[Samba] Re: smbldap-tools don't create machine account properlly
Igor Belyi
sambauser at katehok.ac93.org
Thu Oct 21 22:32:27 GMT 2004
Is it possible that 'ldap admin dn' used in your smb.conf does not have
write access to 'ou=Computers,dc=unimix,dc=com,dc=br'? What was the
error in smbd log when machine failed to join the Domain?
Igor
Fernando Ribeiro wrote:
> Hi all,
>
> I have smb.conf with:
>
>
> add machine script = /usr/local/sbin/smbldap-useradd -w "%u"
> add user script = /usr/local/sbin/smbldap-useradd -m "%u"
> add machine script = /usr/local/sbin/smbldap-useradd -w "%u"
> add group script = /usr/local/sbin/smbldap-groupadd -p "%g"
> add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g"
> delete user script = /usr/local/sbin/smbldap-userdel "%u"
> delete group script = /usr/local/sbin/smbldap-groupdel "%g"
> delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g"
> set primary group script = /usr/local/sbin/smbldap-usermod -g "%g" "%u"
>
> while i try include the w2k machine in samba domain it create the ldap
> machine account entry:
>
> dn: uid=suporte$,ou=Computers,dc=unimix,dc=com,dc=br
> objectClass: top
> objectClass: inetOrgPerson
> objectClass: posixAccount
> cn: suporte$
> sn: suporte$
> uid: suporte$
> uidNumber: 1020
> gidNumber: 1000
> homeDirectory: /dev/null
> loginShell: /bin/false
> description: Computer
> gecos: Computer
>
> And don't join in samba domain.
>
> While i create a machine account manually with:
>
> dn: uid=suporte$,ou=Computadores,dc=unimix,dc=com,dc=br
> gidNumber: 30000
> uidNumber: 1022
> uid: suporte$
> sambaSID: S-1-5-21-715268823-1473299472-2771147885-3044
> sambaAcctFlags: [W ]
> cn: suporte
> homeDirectory: /dev/null
> objectClass: top
> objectClass: sambaSamAccount
> objectClass: posixAccount
> objectClass: account
>
> It join in the samba domain without problem.
>
> Anyone know why it don't create sambaSamAccount ?
> Machine account need inetOrgPerson ?
>
> Thanks
>
>
More information about the samba
mailing list