[Samba] samba 3.0.2a (ported from 2.2.8a) with LDAP failed to
add machine account
zergio
zergio at isma.kharkov.ua
Thu Mar 11 13:32:58 GMT 2004
Beast ?????:
>* zergio <zergio at isma.kharkov.ua> nulis:
>
>
>
>>Beast ?????:
>>
>>
>>
>>>* zergio <zergio at isma.kharkov.ua> nulis:
>>>
>>>This:
>>>
>>>
>>>
>>>
>>>
>>>> ldap filter = (&(uid=%u)(objectclass=sambaSamAccount))
>>>>
>>>>
>>>>
>>>>
>>>change to:
>>> # ldap filter = (&(uid=%u)(objectclass=sambaSamAccount))
>>>
>>>
>>>--beast
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>According to man smb.conf if ldap filter is not set then dafault used
>>
>>Default: /ldap filter/ = (&(uid=%u)(objectclass=sambaAccount))
>>
>>
>>
>
>man page can be wrong ;-p
>
>Quoting jerry of samba team :
><quote>
>My opinion is that the 'ldap filter' option in smb.conf should never be
>set. There are 2 many different LDAP searches now being done (group
>mapping, users, etc...) and we don't use that option consistently
>internally anyways. Best to leave it alone IMO.
></quote>
>
>
>
>
>>However, I use new samba.schema and there is no sambaAccount, thus ldap
>>gives NO SUCH USER.
>>
>>
>
>
>Have you try it first?
>
>mine not:
>Mar 11 13:13:46 jambu slapd[1397]: conn=101167 op=6 SRCH base="ou=jakarta,dc=indorama,dc=com" scope=2 filter="(&(uid=jktjalan)(objectClass=sambaSamAccount))"
>
>
>--beast
>
>
>
>
>
I've tried to set "ldap filter" to NULL string with swat - It didn't
work. When I deleted the string from smb.conf file and restarted smbd a
machine successfully joined the domain.
I appreciate you help. Thank you very much!
More information about the samba
mailing list