[Samba] Samba-LDAP with custom object class

Gerald Carter jerry at samba.org
Mon Sep 23 13:23:01 GMT 2002 

Given the context of you questions, they appear to more related
to PADL's pam_ldap module.  I suggest you repost there.

> First, excuse me if this messages is not in the right mailing list: I
> have not found a samba-ldap forum. try to use Samba-LDAP with my own
> object class but I cannot manage using an other attribute than 'uid' for
> the user ID.

this is hardcoded in the samba.schema file.

>                The file /etc/ldap.conf
> ------------------- ldap.conf -----------------------
>           pam_login_attribute uid
>           pam_filter objectclass=myPerson       
> ------------ end - ldap.conf ----------------------

This has nothing to do with Samba, your are now specifying that
the pam_ldap module use the uid attribute for logins.

> The file /etc/nsswitch.conf  ( on the directory server and on the samba server):
> ----------- nsswitch.conf --------------------
> nss_base_passwd	id=1.3.3,id=1.3,id=1
> nss_base_shadow	id=1.3.3,id=1.3,id=1
> 
> nss_map_attribute    uid     login
> nss_map_attribute    userid  login
> ---------- end - nsswitch.conf ------------
>               
> 
>            and my person:
> ----------- myperson.ldif ------------------
> dn: uid=FR750034,id=1.3.3,id=1.3,id=1
> loginShell: /bin/bash
> objectClass: myPerson
> objectClass: top
> objectClass: person
> objectClass: organizationalPerson
> objectClass: inetOrgPerson
> objectClass: sambaAccount
> objectClass: account
> objectClass: posixAccount
> objectClass: top
> objectClass: qmailUser
> sn: Smith
> gidNumber: 100
> gecos: Teddy Smith
> uidNumber: 502
> login: ted
> mail: teddy.smith at zoo.com
> qmailUID: 502
> qmailGID: 100
> givenName: teddy
> homeDirectory: /homes/teddy
> uid: FR750034
> logonTime: 0
> cn:: TWF0dGhpZXUgVHVycGF1bHQg
> rid: 103
> primaryGroupID: 103
> -------- end - myperson.ldif -------------

> When I try to open a home Directory with a Windows client, a request of
> authentication is displayed but it comes back after each test. The log
> file of the directory:

Do you have encrypted passwords enabled in smb.conf?

> Sep 23 12:08:45 therese slapd[1745]: conn=164 op=55 SRCH
> base="id=1.3.3,id=1.3,id=1" scope=2
> filter="(&(objectClass=posixAccount)(login=ted))"
> 
> The directory /homes/ted exists and is owned by mat.users.

In your LDIF except you have "homeDirectory: /homes/teddy" but just 
referred to /home/ted ????




cheers, jerry

More information about the samba mailing list