[Samba] samba3Rc3_LDAP search failed: Insufficient access

Mimic Mimicmike mimicmike at hotmail.com
Wed Sep 10 06:40:57 GMT 2003


>From: "Gerald (Jerry) Carter" <jerry at samba.org>
>To: Mimic Mimicmike <mimicmike at hotmail.com>
>CC: samba at lists.samba.org
>Subject: Re: [Samba] samba3Rc3_LDAP search failed: Insufficient access
>Date: Tue, 9 Sep 2003 12:43:03 -0500 (CDT)
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>On Tue, 9 Sep 2003, Mimic Mimicmike wrote:
>
> > (I saw some one post this (BUG)  in previous version, but I see at
> > bugzilla.samba.org this bug is "FIXED" )
>
>It's seems there are several instances of this bug.  We fixed all the ones
>we could reproduce.   Can you give me some more details?  For example,
>
>   * smb.conf
>   * operation you are trying to perform when you
>     see the failure (including client details such
>     as OS and SP)
>   * any error messages you see on the client
>
> > [2003/09/09 16:09:33, 0] lib/smbldap.c:smbldap_open(801)
> > Sep  9 16:09:33 rod smbd[18078]:   smbldap_open: cannot access LDAP when 
>not
> > root..
> > Sep  9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0]
> > passdb/pdb_ldap.c:ldapsam_setsamgrent(2085)
> > Sep  9 16:09:33 rod smbd[18078]:   LDAP search failed: Insufficient 
>access
> > Sep  9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0]
> > passdb/pdb_ldap.c:ldapsam_enum_group_mapping(2150)
> > Sep  9 16:09:33 rod smbd[18078]:   Unable to open passdb
> > Sep  9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0]
> > lib/smbldap.c:smbldap_open(801)

>cheers, jerry
>  ----------------------------------------------------------------------
>  Hewlett-Packard            ------------------------- http://www.hp.com
>  SAMBA Team                 ---------------------- http://www.samba.org
>  GnuPG Key                  ---- http://www.plainjoe.org/gpg_public.asc
>  "You can never go home again, Oatman, but I guess you can shop there."
>                             --John Cusack - "Grosse Point Blank" (1997)


Hi,
My Samba PDC is Redhat9.0
Client both XPsp1 and win2k Pro. sp3
this error will occure when I find user(and group) for seting security for 
User in samba domain,
on client no error message but quite slow (samba search 10sec. compare with 
w2kserv. 1-2 sec.)  but It can search in finally.



smb.conf
-----------------------------------------------------
[global]
netbios name = rod
passdb backend = ldapsam, guest
ldap suffix = dc=abc,dc=net
ldap machine suffix = ou=Computers
ldap user suffix = ou=Users
ldap admin dn = "cn=admin,dc=abc,dc=net"

idmap backend = ldap:ldap://xxx.xx.x.xxx
ldap idmap suffix = ou=idmap,dc=abc,dc=net

   workgroup = abc
   server string = Samba admin test Server
   allow trusted domains = yes

  log file = /var/log/samba/log.%m
  max log size = 50

  security = user

  password server = *
password level = 8
  username level = 8
  encrypt passwords = yes

  username map = /etc/samba/smbusers
  socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

    os level = 65

    logon drive = U:
    logon path =

   domain logons = yes
   add machine script = /usr/sbin/useradd -d /dev/null -g 1000 -s /bin/false 
-M %u
   wins server = 172.xx.x.x
   time server = yes
   winbind separator = +
idmap uid = 30000-40000
idmap gid = 30000-40000
winbind enum users = yes
winbind enum groups = yes

[homes]
   comment = Home Directories
   browseable = no
   writable = yes

[netlogon]
   comment = Network Logon Service
   path = /home/netlogon
   guest ok = yes
   writable = no

_________________________________________________________________
MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. 
http://join.msn.com/?page=features/virus




More information about the samba mailing list