[Samba] Accounts randomly clobber on user add (LDAP, XP, Samba PDC)
Cove Schneider
cove at wildpackets.com
Thu Jun 26 00:15:16 GMT 2003
Hi folks,
This has been quite a mystery to us; we are in the process of migrating
over from workgroups to a domain with Samba as the PDC. Every now and
then when we add a machine to the domain it clobbers a random user's
account in our LDAP database. I though it might be a problem with the
smbldap-tools included in the samba dist., but after reviewing the code
and retooling smbldap-useradd.pl, it still happens. And there is no
obvious reason as to why it clobbers the accounts that it does...
Using: RedHat 8.0, samba-2.2.8, openldap 2.0.27, the computers are
Windows XP.
In this example, the machine that was added is called "WP100523", and
appears as the CN and displayName of the hijacked user account.
BEFORE (GOOD):
dn: uid=rkhan,ou=Employees,dc=wildpackets,dc=com
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: account
objectClass: top
objectClass: posixAccount
objectClass: shadowAccount
objectClass: sambaAccount
uid: rkhan
uidNumber: 1040
gidNumber: 1000
givenName: R
sn: Khan
cn: R Khan
homeDirectory: /home/employees/rkhan
loginShell: /bin/false
gecos: R Khan
shadowMax: 900
shadowWarning: 7
shadowInactive: 2
ou: IT
shadowLastChange: 12101
userPassword:: secret
rid: 3236
smbHome: \\xo\homes
AFTER (BAD):
dn: uid=rkhan,ou=Employees,dc=wildpackets,dc=com
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: account
objectClass: top
objectClass: posixAccount
objectClass: shadowAccount
objectClass: sambaAccount
uidNumber: 1040
gidNumber: 1000
givenName: R
sn: Khan
homeDirectory: /home/employees/rkhan
loginShell: /bin/false
gecos: R Khan
shadowMax: 900
shadowWarning: 7
shadowInactive: 2
ou: IT
shadowLastChange: 12101
uid: rkhan
pwdLastSet: 1056581155
logonTime: 0
logoffTime: 0
kickoffTime: 0
pwdCanChange: 0
pwdMustChange: 0
displayName: WP100523$
cn: WP100523$
smbHome: \\xo\homes
rid: 3080
primaryGroupID: 3001
acctFlags: [W ]
I can provide some more logs if that would be helpful, they're rather
long though.
Any help would be greatly appreciated, Thanks,
Cove
More information about the samba
mailing list