[Samba] Samba PDC w/ LDAP & Mass Adding Users
msmith at edtech.mcc.edu
msmith at edtech.mcc.edu
Thu Jun 30 05:13:30 GMT 2005
>
> 1.) Make sure you are not using an antique version of OpenLDAP. For
some totally incomprehensible reason most distributions (especially
RedHat derived ones) ship with very very very old versions of this
software. SuSe does quite a bit better.
OpenLDAP 2.2.26-r2
> 2.) You don't say what versions or backend you are using. If you are
using a BDB or HDB backend (and you should) you need to make sure your
DB_CONFIG settings are reasonable. If you are using an LDBM backend
then just give up.
> ftp://ftp.kalamazoolinux.org/pub/pdf/LDAP106.pdf
Sorry, I am using BDB -- but I have used both LDBM and BDB. Cache settings
and all seem to work good.
> 3.) Does the "id {username}" still work for a user after it stops
addding-for-read? Can you perform an ldapsearch, without restarting the
DSA?
acad1 ~ # id lhart1
id: io.c:171: ber_free_buf: Assertion `((ber)->ber_opts.lbo_valid==0x2)'
failed.
uid=10214(lhart1) gid=505Aborted
>
>
> If you've disabled ncsd caching how is nscd crashing?
>
Well, I can't seem to totally disable it from popping up -- I've added
"name cache timeout = 0" to smb.conf (if I understood that correctly,
thats supposed to stop nscd from starting, maybe not). I "disabled" it by
commenting everything in nscd.conf.
>
> This is required if you want to enumerate members of a group, it helps
performance.
Cool, thats good to know. =)
"Now, the interesting part. If I change the '-g students' to '-g 'domain
users'' everything works fine!
Adding users to 'Domain Users' works, but 'students' does not?
Actually, adding a new group with the first part being "Domain" such as
group 'Domain Studs' works fine. If the group name doesn't have "Domain"
in it, it gets screwed up?"
Thanks for your help,
Marc
More information about the samba
mailing list