[Samba] Issue with two domains in one LDAP tree
Misty Stanley-Jones
misty at borkholder.com
Fri Oct 29 14:43:17 GMT 2004
On Friday 29 October 2004 09:18, Misty Stanley-Jones wrote:
> Hi,
>
> I've just moved a second Samba domain to LDAP -- it works great! However,
> the first domain is now dead in the water. It refuses to autenticate, and
> from the logs it looks like it's not find the SambaDomainName entry in the
> LDAP tree. Here is a diagram of how my LDAP tree is set up.
>
> dc=mycompany,dc=com
>
> |___ ou=computers
> |___ ou=people
> |___ ou=groups
> |___ sambaDomain=domain1
> |___ ou=domain2
> |
> |___ ou=computers
> |___ ou=people
> |___ ou=groups
> |___ sambaDomain=domain2
>
> In domain1's smb.conf, I have:
> ldap suffix = dc=mydomain,dc=com
>
> In domain2's smb.conf, I have:
> ldap suffix = ou=domain2,dc=mydomain,dc=com
>
> Domain2 is working flawlessly. Domain1, however, is not. When I do a
> simple 'smbclient -L localhost' as root, I get the following log from slapd
<snip>
> Misty
I resolved this by putting DOMAIN1 into its own OU. In the future it might be
nice to be able to tweak the search scopes with a little more granularity in
smb.conf. But I think this way is actually cleaner in the long run.
Thanks again,
Misty
More information about the samba
mailing list