[Samba] Samba + LDAP as a PDC - unable to log in (but able to join a domain)

Tomasz Chmielewski mangoo at interia.pl
Fri Oct 22 07:26:04 GMT 2004


I'm trying to get Samba to work as a PDC for a group of Windows clients.

I followed two tutorials form IBM developers works: 1) using Samba as a 
PDC (which is missing domain controller = yes), 2) Using an LDAP 
Directory for Samba authentication.

So I was able tu run Samba 3 as a PDC (without LDAP) - I could join a 
domain, add a user, machines were added automatically, roaming profiles 
worked etc.

Then I decided to add LDAP support to Samba.

In this case, I am able to join a domain, but unable to log in as a user.

Interestingly, Samba logs tell that authentication for a "machine" and 
"user" (which are in LDAP) was successful, but Windows tell me that 
username or password were wrong.
If I give a wrong password, Samba Says so in logs.

Anyone had a similar case?

I use OpenLDAP 2.2.6, Samba 3.0.4 on SuSE 9.1, clients are Win2k with SP4.

If needed, I could paste my config files, too.


More information about the samba mailing list