[Samba] Samba3.0beta1 as PDC with LDAP
Hannu Tikka
hannu.tikka at rpkk.fi
Mon Jun 9 12:30:16 GMT 2003
> I finally got Samba-3.0beta1 as PDC with LDAP backend.
> However, I need to specify:
>
> passdb backend = ldapsam smbpasswd:smbpasswd guest
>
> and have the root account's exists in smbpasswd file.
> I still could not get a uid=root entry in LDAP to
> allow client workstation to join the domain.
>
> When in samba-2.2.8a I could use a fake rid=506 with
> uidNumber=0 entry in LDAP (as a SambaAccount) and it
> worked fine. But even after converting this entry to
> SambaSamAccount object with Jerry's conversambaAccount
> script it would not allow client machines to join the
> domain.
>
> Has anyone got a full LDAP based Samba PDC working
> without the need to have a fallback smbpasswd for the
> root account? What SambaSID will work for a root
> account that allows client workstations to join the
> domain?
With pdbedit -L you can see rid's.
I used it and got rid 0 with sambaSID: <domain sid>-1000. It might be
that I have somewhere declared that SID's start at 1000 but I didn't
found it in smb.conf so it might be default.
Hannu
More information about the samba
mailing list