[Samba] Samba and LDAP Base DN

Paul Gienger pgienger at ae-solutions.com
Wed Mar 16 16:23:04 GMT 2005



Misty Stanley-Jones wrote:

>More info: I tried deleting ou=corp (after making a backup of course) and 
>still no dice.  As soon as I put back ou=corp and make the baseDN in smb.conf 
>ou=corp, everything works.  If I take all the entries under ou=corp and copy 
>them one level up, I can't authenticate to Samba anymore.  It doesn't make 
>any sense.
>  
>
Hrm... where is your admin DN?  Is it part of ou=corp and you're not 
setting that and the relevent data in secrets.tdb?

(grasping at straws)

>On Wednesday 16 March 2005 10:57 am, Misty Stanley-Jones wrote:
>  
>
>>Right now, I have all of my Samba stuff under ou=corp,dc=mycompany,dc=com. 
>>I have it this way because there used to also be
>>ou=furn,dc=mycompany,dc=com with a different domain.  Now that I only have
>>one domain, I would like to move everything to dc=mycompany,dc=com.  So I
>>copy all of the subentries of ou=corp (ou=computers, ou=people, ou=grooups,
>>and the sambaDomainName entries) to dc=mycompany,dc=com.  I change the
>>/etc/ldap.conf files to all point to the new OU.  Perfect.  However when I
>>change the baseDN in my smb.conf, all of a sudden I cannot authenticate. 
>>Even when doing smbcontrol smbd reload-config.  The only thing I can figure
>>is that it might be doing a 'sub' search and finding two entries for my
>>user, because I left the 'ou=corp' DN as it was.  Is it that, or is there
>>something else I have to do in order to restructure my LDAP tree?
>>
>>TIA,
>>Misty
>>    
>>

-- 
Paul Gienger                    Office: 701-281-1884
Applied Engineering Inc.
Systems Architect               Fax:    701-281-1322
URL: www.ae-solutions.com       mailto: pgienger at ae-solutions.com





More information about the samba mailing list