[Samba] LDAP with Netscape 4 & Solaris 8

Spike Burkhardt burkhardt.richard at ssd.loral.com
Tue Aug 24 22:54:47 GMT 2004


Hey all,

  I'm trying to get Samba 3.0.4 to work with Netscape Directory Server
4.x  with LDAP.  The problem is that I'm not getting authenticated thru
LDAP.  I've tried searching the archives(MARC), google and can find some
info but nothing seems to fix it. I've loaded the Netscape V4 schema
from the examples/LDAP.

  Included at the end is both my smb.conf file and my LDIF record.  I
think I'm fairly close.  In my LDIF record, I don't see anything about
sambaSamAccount.  Once I insert the schema into LDAP, do I need to do
anything else with the directory server?  I just want to use LDAP for
password authentitcation.   I can connect to ldap server.  In
troubleshooting I've increased the log level to 9 and when I do a

pdbedit -Lv burkharr

here's the partial output:

Trying to load: ldapsam:ldap://tgabrielho.ssd.loral.com:389
Attempting to register passdb backend ldapsam
Successfully added passdb backend 'ldapsam'
Attempting to register passdb backend ldapsam_compat
Successfully added passdb backend 'ldapsam_compat'
Attempting to register passdb backend smbpasswd
Successfully added passdb backend 'smbpasswd'
Attempting to register passdb backend tdbsam
Successfully added passdb backend 'tdbsam'
Attempting to register passdb backend guest
Successfully added passdb backend 'guest'
Attempting to find an passdb backend to match
ldapsam:ldap://tgabrielho.ssd.loral.com:389 (ldapsam)
Found pdb backend ldapsam
Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=SPIKEMAN))]
smbldap_search: base => [o=Loral SpaceCom Corp,c=US], filter =>
[(&(objectClass=sambaDomain)(sambaDomainName=SPIKEMAN))], scope => [2]
smbldap_open_connection: connection opened
ldap_connect_system: succesful connection to the LDAP server
The LDAP server is succesful connected
pdb backend ldapsam:ldap://tgabrielho.ssd.loral.com:389 has a valid init

Attempting to find an passdb backend to match guest (guest)
Found pdb backend guest
pdb backend guest has a valid init
Netbios name list:-
my_netbios_names[0]="SPIKEMAN"
Trying to load: ldapsam:ldap://tgabrielho.ssd.loral.com:389
Attempting to find an passdb backend to match
ldapsam:ldap://tgabrielho.ssd.loral.com:389 (ldapsam)
Found pdb backend ldapsam
Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=SPIKEMAN))]
smbldap_search: base => [o=Loral SpaceCom Corp,c=US], filter =>
[(&(objectClass=sambaDomain)(sambaDomainName=SPIKEMAN))], scope => [2]
smbldap_open_connection: connection opened
ldap_connect_system: succesful connection to the LDAP server
The LDAP server is succesful connected
pdb backend ldapsam:ldap://tgabrielho.ssd.loral.com:389 has a valid init

Attempting to find an passdb backend to match guest (guest)
Found pdb backend guest
pdb backend guest has a valid init
smbldap_search: base => [o=Loral SpaceCom Corp,c=US], filter =>
[(&(uid=burkharr)(objectclass=sambaSamAccount))], scope => [2]
ldapsam_getsampwnam: Unable to locate user [burkharr] count=0
Username not found!

Here is my smb.conf file:
spikeman:/apps/samba/bin> testparm
Load smb config files from /apps/samba/lib/smb.conf
Processing section "[homes]"
Loaded services file OK.
Server role: ROLE_STANDALONE
Press enter to see a dump of your service definitions

# Global parameters
[global]
        workgroup = ALPS
        passdb backend = ldapsam:ldap://tgabrielho.ssd.loral.com:389
        password level = 8
        log level = 3
        log file = /var/samba/log/log.%m
        ldap suffix = "o=Loral SpaceCom Corp,c=US"
        ldap user suffix = ou=SS/L
        ldap admin dn = "cn=Directory Manager"

[homes]
        comment = %u Home Directory
        read only = No

LDIF record
uid=burkharr,ou=SS/L, o=Loral SpaceCom Corp,c=us
sn=Burkhardt
telephonenumber=24787
mail=burkhardt.richard at thercho.ssd.loral.com
uid=burkharr
ntuserdomainid=WORLD:burkharr
ntuserdeleteaccount=TRUE
ntusercreatenewaccount=TRUE
employeenumber=5479
maildeliveryoption=mailbox
mailhost=thercho.ssd.loral.com
mailalternateaddress=burkharr at thercho.ssd.loral.com
objectclass=top
objectclass=person
objectclass=organizationalPerson
objectclass=inetOrgPerson
objectclass=nTUser
objectclass=mailrecipient
objectclass=nsmessagingserveruser
objectclass=ctCalUser
objectclass=icsCalendarUser
ctcalpasswordrequired=1
ctcalxitemid=11000:05464
ou=SS/L
ctcalflags=0
ctcallanguageid=0
ctcalsysopcanwritepassword=1
ctcaldefaulttaskreminder=0:0
ctcalrefreshprefs=1:60
ctcaltimezone=0
givenname=Richard
cn=Spike Burkhardt
ctcalnotifmechanism=1

ctcaloperatingprefs=0:255:0:0:0:0:450:960:420:960:0:450:960:420:960:0:450:960:420:960:0:450:960:420:960:0:450:960:420:960:0:450:960:420:960:0:450:960:420:960

ctcaldefaultnotereminder=1:0
ctcaldefaultreminder=1:60
ctcaldisplayprefs=4:420:1080:1:30:62:2
icscalendar=burkharr
icssubscribed=burkharr$burkharr
icscalendarowned=burkharr$




More information about the samba mailing list