameter bind interfaces only = Yes
doing parameter update encrypted = Yes
doing parameter obey pam restrictions = Yes
doing parameter passdb backend = ldapsam:ldap://caleb.ah.cci-us.com
doing parameter pam password change = Yes
doing parameter domain logons = Yes
doing parameter os level = 63
doing parameter wins support = Yes
doing parameter ldap suffix = ou=accounts,dc=ah,dc=cci-us,dc=com
doing parameter ldap machine suffix =
ou=hosts,dc=ah,dc=cci-us,dc=com,ou=accounts,dc=ah,dc=cci-us,dc=com
doing parameter ldap user suffix = ou=accounts,dc=ah,dc=cci-us,dc=com
doing parameter ldap admin dn = cn=manager,dc=ah,dc=cci-us,dc=com
doing parameter ldap ssl = no
doing parameter utmp = Yes
doing parameter host msdfs = Yes
pm_process() returned Yes
lp_servicenumber: couldn't find homes
New SMB password:
Retype new SMB password:
Attempting to find an passdb backend to match
ldapsam:ldap://caleb.ah.cci-us.com (ldapsam)
Found pdb backend ldapsam (at pos 4)
pdb backend ldapsam:ldap://caleb.ah.cci-us.com has a valid init
ldapsam_open_connection: ldap://caleb.ah.cci-us.com
ldap_open_connection: connection opened
ldap_connect_system: Binding to ldap server as
"cn=manager,dc=ah,dc=cci-us,dc=com"
--------------- 9 second pause --------------------------------
ldap_connect_system: succesful connection to the LDAP server
ldapsam_search_one_user: searching
for:[(&(uid=aherbert)(objectclass=sambaAccount))]
Entry found for user: aherbert
pdb_set_uid: setting uid 500, was -1
pdb_set_gid: setting gid 500, was -1
get_single_attribute: [homeDrive] = [<does not exist>]
homeDrive fell back to
pdb_set_dir_drive: setting dir drive , was NULL
pdb_set_homedir: setting home dir \\%N\, was
pdb_set_homedir: setting home dir sam flag!get_single_attribute:
[scriptPath] = [<does not exist>]
scriptPath fell back to
pdb_set_logon_script: setting logon script , was
pdb_set_profile_path: setting profile path \\%N\\profile, was
pdb_set_profile_path: setting profile path sam
flag!get_single_attribute: [description] = [<does not exist>]
get_single_attribute: [userWorkstations] = [<does not exist>]
pdb_set_rid: setting user rid 2000, was 0
pdb_set_group_rid: setting group rid 2001, was 0
pdb_set_username: setting username aherbert, was
pdb_set_domain: setting domain HOME, was
pdb_set_nt_username: setting nt username aherbert, was
pdb_set_full_name: setting full name Adam Herbert, was
pdb_set_workstations: setting workstations , was
account_policy_get: maximum password age:1814400
ldapsam_open_connection: ldap://caleb.ah.cci-us.com
ldap_open_connection: connection opened
ldap_connect_system: Binding to ldap server as
"cn=manager,dc=ah,dc=cci-us,dc=com"
-------------------------- Another 9 second pause
-------------------------------
ldap_connect_system: succesful connection to the LDAP server
ldapsam_search_one_user: searching
for:[(&(uid=aherbert)(objectclass=sambaAccount))]
Setting entry for user: aherbert
successfully modified uid = aherbert in the LDAP database
_/_/_/ _/_/_/ _/_/_/ Adam Herbert
_/ _/ _/ CCI, Inc
_/ _/ _/ v615.778.1116
_/_/_/ _/_/_/ _/_/_/ aherbert at cci-us.com
More information about the samba
mailing list