[Samba] Net rpc vampire + LDAP broken?

Tue Aug 5 11:45:26 GMT 2003

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi all,

I tried to migrate a NT4 domain to Samba. There was no problem joining
the domain and the SID was imported. But when I execute "net rpc vampire
- -S MYNT4PDC -U Administrator%passwd" I get the following result:

Fetching DOMAIN database
SAM_DELTA_DOMAIN_INFO not handled
Creating unix group: 'DomCreating unix group: 'DomCreating unix group:
'DomCreating unix group: 'FML-BWL-Benutzer'
Creating unix group: 'FML-BWL-Sekretariat'
[...]
Creating account: Administrator
Creating account: Gast
[...]
Creating account: PC02$
Creating account: PC03$
[...]
[2003/08/05 11:38:20, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(583)
~  Could not find global group 512
[2003/08/05 11:38:20, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(583)
~  Could not find global group 513
[2003/08/05 11:38:20, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(583)
~  Could not find global group 514
[2003/08/05 11:38:20, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(583)
~  Could not find global group 1004
[2003/08/05 11:38:20, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(583)
~  Could not find global group 1005
[2003/08/05 11:38:20, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(583)
~  Could not find global group 1006
[2003/08/05 11:38:20, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(583)
~  Could not find global group 1007
[2003/08/05 11:38:20, 0] utils/net_rpc_samsync.c:fetch_group_mem_info(583)
~  Could not find global group 1008
Fetching BUILTIN database
[2003/08/05 11:38:20, 0] rpc_client/cli_pipe.c:rpc_api_pipe_req(1026)
~  SCHANNEL ERROR: seq_num must be even in client (seq_num=7)
SAM_DELTA_DOMAIN_INFO not handled
Creating unix group: 'Administratoren'
Creating unix group: 'Benutzer'
Creating unix group: 'Druck-Operatoren'
Creating unix group: 'GCreating unix group: 'Konten-Operatoren'
Creating unix group: 'Replikations-Operator'
Creating unix group: 'Server-Operatoren'
Creating unix group: 'Sicherungs-Operatoren'

Samba seems to find all users and groups but it does not add them to
LDAP. In my LDAP log are a bunch of searches for the users and groups
but not a single add operation.
Samba has the correct admin password, the bind is successful.
"pdbedit -L" shows no imported accounts.

Thanks,
Roland

This is my smb.conf:

[global]
~   workgroup = FMLBWL-GRUPPE
~   server string = %h server (Samba %v)
~   dns proxy = no
~   domain logons = yes
~   domain master = no
~   ldap admin dn = cn=admin,o=bwl
~   ldap machine suffix = ou=machines,o=bwl
~   ldap user suffix = ou=People,o=bwl
~   ldap passwd sync = yes
~   ldap suffix = o=bwl
~   log file = /var/log/samba/log.%m
~   max log size = 1000
~   syslog = 0
~   panic action = /usr/share/samba/panic-action %d
~   encrypt passwords = true
~   passdb backend = ldapsam guest
~   obey pam restrictions = yes
~   invalid users = root
~   passwd program = /usr/bin/passwd %u
~   passwd chat = *Enter\snew\sUNIX\spassword:* %n\n
*Retype\snew\sUNIX\spassword:* %n\n .
~   load printers = yes
~   printing = cups
~   printcap name = cups

~   socket options = TCP_NODELAY

[homes]
~   comment = Home Directories
~   browseable = no
~   writable = no
~   create mask = 0700
~   directory mask = 0700

[printers]
~   comment = All Printers
~   browseable = no
~   path = /tmp
~   printable = yes
~   public = no
~   writable = no
~   create mode = 0700

[print$]
~   comment = Printer Drivers
~   path = /var/lib/samba/printers
~   browseable = yes
~   read only = yes
~   guest ok = no
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Using GnuPG with Debian - http://enigmail.mozdev.org

iD8DBQE/L5jWq/ywNCsrGZ4RAnygAJ0dPFw3ZkUol5RRJgMJBT05RgidOQCdEC6c
pKEN7nvxYdmWRWoY+MxdGVc=
=f+/a
-----END PGP SIGNATURE-----