[Samba] samba pdc 3.0a adding w2k machines to domain

Samba Guy samba at technocraft.com
Fri Nov 22 16:12:01 GMT 2002 

Im trying to add a w2k machine to a samba pdc.  This is the output of my
logs:

[2002/11/22 11:01:17, 2] passdb/pdb_ldap.c:ldapsam_open_connection(267)
  ldap_open_connection: connection opened
[2002/11/22 11:01:17, 2] passdb/pdb_ldap.c:ldapsam_connect_system(419)
  ldap_connect_system: succesful connection to the LDAP server
[2002/11/22 11:01:17, 2] passdb/pdb_ldap.c:ldapsam_search_one_user(431)
  ldapsam_search_one_user: searching
for:[(&(uid=support$)(objectclass=sambaAccount))]
[2002/11/22 11:01:18, 2] passdb/pdb_ldap.c:ldapsam_open_connection(267)
  ldap_open_connection: connection opened
[2002/11/22 11:01:18, 2] passdb/pdb_ldap.c:ldapsam_connect_system(419)
  ldap_connect_system: succesful connection to the LDAP server
[2002/11/22 11:01:18, 2] passdb/pdb_ldap.c:ldapsam_search_one_user(431)
  ldapsam_search_one_user: searching
for:[(&(uid=support$)(objectclass=sambaAccount))]
[2002/11/22 11:01:18, 0] passdb/pdb_ldap.c:ldapsam_add_sam_account(1619)
  User already in the base, with samba properties
[2002/11/22 11:01:18, 0]
rpc_server/srv_samr_nt.c:_api_samr_create_user(2301)
  could not add user/computer support$ to passdb.  Check permissions?
------

My add machine script adds all the info to the ldap directory. So i'm
assuming it tries to add it again and fails because its already there.
Should I leave some info out of the add machine script? If so what?

I've tried it with and without the ldap machine suffix. I'm also using
pam_ldap.

Here is a snippet of my conf file:

[global]
        workgroup = XXX
        netbios name = XXX
        null passwords = Yes
        passdb backend = ldapsam:ldap://localhost
        log file = /usr/local/samba/var/logs.%m
        log level = 2
        add user script = /usr/local/sbin/smbldap-useradd.pl -a -m -d
/dev/null -g 100 -
s /bin/false %u
        add machine script = /usr/local/sbin/smbldap-useradd.pl -w -d
/dev/null -g 100 -
s /bin/false %u
        add user to group script = /usr/local/sbin/smbldap-groupmod.pl -m
%u %g
        delete user from group script =
/usr/local/sbin/smbldap-groupmod.pl -x %u %g
        #logon path = \\%N\%U\profile
        #logon home = \\%N\%U
        logon path =
        logon home =
        logon drive =
        domain logons = Yes
        os level = 255
        preferred master = True
        domain master = True
        wins support = True
        ldap suffix = "dc=xxx,dc=com"
        ldap machine suffix = "ou=Computers,dc=xxx,dc=com"
	ldap user suffix = "ou=Users,dc=xxx,dc=com"
        ldap admin dn = "cn=Manager, dc=xxx,dc=com"
        ldap ssl = no

More information about the samba mailing list