[Samba] Samba-3.0beta2 PDC with LDAP backend

Chee Wai Yeung cheewai_yeung2003 at yahoo.com.hk
Mon Jul 7 04:02:40 GMT 2003


Just tried with Samba3.0beta2 as PDC with LDAP
backend. Machine still cannot automatically join
domain. Workstation entry added to LDAP via add
machine script but got access denied during the join.
A join immediately following the first join succeeded.

Here is the trace in the smbd log.

[2003/07/07 11:43:06, 5]
auth/auth_util.c:debug_unix_user_token(494)
  UNIX token of user 0
  Primary group is 0 and contains 0 supplementary
groups
[2003/07/07 11:43:06, 2]
lib/smbldap.c:smbldap_search_suffix(1014)
  smbldap_search_suffix: searching
for:[(&(uid=vaio$)(objectclass=sambaSamAccount))]
[2003/07/07 11:43:06, 5]
lib/smbldap.c:smbldap_open(778)
  smbldap_open: already connected to the LDAP server
[2003/07/07 11:43:06, 4]
passdb/pdb_ldap.c:ldapsam_getsampwnam(1616)
  Unable to locate user [vaio$] count=0
[2003/07/07 11:43:06, 3]
smbd/sec_ctx.c:pop_sec_ctx(386)
  pop_sec_ctx (0, 2147483404) - sec_ctx_stack_ndx = 0
[2003/07/07 11:43:06, 10]
rpc_server/srv_samr_nt.c:_api_samr_create_user(2264)
  checking account vaio$ at pos 4 for $ termination
[2003/07/07 11:43:06, 5] lib/username.c:Get_Pwnam(288)
  Finding user vaio$
[2003/07/07 11:43:06, 5]
lib/username.c:Get_Pwnam_internals(223)
  Trying _Get_Pwnam(), username as lowercase is vaio$
[2003/07/07 11:43:06, 5]
lib/username.c:Get_Pwnam_internals(239)
  Trying _Get_Pwnam(), username as uppercase is VAIO$
[2003/07/07 11:43:06, 5]
lib/username.c:Get_Pwnam_internals(247)
  Checking combinations of 0 uppercase letters in
vaio$
[2003/07/07 11:43:06, 5]
lib/username.c:Get_Pwnam_internals(251)
  Get_Pwnam_internals didn't find user [vaio$]!
[2003/07/07 11:43:09, 3]
rpc_server/srv_samr_nt.c:_api_samr_create_user(2299)
  _api_samr_create_user: Running the command
`/home/samba-3.0.0beta2/scripts/add-machine vaio$'
gave 0
[2003/07/07 11:43:09, 5] lib/username.c:Get_Pwnam(288)
  Finding user vaio$
[2003/07/07 11:43:09, 5]
lib/username.c:Get_Pwnam_internals(223)
  Trying _Get_Pwnam(), username as lowercase is vaio$
[2003/07/07 11:43:09, 5]
lib/username.c:Get_Pwnam_internals(251)
  Get_Pwnam_internals did find user [vaio$]!
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_username(577)
  pdb_set_username: setting username vaio$, was
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_init_flags(477)
  element 11 -> now SET
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_fullname(658)
  pdb_set_full_name: setting full name vaio$, was
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_init_flags(477)
  element 12 -> now SET
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_unix_homedir(793)
  pdb_set_unix_homedir: setting home dir /dev/null,
was NULL
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_init_flags(477)
  element 21 -> now SET
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_domain(604)
  pdb_set_domain: setting domain HKLAG, was
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_user_sid(504)
  pdb_set_user_sid: setting user sid
S-1-5-21-3643862520-3352514479-2529407210-21002
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_init_flags(477)
  element 17 -> now SET
[2003/07/07 11:43:09, 10]
passdb/pdb_compat.c:pdb_set_user_sid_from_rid(73)
  pdb_set_user_sid_from_rid:
        setting user sid
S-1-5-21-3643862520-3352514479-2529407210-21002 from
rid 21002
[2003/07/07 11:43:09, 2]
passdb/pdb_ldap.c:ldapsam_search_one_group(2118)
  ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=553))]
[2003/07/07 11:43:09, 5]
lib/smbldap.c:smbldap_open(778)
  smbldap_open: already connected to the LDAP server
[2003/07/07 11:43:09, 4]
passdb/pdb_ldap.c:ldapsam_getgroup(2269)
  Did not find group for filter
(&(objectClass=sambaGroupMapping)(gidNumber=553))
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_group_sid(540)
  pdb_set_group_sid: setting group sid
S-1-5-21-3643862520-3352514479-2529407210-2107
[2003/07/07 11:43:09, 10]
passdb/pdb_get_set.c:pdb_set_init_flags(477)
  element 18 -> now SET
[2003/07/07 11:43:09, 10]
passdb/pdb_compat.c:pdb_set_group_sid_from_rid(100)
  pdb_set_group_sid_from_rid:
        setting group sid
S-1-5-21-3643862520-3352514479-2529407210-2107 from
rid 2107
[2003/07/07 11:43:09, 2]
lib/smbldap.c:smbldap_search_suffix(1014)
  smbldap_search_suffix: searching
for:[(&(uid=vaio$)(objectclass=sambaSamAccount))]
[2003/07/07 11:43:09, 5]
lib/smbldap.c:smbldap_open(778)
  smbldap_open: already connected to the LDAP server
[2003/07/07 11:43:09, 0]
passdb/pdb_ldap.c:ldapsam_add_sam_account(2001)
  User 'vaio$' already in the base, with samba
attributes
[2003/07/07 11:43:09, 0]
rpc_server/srv_samr_nt.c:_api_samr_create_user(2313)
  could not add user/computer vaio$ to passdb.  Check
permissions?

In beta1, the Get_Pwnam call right after the
successful return of add machine script failed. In
beta2 now, Get_Pwnam was successful, but then
_api_samr_create_user still failed, which possibly
results in the first access denied.

Has anyone managed to get Samba3.0beta to work with
Openldap as PDC backend? If so can you please help? (I
don't want to have the machine account to have a copy
in UNIX's /etc/passwd, just in LDAP).

Thanks in advance!

__________________________________
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!
http://sbc.yahoo.com



More information about the samba mailing list