[Samba] LDAP suffixes
Geert Stappers
stappers at stappers.nl
Wed Aug 17 21:57:17 GMT 2005
On Wed, Aug 17, 2005 at 10:56:39AM -0600, John H Terpstra wrote:
> On Wednesday 17 August 2005 10:05, Geert Stappers wrote:
<snip/>
> The problem is one of the ability to find the computer account via NSS.
>
> >
> > My questions:
> >
> > * the version with the bug, did they work with
> >
> > ldap suffix = dc=foobar,dc=biz
> > ldap user suffix = ou=People
> > ldap machine suffix = ou=Computers,ou=People
> >
> > in smb.conf succesfull?
> >
> >
> > * In which version was the bug fixed?
>
> This was not a Samba bug as explained above.
>
> PS: Suggest you refer to chapter 5, section 5.3.1.7, of the current
> Samba3-ByExample book. You can obtain it on-line from:
>
> http://www.samba.org/samba/docs/Samba3-ByExample.pdf
>
> This book will become available in computer stores by mid-September.
>
In chapter 5 I found
. ldap suffix [dc=abmas,dc=biz] >
. ldap group suffix [ou=Groups] >
. ldap user suffix [ou=People,ou=Users] >
. ldap machine suffix [ou=Computers,ou=Users] >
. Idmap suffix [ou=Idmap] >
That makes this LDAP tree(beard)
dc=abmas,dc=bz
/|\
/ | \
/ | \
ou=Groups | ou=Idmap
|
ou=Users
/ \
/ \
/ \
ou=People ou=Computers
That allows a nss_base_passwd ou=Users,dc=abmas,dc=biz?one
Shouldn't /etc/samba/smb.conf contain
ldap user suffix = ou=People,ou=Users
ldap machine suffix = ou=Computers,ou=Users
or
ldap user suffix = ou=Users
ldap machine suffix = ou=Users
instead of the current
ldap machine suffix = ou=People
ldap user suffix = ou=People
that is now in Example 5.7. LDAP Based smb.conf File, Server: MASSIVE
global Section: Part B at
http://us2.samba.org/samba/docs/man/Samba3-ByExample/happy.html ?
Cheers
Geert Stappers
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.samba.org/archive/samba/attachments/20050817/fd2d6718/attachment.bin
More information about the samba
mailing list