[Samba] Strange LDAP add machine problem

[Tom Skeren]

Ben Davis wrote:

> I'm setting up a Samba/LDAP PDC (samba-3.0.13 / openldap-2.1.30) and 
> I'm trying to join a machine (called "melisa") to the domain.  When I 
> try to join the domain, I type in the Administrator (which maps to 
> root) credentials.  and after a few seconds I get a windows error that 
> says:
>
>  The following error occurred while attempting to joing the domain 
> "PCA-USERS":
>  The user name could not be found.

I have the same problem.  The only way I am able to add a machine is to:

1.  Create the posix machine account using chpass (I run on FreeBSD)

2.  smbpasswd -m -a Machine_Name

3.  Use my ldap gui tool to edit the ldap entry created by smbpasswd 
with the additional info.

'Tis a royal pain in the arse.  Don't know why....haven't had time to 
play with the smbldap_useradd.pl pearl script.

>
> The machine was successfully added to the ldap dir, in "ou=Computers", 
> but I can't seem to figure out why I'm getting this error.   I saw the 
> following searches in my slapd.log:
>
> SRCH base="dc=pca-wichita,dc=com" scope=2 
> filter="(&(uid=melisa$)(objectClass=sambaSamAccount))"
>
> SRCH base="ou=Users,dc=pca-wichita,dc=com" scope=1 
> filter="(&(objectClass=posixAccount)(uid=melisa$))"
>
> The first search returned 1 entry,  but the second search returned 0.  
> I'm not really sure why it's looking in ou=Users and using a scope of 
> 1 (isn't that the "base" scope?).  My smb.conf settings have the 
> following:
>
> ldap user suffix = ou=Users
> ldap machine suffix = ou=Computers
>
> Does anyone know of anything else I can look at to try and 
> troubleshoot this problem?