[Samba] samba as pdc with ldap: trouble with smbldap-populate: error adding from cn=Domain Admins,ou=Groups onwards

Andreas Bittner abittner at stud.fh-heilbronn.de
Sat Nov 26 22:20:06 GMT 2005 

hello there,

i am new to smbldap-tools and i try to follow some tutorials to setup a
samba-pdc but with migration from an old nt4 pdc server.

first i want a very easy and basic setup, no tls/crypto/ssl just for
testing.

im also using the following tutorial:
<http://www.susewiki.org/index.php?title=SAMBA-PDC_OpenLDAP_DYNDS_CLAM>


i installed the smbldap-tools rpm on a suse 10 box. (called LINUX)
i copied the smbldap-tool config files to: /etc/smbldap-tools/

-rw-r--r--   1 root root 7854 Nov 26 21:12 smbldap.conf
-rw-------   1 root root  422 Nov 26 21:18 smbldap_bind.conf


and the smbldap-tool scripts to: /usr/local/sbin/


-rwxr-xr-x   1 root root  5379 Nov 26 21:52 smbldap-groupadd
-rwxr-xr-x   1 root root  2473 Nov 26 21:52 smbldap-groupdel
-rwxr-xr-x   1 root root  8550 Nov 26 21:52 smbldap-groupmod
-rwxr-xr-x   1 root root  2009 Nov 26 21:52 smbldap-groupshow
-rwxr-xr-x   1 root root  9495 Nov 26 21:52 smbldap-passwd
-rwxr-xr-x   1 root root 14533 Nov 26 21:52 smbldap-populate
-rwxr-xr-x   1 root root 18377 Nov 26 21:52 smbldap-useradd
-rwxr-xr-x   1 root root  3244 Nov 26 21:52 smbldap-userdel
-rwxr-xr-x   1 root root  7633 Nov 26 21:52 smbldap-userinfo
-rwxr-xr-x   1 root root 18947 Nov 26 21:52 smbldap-usermod
-rwxr-xr-x   1 root root  1950 Nov 26 21:52 smbldap-usershow
-rwxr-xr-x   1 root root 26153 Nov 26 21:52 smbldap_tools.pm

---------

now my question is about these opt directories of the smbldap-tools:

do i need to do anything in the /opt/IDEALX/sbin/ directory?
what about that configure.pl script there? i found out that it needs a
running samba server to use it, but i first want to setup my ldap
directory. is this correct?



my /etc/openldap/slapd.conf has the following additions/changes:

include		/etc/openldap/schema/inetorgperson.schema
include		/etc/openldap/schema/samba3.schema


access to attrs=userPassword,sambaLMPassword,sambaNTPassword
      by self write
      by anonymous auth
      by * none

database        bdb

suffix          "dc=mycomp,dc=de"
rootdn          "cn=Manager,dc=mycomp,dc=de"
rootpw          secret

index objectClass,uidNumber,gidNumber,memberUid eq
index cn,sn,uid,displayName pres,sub,eq
index mail,givenname eq,subinitial
index sambaSID,sambaPrimaryGroupSID,sambaDomainName eq


my /etc/openldap/ldap.conf has the following:

HOST 127.0.0.1
BASE dc=mycomp,dc=de

the file /etc/smbldap-tools/smbldap.conf has the following:
SID="S-1-5-21-50867963-246823577-285429281"
# SID from the old running NT4 domain server via:
# net rpc getsid -S OLD-NT4-PDC -W MYCOMP
sambaDomain="MYCOMP"
ldapTLS="0"
suffix="dc=mycomp,dc=de"
sambaUnixIdPooldn="sambaDomainName=MYCOMP,${suffix}"
userSmbHome="\\LINUX\%U"
userProfile="\\LINUX\profiles\%U"
mailDomain="mycomp.de"



------------------

the file /etc/smbldap-tools/smbldap_bind.conf is:
slaveDN="cn=Manager,dc=mycomp,dc=de"
slavePw="secret"
masterDN="cn=Manager,dc=mycomp,dc=de"
masterPw="secret"

-----------------

so when i use smbldap-populate now i get the following output:

-----------------------------------------------------------------


linux:/usr/local/sbin # ./smbldap-populate
Populating LDAP directory for domain MYCOMP
(S-1-5-21-50867963-246823577-285429281)
(using builtin directory structure)

adding new entry: dc=mycomp,dc=de
adding new entry: ou=Users,dc=mycomp,dc=de
adding new entry: ou=Groups,dc=mycomp,dc=de
adding new entry: ou=Computers,dc=mycomp,dc=de
adding new entry: ou=Idmap,dc=mycomp,dc=de
adding new entry: uid=root,ou=Users,dc=mycomp,dc=de
adding new entry: uid=nobody,ou=Users,dc=mycomp,dc=de
adding new entry: cn=Domain Admins,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 9.
adding new entry: cn=Domain Users,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 10.
adding new entry: cn=Domain Guests,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 11.
adding new entry: cn=Domain Computers,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 12.
adding new entry: cn=Administrators,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 16.
adding new entry: cn=Account Operators,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 18.
adding new entry: cn=Print Operators,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 19.
adding new entry: cn=Backup Operators,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 20.
adding new entry: cn=Replicators,ou=Groups,dc=mycomp,dc=de
failed to add entry: no structural object class provided at
./smbldap-populate line 471, <GEN1> line 21.
adding new entry: sambaDomainName=MYCOMP,dc=mycomp,dc=de

Please provide a password for the domain root:
Changing password for root
New password :
Retype new password :

---------------------------


whats wrong here? what did i miss?

the slapd is started and the first entries get added according to the
output.

any ideas? did i miss any files or configurations?

thanks.
andreas

More information about the samba mailing list