[Samba] 3.0.2rc1, LDAP, Solaris 9 and secondary group problem - Bug 395?

Sojka Reinhard reinhard.sojka at parlinkom.gv.at
Fri Jan 23 11:17:42 GMT 2004


we have tested Samba 3.0.0 and 3.0.1 with LDAP-Support (--with-ldap) on
Solaris 8 and it worked fine. 
The machine authenticates against an OpenLDAP server. Patch 108993-23 is
applied and we use native Sun LDAP client modules.

On Solaris 9 we ran into problems with secondary groups. Users cannot
access files if the rights are based on a secondary group and if this
information is stored on the LDAP server. 
Note that everything is ok with information from /etc/group and Unix
authentication is working (login, id, groups, getent, ...). We are using
the Sun LDAP client, Patch 112960-10.

It seems that Samba doesn't seach the secondary groups on the LDAP server.

I'd like to ask if this is the same behaviour as described in
https://bugzilla.samba.org/show_bug.cgi?id=395 . Or is this a different 
bug or some sort of misconfiguration? I am a bit confused by the bug report
and the configuration of the server is a bit different:
* no winbind
* Sun LDAP client instead of nss_ldap from Padl
* no problem on Solaris 8 but on Solaris 9

I have a second question regarding the test program from Hansjörg.
The program compiles on Linux, but no succes on Solaris. Is getgrouplist()
available under Solaris? And if not, what is the replacement.

Thanks in advance,

Reinhard Sojka <reinhard.sojka at parlinkom.gv.at>
System- & Networkadmin
+43 1 40110 2824

More information about the samba mailing list