[Samba] Winbind ldap samba 3 BDC getent passwd answer don't retrieve domain users, can't login on the domain with users that are not on /ect/passwd + typo error ?

jean-marc pouchoulon jean-marc.pouchoulon at ac-montpellier.fr
Thu Sep 25 11:33:43 GMT 2003


	On redhat 9 - samba 3 stable - Using the rpm from 24 september.
	I try to configure a bdc. 
      Smb.conf is :

        idmap backend = ldap:ldap://ip_address
        ldap idmap suffix = ou=personnes,ou=ac-ville,ou=educ
        winbind uid = 10000-20000
        winbind gid = 10000-20000
        # allow enumeration of winbind users and groups
        winbind enum users = yes
        winbind enum groups = yes
        # give winbind users a real shell (only needed if they have
telnet access)
        template shell = /bin/bash

	wbinfo -u and -g are working.

      Nsswitch.conf is :

	passwd:     files winbind
	shadow:     files
	group:      files winbind

      But getent  passwd and getent group did give back only the users
located in /etc/passwd and /etc/group

	On login with a user that don't have local entry I have 

  init_sam_from_ldap: Entry found for user: test1
[2003/09/25 11:30:41, 1] auth/auth_util.c:make_server_info_sam(818)
  User test1 in passdb, but getpwnam() fails!

[2003/09/25 11:30:41, 0] auth/auth_sam.c:check_sam_security(459)
  check_sam_security: make_server_info_sam() failed with
[2003/09/25 11:30:41, 2] auth/auth.c:check_ntlm_password(309)
  check_ntlm_password:  Authentication for user [test1] -> [test1]
[2003/09/25 11

	Do I must create the user in local ? I want to use winbind to
avoid it.

	Any help would be greatly appreciated.


	Maybe , there is a typo error on the "Samba Project
      P69 idmapbackend = ldapsam:ldap://slave-ldap.quenya.org  
      If use ldapsam instead of ldap I have
[2003/09/25 13:25:25, 0] sam/idmap.c:idmap_init(136)
  idmap_init: could not load remote backend 'ldapsam'.



More information about the samba mailing list