[Samba] samba3/ldap/net groupmap fails
John Campbell
jcampbell at max-t.com
Thu Dec 11 18:58:53 GMT 2003
hi,
we recently upgraded from samba 2.2.8a w/ldap to samba3 w/ldap and
having troubles with domain group mappings.
first symptom is that net groupmap list returns nothing.
[root at lola root]# net groupmap list
[root at lola root]#
if we try to add a groupmapping, the command fails:
net groupmap add sid=<sid-gid> ntgroup="Domain Admins" unixgroup=domadm
type=domain --debuglevel=4
gives the following output (please excuse voluminous output):
-----------
[2003/12/11 13:47:26, 4] param/loadparm.c:lp_load(3946)
pm_process() returned Yes
[2003/12/11 13:47:26, 2] lib/interface.c:add_interface(79)
added interface ip=192.168.1.1 bcast=192.168.1.255 nmask=255.255.255.0
[2003/12/11 13:47:26, 2] lib/interface.c:add_interface(79)
added interface ip=192.168.4.1 bcast=192.168.4.255 nmask=255.255.255.0
[2003/12/11 13:47:26, 2] lib/interface.c:add_interface(79)
added interface ip=192.168.2.1 bcast=192.168.2.255 nmask=255.255.255.0
[2003/12/11 13:47:26, 2] lib/interface.c:add_interface(79)
added interface ip=192.168.5.1 bcast=192.168.5.255 nmask=255.255.255.0
[2003/12/11 13:47:26, 2] lib/smbldap.c:smbldap_search_domain_info(1296)
Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=MAXT))]
[2003/12/11 13:47:26, 2] lib/smbldap.c:smbldap_search_suffix(1067)
smbldap_search_suffix: searching
for:[(&(objectClass=sambaDomain)(sambaDomainName=MAXT))]
[2003/12/11 13:47:26, 2] lib/smbldap.c:smbldap_open_connection(624)
smbldap_open_connection: connection opened
[2003/12/11 13:47:26, 3] lib/smbldap.c:smbldap_connect_system(786)
ldap_connect_system: succesful connection to the LDAP server
[2003/12/11 13:47:26, 4] lib/smbldap.c:smbldap_open(837)
The LDAP server is succesful connected
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=4294967295))]
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=600))]
[2003/12/11 13:47:26, 4] passdb/pdb_ldap.c:ldapsam_getgroup(1769)
ldapsam_getgroup: Did not find group
[2003/12/11 13:47:26, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(1624)
ldapsam_search_one_group: searching
for:[(&(objectClass=posixGroup)(gidNumber=600))]
adding entry for group Domain Admins failed!
[2003/12/11 13:47:26, 2] utils/net.c:main(758)
return code = -1
-------------
any ideas as to what could be causing this? thanks!
--john campbell
More information about the samba
mailing list