[Samba] vampire fails because of Debian smbldap-tools problem

[Geoff Scott]

> 
> BTW i use tgz version of smbldap-tools on debian, they are more
> up-to-date, and aparently better packaged.
> 

OK so I gave up on the .DEB version and downloaded the .tgz version.  I put
the scripts in /usr/sbin/samba.  I copied the 2 .conf files into
/etc/smbldap-tools/ and just to be sure that I didn't get any typos I used
the configure.pl script that comes with the tgz file.  It seems to run fine
and produce 2 good .conf files.  It does output this part way through
though:

Use of uninitialized value in scalar chomp at /usr/sbin/samba/configure.pl
line138, <STDIN> line 17.
Use of uninitialized value in hash element at /usr/sbin/samba/configure.pl
line140, <STDIN> line 17.
Use of uninitialized value in concatenation (.) or string at
/usr/sbin/samba/configure.pl line 144, <STDIN> line 17.
Use of uninitialized value in string at /usr/sbin/samba/configure.pl line
145, <STDIN> line 17.

Then when you Vampire accounts this happens:

Fetching DOMAIN database
SAM_DELTA_DOMAIN_INFO not handled
Creating unix group: 'Domain Admins'
Creating unix group: 'Domain Users'
Creating unix group: 'Domain Guests'
Creating unix group: 'Sofa Workshop'
Creating unix group: 'Family'
Creating unix group: 'Payroll'
Creating unix group: 'PA'
Creating unix group: 'Accounting'
Creating unix group: 'GHAccounts'
Creating unix group: 'Hire Accounting'
Creating unix group: 'Seagate Info'
Creating unix group: 'MTS Trusted Impersonators'
Creating unix group: 'TopTools'
Creating unix group: 'Melb Consultants'
Creating unix group: 'Melb Accounts'
Creating unix group: 'Manager Reporting'
Creating unix group: 'NSW Consultants'
Creating unix group: 'Actif'
Creating unix group: 'QLD Consultants'
Creating account: administrator
Can't call method "get_value" on an undefined value at
/usr/sbin/samba/smbldap-useradd line 168, <DATA> line 283.
Could not create posix account info for 'administrator'
Creating account: deloitte
Can't call method "get_value" on an undefined value at
/usr/sbin/samba/smbldap-useradd line 168, <DATA> line 283.
Could not create posix account info for 'deloitte'
Creating account: iusr_guests
Can't call method "get_value" on an undefined value at
/usr/sbin/samba/smbldap-useradd line 168, <DATA> line 283.
Could not create posix account info for 'iusr_guests'

So everything works fine till you get to creating proper users.  I've
checked and checked the smbldap.conf file for errors, which I can't see.
Can anyone see anything glaringly obvious that I have missed?  Oh, and the
reason that I am putting users etc into ou=Users,ou=OxObjects is that I am
trying to integrate Samba with Open Exchange.  Is there something hardcoded
into Samba that will stop me from doing this?

Regards Geoff

The smbldap.conf file that I am currently using is below:

# General Configuration

# Put your own SID
# to obtain this number do: net getlocalsid
SID="S-1-5-21-1766222747-101449826-1539857752"

# LDAP Configuration
slaveLDAP="127.0.0.1"
slavePort="389"

# Master LDAP : needed for write operations
# Ex: masterLDAP=127.0.0.1
masterLDAP="127.0.0.1"
masterPort="389"

# Use TLS for LDAP
# If set to 1, this option will use start_tls for connection
# (you should also used the port 389)
ldapTLS="0"

# How to verify the server's certificate (none, optional or require)
# see "man Net::LDAP" in start_tls section for more details
verify=""

# CA certificate
# see "man Net::LDAP" in start_tls section for more details
cafile=""

# certificate to use to connect to the ldap server
# see "man Net::LDAP" in start_tls section for more details
clientcert=""

# key certificate to use to connect to the ldap server
# see "man Net::LDAP" in start_tls section for more details
clientkey=""

# LDAP Suffix
# Ex: suffix=dc=IDEALX,dc=ORG
suffix="dc=foobar,dc=com,dc=au"

# Where are stored Users
# Ex: usersdn="ou=Users,dc=IDEALX,dc=ORG"
usersdn="ou=Users,ou=OxObjects,${suffix}"

# Where are stored Computers
# Ex: computersdn="ou=Computers,dc=IDEALX,dc=ORG"
computersdn="ou=Users,ou=OxObjects,${suffix}"

# Where are stored Groups
# Ex groupsdn="ou=Groups,dc=IDEALX,dc=ORG"
groupsdn="ou=Groups,ou=OxObjects,${suffix}"

# Where are stored Idmap entries (used if samba is a domain member server)
# Ex groupsdn="ou=Idmap,dc=IDEALX,dc=ORG"
idmapdn="ou=Idmap,${suffix}"

# Where to store next uidNumber and gidNumber available
sambaUnixIdPooldn="cn=NextFreeUnixId,${suffix}"

# Default scope Used
scope="sub"

# Unix password encryption (CRYPT, MD5, SMD5, SSHA, SHA)
hash_encrypt="MD5"

# if hash_encrypt is set to CRYPT, you may set a salt format.
# default is "%s", but many systems will generate MD5 hashed
# passwords if you use "$1$%.8s". This parameter is optional!
crypt_salt_format="%s"

############################################################################
##
#
# Unix Accounts Configuration
#
############################################################################
##

# Login defs
# Default Login Shell
# Ex: userLoginShell="/bin/bash"
userLoginShell="/bin/bash"

# Home directory
# Ex: userHome="/home/%U"
userHome="/home/%U"

# Gecos
userGecos="User"

# Default User (POSIX and Samba) GID
defaultUserGid="513"

# Default Computer (Samba) GID
defaultComputerGid="515"

# Skel dir
skeletonDir="/etc/skel"

# Default password validation time (time in days) Comment the next line if
# you don't want password to be enable for defaultMaxPasswordAge days (be
# careful to the sambaPwdMustChange attribute's value)
defaultMaxPasswordAge="90"

############################################################################
##
#
# SAMBA Configuration
#
############################################################################
##

# The UNC path to home drives location (%U username substitution)
# Ex: \\My-PDC-netbios-name\homes\%U
# Just set it to a null string if you want to use the smb.conf 'logon home'
# directive and/or disable roaming profiles
userSmbHome=""

# The UNC path to profiles locations (%U username substitution)
# Ex: \\My-PDC-netbios-name\profiles\%U
# Just set it to a null string if you want to use the smb.conf 'logon path'
# directive and/or disable roaming profiles
userProfile=""

# The default Home Drive Letter mapping
# (will be automatically mapped at logon time if home directory exist)
# Ex: H: for H:
userHomeDrive="'Z:'"

# The default user netlogon script name (%U username substitution)
# if not used, will be automatically username.cmd
# make sure script file is edited under dos
# Ex: %U.cmd
# userScript="startup.cmd" # make sure script file is edited under dos
userScript="logon.bat"

# Domain appended to the users "mail"-attribute
# when smbldap-useradd -M is used
mailDomain="foobar.com"

############################################################################
##
#
# SMBLDAP-TOOLS Configuration (default are ok for a RedHat)
#
############################################################################
##

# Allows not to use smbpasswd (if with_smbpasswd == 0 in smbldap_conf.pm)
but
# prefer Crypt::SmbHash library
with_smbpasswd="0"
smbpasswd="/usr/bin/smbpasswd"