[Samba] Samba 3.0b3: Cannot add machine to LDAP database
Jim C
jcllings at tsunamicomm.net
Wed Aug 13 22:56:15 GMT 2003
To my knowledge, the IDEALX perl scripts found in
"/usr/share/samba/scripts" have not been updated for the new schema.
The script setting used for adding a machine is typically set to use one
of these. Could this be the problem?
Jim C.
Gonçal Badenes wrote:
>I am unable to add a machine to samba-3.0.beta3 running as a PDC. If I try
>to add the account manually I get the following errors:
>
>[root at ICFO-pc038 root]# pdbedit -a -m icfo-pc018
>failed to add user dn= uid=icfo-pc018$,ou=Systems,dc=icfo,dc=es with: Object
>class violation
>object class 'sambaSamAccount' requires attribute 'sambaSID' failed to
>modify/add user with uid = icfo-pc018$ (dn =
>uid=icfo-pc018$,ou=Systems,dc=icfo,dc=es)
>Unable to add machine! (does it already exist?)
>
>[root at ICFO-pc038 root]# smbpasswd -a -m icfo-pc018
>Failed initialise SAM_ACCOUNT for user icfo-pc018$.
>Failed to modify password entry for user icfo-pc018$
>
>And if I try to add the account automatically from the windows box, I get a
>"The user name could not be found" error.
>
>Here is an excerpt from the samba.cnf configuration file:
>
>[global]
>security = user
>passdb backend = ldapsam:ldap://localhost,guest
>ldap admin dn = "cn=Admin,dc=icfo,dc=es"
>ldap ssl = start tls
>ldap delete dn = no
>ldap user suffix = "ou=People"
>ldap machine suffix = "ou=Systems,dc=icfo,dc=es"
>ldap trust ids = yes
>ldap suffix = "dc=icfo,dc=es"
>ldap passwd sync = yes
>local master = yes
>os level = 65
>domain master = yes
>preferred master = yes
>domain logons = yes
>wins support = yes
>
>I have not put an "add machine script" in the configuration file because,
>according to the smb.conf man file " This option is only required when using
>sam back-ends tied to the Unix uid method of RID calculation such as
>smbpasswd."
>
>Unfortunately, I have been reading the HOWTO-collection, the man pages and
>searching with Google, but I don't know how to proceed from here :-(
>
>What am I doing wrong? Can anyone help?
>
>Thanks in advance!
>
> Goncal
> goncal (dot) badenes (at) upc.es
>
>
>
>
More information about the samba
mailing list