[Samba] samba3Rc3_LDAP search failed: Insufficient access
Mimic Mimicmike
mimicmike at hotmail.com
Wed Sep 10 06:40:57 GMT 2003
>From: "Gerald (Jerry) Carter" <jerry at samba.org>
>To: Mimic Mimicmike <mimicmike at hotmail.com>
>CC: samba at lists.samba.org
>Subject: Re: [Samba] samba3Rc3_LDAP search failed: Insufficient access
>Date: Tue, 9 Sep 2003 12:43:03 -0500 (CDT)
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>On Tue, 9 Sep 2003, Mimic Mimicmike wrote:
>
> > (I saw some one post this (BUG) in previous version, but I see at
> > bugzilla.samba.org this bug is "FIXED" )
>
>It's seems there are several instances of this bug. We fixed all the ones
>we could reproduce. Can you give me some more details? For example,
>
> * smb.conf
> * operation you are trying to perform when you
> see the failure (including client details such
> as OS and SP)
> * any error messages you see on the client
>
> > [2003/09/09 16:09:33, 0] lib/smbldap.c:smbldap_open(801)
> > Sep 9 16:09:33 rod smbd[18078]: smbldap_open: cannot access LDAP when
>not
> > root..
> > Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0]
> > passdb/pdb_ldap.c:ldapsam_setsamgrent(2085)
> > Sep 9 16:09:33 rod smbd[18078]: LDAP search failed: Insufficient
>access
> > Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0]
> > passdb/pdb_ldap.c:ldapsam_enum_group_mapping(2150)
> > Sep 9 16:09:33 rod smbd[18078]: Unable to open passdb
> > Sep 9 16:09:33 rod smbd[18078]: [2003/09/09 16:09:33, 0]
> > lib/smbldap.c:smbldap_open(801)
>cheers, jerry
> ----------------------------------------------------------------------
> Hewlett-Packard ------------------------- http://www.hp.com
> SAMBA Team ---------------------- http://www.samba.org
> GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc
> "You can never go home again, Oatman, but I guess you can shop there."
> --John Cusack - "Grosse Point Blank" (1997)
Hi,
My Samba PDC is Redhat9.0
Client both XPsp1 and win2k Pro. sp3
this error will occure when I find user(and group) for seting security for
User in samba domain,
on client no error message but quite slow (samba search 10sec. compare with
w2kserv. 1-2 sec.) but It can search in finally.
smb.conf
-----------------------------------------------------
[global]
netbios name = rod
passdb backend = ldapsam, guest
ldap suffix = dc=abc,dc=net
ldap machine suffix = ou=Computers
ldap user suffix = ou=Users
ldap admin dn = "cn=admin,dc=abc,dc=net"
idmap backend = ldap:ldap://xxx.xx.x.xxx
ldap idmap suffix = ou=idmap,dc=abc,dc=net
workgroup = abc
server string = Samba admin test Server
allow trusted domains = yes
log file = /var/log/samba/log.%m
max log size = 50
security = user
password server = *
password level = 8
username level = 8
encrypt passwords = yes
username map = /etc/samba/smbusers
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
os level = 65
logon drive = U:
logon path =
domain logons = yes
add machine script = /usr/sbin/useradd -d /dev/null -g 1000 -s /bin/false
-M %u
wins server = 172.xx.x.x
time server = yes
winbind separator = +
idmap uid = 30000-40000
idmap gid = 30000-40000
winbind enum users = yes
winbind enum groups = yes
[homes]
comment = Home Directories
browseable = no
writable = yes
[netlogon]
comment = Network Logon Service
path = /home/netlogon
guest ok = yes
writable = no
_________________________________________________________________
MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*.
http://join.msn.com/?page=features/virus
More information about the samba
mailing list