[Samba] samba 3.0.2a (ported from 2.2.8a) with LDAP failed to add machine account

zergio zergio at isma.kharkov.ua
Thu Mar 11 11:49:47 GMT 2004

Hi all!
Domain is up and running. I can add users and they can change passwords. 
Problem occurred when I tried to add machine account.
add machine script works fine (unix user created) but samba can not 
modify entry. LDAP permissions are proper.
If you have any idea welcomed.
Thank you
Here is the log:

[2004/03/10 14:33:08, 3] passdb/pdb_ldap.c:ldapsam_add_sam_account(1595)
  ldapsam_add_sam_account: Adding new user
[2004/03/10 14:33:08, 2] passdb/pdb_ldap.c:init_ldap_from_sam(769)
  init_ldap_from_sam: Setting entry for user: hive$
[2004/03/10 14:33:08, 1] passdb/pdb_ldap.c:ldapsam_modify_entry(1214)
  ldapsam_modify_entry: Failed to add user dn= uid=hive$,ou=Computers,ou=accounts,o=isma with: Already exists
[2004/03/10 14:33:08, 0] passdb/pdb_ldap.c:ldapsam_add_sam_account(1633)
  ldapsam_add_sam_account: failed to modify/add user with uid = hive$ (dn = uid=hive$,ou=Computers,ou=accounts,o=isma)
[2004/03/10 14:33:08, 0] rpc_server/srv_samr_nt.c:_samr_create_user(2250)
  could not add user/computer hive$ to passdb.  Check permissions?


	dos charset = CP866
	unix charset = koi8-r
	display charset = koi8-r
	workgroup = ISMA-TEST
	netbios name = BDC-SRV
	server string = Samba Server 3.0.2a testing
	interfaces = eth1
	bind interfaces only = Yes
	min passwd length = 4
	map to guest = Bad User
	passdb backend = ldapsam:ldap://
	guest account = guest
	passwd program = /usr/local/sbin/smbldap-passwd.pl %u
	passwd chat = *New*password* %n\n *new*password* %n\n
	passwd chat timeout = 1
	unix password sync = Yes
	log level = 3
	log file = /var/log/samba/log.%m
	max log size = 50
	socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
	add machine script = /usr/local/sbin/smbldap-useradd.pl -w -d /dev/null -g 'Domain Computers' -c 'Machine Account' -s /bin/false %u
	logon script = %U.bat
	logon path = \\%N\%U\.2kXPprofiles
	logon home = \\%N\%U\.9xMeprofiles
	domain logons = Yes
	os level = 255
	preferred master = Yes
	domain master = Yes
	dns proxy = No
	wins server =
	ldap suffix = ou=accounts,o=isma
	ldap machine suffix = ou=Computers
	ldap user suffix = ou=Users
	ldap group suffix = ou=Groups
	ldap filter = (&(uid=%u)(objectclass=sambaSamAccount))
	ldap admin dn = cn=admin,ou=accounts,o=isma
	ldap ssl = no
	ldap passwd sync = Yes

	comment = Home Directories
	read only = No
	browseable = No

	comment = All Printers
	path = /var/spool/samba
	printable = Yes
	browseable = No

	path = /home
	read only = No

	path = /opt/samba/netlogon
	admin users = admin
	read only = No
	browseable = No

More information about the samba mailing list