[Samba] samba-2.2.3a and openldap

jan jan at seismo.ifg.ethz.ch
Wed Feb 13 23:58:03 GMT 2002


dear list,

I have some problems with samba-2.2.3a and openldap-support.


Password changing with smbpasswd -a <username> is working properly.
(Username is an existant user who can either be stored in a regularly
/etc/passwd file or in another nsswitch-compatible service like ldap.
In this case the username is an ldap user.)
Password is changed automatically in the directory server. Pretty cool
feature!!

Adding a machineaccount using smbpasswd -m -a machinename seems also to
be successful.
This time the machinename is stored in /etc/passwd (that has no special
intention).
When typing in the above command smbpasswd adds the entry automtically
in the ldap directory.
I can see the change with ldapsearch or with
ldap://localhost/o=testldap,c=ch

smbpasswd -w specifies the password to be used with ldap admin dn (man
smbpasswd)

I am using that command before changing any other user passwords...

The only problem actually is that I can't get into the domain (meanwhile
called HOPELESS) with my wint wks service pack 5 machine.

Original message on wks :

Unable to connect to the domain controller for this domain

nbtstat -a <netbiosname> on the wks shows <1C> so I suppose that pdc
mode on the samba machine is enabled ...



log.smbd looks like this (debug level 5)


  Domain=[HOPELESS]  NativeOS=[Windows NT 1381] NativeLanMan=[]
[2002/02/14 08:32:28, 3] smbd/reply.c:reply_sesssetup_and_X(858)
   sesssetupX:name=[TEST$]
[2002/02/14 08:32:28, 2] passdb/pdb_ldap.c:ldap_open_connection(142)
   ldap_open_connection: connection opened
[2002/02/14 08:32:28, 2] passdb/pdb_ldap.c:ldap_connect_system(176)
   ldap_connect_system: succesful connection to the LDAP server
[2002/02/14 08:32:28, 2] passdb/pdb_ldap.c:ldap_search_one_user(188)
   ldap_search_one_user: searching 
for:[(&(uid=TEST$)(objectclass=sambaAccount))]
[2002/02/14 08:32:28, 2] passdb/pdb_ldap.c:get_single_attribute(286)
   get_single_attribute: [uid] = [test$]
[2002/02/14 08:32:28, 2] passdb/pdb_ldap.c:init_sam_from_ldap(421)
   Entry found for user: test$
	
		
  smb_password_ok: Checking NT MD4 password
[2002/02/14 08:32:28, 4] smbd/password.c:smb_password_ok(493)
   smb_password_ok: NT MD4 password check succeeded
[2002/02/14 08:32:28, 3] smbd/error.c:error_packet(103)
   error packet at smbd/reply.c(523) cmd=115 (SMBsesssetupX) 
NT_STATUS_LOGON_FAILURE


I think that the NT MD4 password is the one of the wks machine called 
test$.Seems to be invalid ... but why smbpasswd -a -m test is not 
complaining about anything ?



For now I don't know what to do ...



has anyone encountered a similar problem ?



thanks


jan






More information about the samba mailing list