[Samba] 'ldap machine suffix' is ignored?
Logan Shaw
lshaw at emitinc.com
Mon Aug 7 14:52:20 GMT 2006
On Mon, 7 Aug 2006, Mike A. Kuznetsov wrote:
> I'm using samba-3.0.23 (Revision: 16921, from ports collection, under FreeBSD
> 6.1 with OpenLDAP 2.3.24 & smbldap-tools-0.9.2a) as PDC with following
> config:
[ snip snip snip... ]
> [global]
> ldap group suffix = ou=groups
> ldap idmap suffix = ou=idmap
> ldap machine suffix = ou=computers
> ldap passwd sync = Yes
> ldap suffix = dc=mydomain,dc=ru
> And I can't join domain from WinXP workstation (WINHOST, for ex.) with the
> error "No such user"
I believe in newer versions of Samba, "ldap suffix" is no
longer added to "ldap machine suffix" or to any of the others.
So, you need to put this instead:
ldap group suffix = ou=groups,dc=mydomain,dc=ru
ldap idmap suffix = ou=idmap,dc=mydomain,dc=ru
ldap machine suffix = ou=computers,dc=mydomain,dc=ru
This seems to have changed sometime between 3.0.10 and 3.0.22,
although when specifically it changed I don't know.
- Logan
More information about the samba
mailing list