[Samba] samba3Rc3_LDAP search failed: Insufficient access

Mimic Mimicmike mimicmike at hotmail.com
Fri Sep 12 03:36:58 GMT 2003 

>On Tue, 9 Sep 2003, Mimic Mimicmike wrote:
>
> > (I saw some one post this (BUG)  in previous version, but I see at
> > bugzilla.samba.org this bug is "FIXED" )
>
>It's seems there are several instances of this bug.  We fixed all the ones
>we could reproduce.   Can you give me some more details?  For example,
>
>   * smb.conf
>   * operation you are trying to perform when you
>     see the failure (including client details such
>     as OS and SP)
>   * any error messages you see on the client
>
> >  lib/smbldap.c:smbldap_open(801)
> >  smbldap_open: cannot access LDAP when not root..
> >  passdb/pdb_ldap.c:ldapsam_setsamgrent(2085)
> >   LDAP search failed: Insufficient access
> > passdb/pdb_ldap.c:ldapsam_enum_group_mapping(2150)
> > Unable to open passdb
> > lib/smbldap.c:smbldap_open(801)

Hi,
My Samba PDC is Redhat9.0
Client both XPsp1 and win2k Pro. sp3
this error will occure when I find user(and group) for seting security for
User in samba domain,
on client no error message but quite slow (samba search 10sec. compare with
w2kserv. 1-2 sec.)  but It can search in finally.



smb.conf
-----------------------------------------------------
[global]
netbios name = rod
passdb backend = ldapsam, guest
ldap suffix = dc=abc,dc=net
ldap machine suffix = ou=Computers
ldap user suffix = ou=Users
ldap admin dn = "cn=admin,dc=abc,dc=net"

idmap backend = ldap:ldap://xxx.xx.x.xxx
ldap idmap suffix = ou=idmap,dc=abc,dc=net

   workgroup = abc
   server string = Samba admin test Server
   allow trusted domains = yes

  log file = /var/log/samba/log.%m
  max log size = 50

  security = user

  password server = *
password level = 8
  username level = 8
  encrypt passwords = yes

  username map = /etc/samba/smbusers
  socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

    os level = 65

    logon drive = U:
    logon path =

   domain logons = yes
   add machine script = /usr/sbin/useradd -d /dev/null -g 1000 -s /bin/false
-M %u
   wins server = 172.xx.x.x
   time server = yes
   winbind separator = +
idmap uid = 30000-40000
idmap gid = 30000-40000
winbind enum users = yes
winbind enum groups = yes

[homes]
   comment = Home Directories
   browseable = no
   writable = yes

[netlogon]
   comment = Network Logon Service
   path = /home/netlogon
   guest ok = yes
   writable = no

_________________________________________________________________
Tired of spam? Get advanced junk mail protection with MSN 8. 
http://join.msn.com/?page=features/junkmail

More information about the samba mailing list