[Samba] samba3/ldap/net groupmap fails

Csillag Tamás cstamas at digitus.itk.ppke.hu
Fri Dec 12 07:32:58 GMT 2003


Hi

On Thu, Dec 11, 2003 at 06:17:30PM -0500, John Campbell wrote:
> On Thu, 2003-12-11 at 16:18, Fabien Chevalier wrote:
> > > > I suppose it must work the same way ...
> > > >
> > > > Would you mind trying to add
> > > > passwd backend = tdbsam ldapsam:ldap://server
> > > > and try a net groupmap list?
> > >
> > > i just tried it, and now get the list of domain groups i would
> > > expect. now the trouble is the profiles don't load properly on
> > > the clients. they got logged in with a temp profile. the samba
> > > logs for my test system show:
> > >
> > .........
> 
> are you suggesting this may be a problem with samba3? because i've been
> trying to resolve this issue for several days now, thinking there must
> be a problem with our ldap setup. somehow, it seems strange that this
> could be a problem with samba. we thought that perhaps samba didn't like
> something in our ldap. surely others are able to get the ntgroups to
> show correctly with ldapsam as the first  backend....otherwise, no one
> would have a working samba3/ldap setup.
We use samba3+openldap 2.1 correctly.
net groupmapping also works correctly.

Are your samba.schema is up to date?
What is the ldap version?

Did you tried omitting the SID value?
> 
> putting tdpsam as the first backend allows for ntgroups, but since we
> don't use it, none of our profiles load if we do this. users get stuck
> with temp profiles.
> 
> this is driving me bonkers:-)
> 
> --john  
> 
> -- 
> To unsubscribe from this list go to the following URL and read the
> instructions:  http://lists.samba.org/mailman/listinfo/samba


More information about the samba mailing list