[Samba] SAMBA 3.0.4 + LDAP + usrmgr
RRuegner
robert at ruegner.org
Thu May 20 06:55:59 GMT 2004
Umberto Zanatta schrieb:
> I've upgrade to Samba 3.0.4 a System wich it's running
> SLES 8.
>
> The System is working with LDAP and smbldap-tools 0.8.4 for managing
> users and groups.
>
> I'd like to manage the user and group with usrmgr.exe running into a
> Windows
> 2000.
>
> When I tried adding new user the programs didn't work and it's reported
> an error.
>
> The log system running in the PDC [SLES 8], reporting:
>
> smbd[18795]: init_ldap_from_sam: Setting entry for user: ccc
> slapd[26365]: => bdb_dn2id_add: put failed: DB_KEYEXIST: Key/data pair
> already exists -30996
> smbd[18795]: [2004/05/19 12:11:01, 1] passdb/pdb_ldap.c:
> ldapsam_modify_entry(1312)
> smbd[18795]: ldapsam_modify_entry: Failed add user dn= uid=xxxxxx,
> ou=People,o=PROVTV with: Already exists
> smbd[18795]: ldapsam_add_sam_account: failed to modify/add user with
> uid = ccc (dn = uid=ccc,ou=People,o=PROVTV)
> smbd[18795]: could not add user/computer ccc to passdb. Check
> permissions?
>
> The user has never been add before.
>
> Whent I've tried adding a new group the program did.
>
> The Administrator user is Administrator with uid=0 and gid=512; the
> user root isn't in ldap tree but in the passwd file.
>
> Samba's working with admin ldap user for managing ldap [ldap admin dn].
>
> add machine script = /var/lib/samba/scripts/smbldap-useradd -w %u
>
> add user script = /var/lib/samba/scripts/smbldap-useradd -s /bin/
> false -d /dev/null %u
> delete user script = /var/lib/samba/scripts/smbldap-userdel %u
> add user to group script = /var/lib/samba/scripts/smbldap-groupmod - m
> %u %g
> delete user from group script = /var/lib/samba/scripts/smbldap-
> groupmod -x %u %g
>
> add group script = /var/lib/samba/scripts/smbldap-groupadd -p %g
> delete group script = /var/lib/samba/scripts/smbldap-groupdel %g
>
> set primary group script = /var/lib/samba/scripts/smbldap-usermod -g
> %g %u
>
> Any idea?
Hi,
you have to copy the script in /usr/local/sbin/ cause this is hardcoded
in them use this
passdb backend = ldapsam:"ldap://127.0.0.1/"
ldap admin dn = cn=Manager,dc=example,dc=local
ldap suffix = dc=example,dc=local
ldap group suffix = ou=Groups
ldap user suffix = ou=Users
ldap machine suffix = ou=Computers
ldap idmap suffix = ou=Users
ldap ssl = no
add user script = /usr/local/sbin/smbldap-useradd.pl -a -m -P "%u"
ldap delete dn = Yes
delete user script = /usr/local/sbin/smbldap-userdel.pl -r "%u"
add machine script = /usr/local/sbin/smbldap-useradd.pl -w "%u"
add group script = /usr/local/sbin/smbldap-groupadd.pl -p "%g"
delete group script = /usr/local/sbin/smbldap-groupdel.pl "%g"
add user to group script = /usr/local/sbin/smbldap-groupmod.pl -m
"%u" "%g"
delete user from group script = /usr/local/sbin/smbldap-groupmod.pl
-x "%u" "%g"
set primary group script = /usr/local/sbin/smbldap-usermod.pl -g
"%g" "%u"
passwd program = /usr/local/sbin/smbldap-passwd.pl "%u"
Regards
More information about the samba
mailing list