[Samba] samba-2 + openldap = can't contact ldap server

Tero Valokari loysaletku at luukku.com
Thu Apr 15 07:43:38 GMT 2004


We are moving from Redhat9 to Debian sarge. All our users and groups are
stored in OpenLDAP-2.0.27-8. All samba groups are there too.

In Redhat9 we can use SSL/TLS in our samba connection. It works fine.
Configuration goes likes this:
ldap admin dn = "cn=smb,o=yritys,c=fi"
ldap server = ldap.yritys.fi
ldap ssl = on
ldap port = 636
;ldap ssl = off
;ldap port = 389
ldap suffix = "ou=users,o=yritys,c=fi"
ldap filter = "(&(uid=%u)(objectclass=sambaAccount))"

But in Debian, samba works only when the SSL/TLS is not used.
;ldap ssl = on
;ldap port = 636
ldap ssl = off
ldap port = 389

This is found from the log file: log.smbd
[2004/04/14 14:55:02, 0] passdb/pdb_ldap.c:ldap_connect_system(172)
  Bind failed: Can't contact LDAP server

Password for ldap admin dn is given with smbpasswd command. Samba version in
Redhat is samba-2.2.7a-8.9.0, and in Debian 2.2.2.cvs20020201-1

Could there be some kind of client certificate problem?

Regards, Tero

More information about the samba mailing list