[Samba] Configuring samba users with existing ldap (pdbedit -Lv <uid>)

Adam Williams awilliam at mdah.state.ms.us
Fri Dec 7 21:49:19 GMT 2007

Gar Nelson wrote:
> I'm currently going through chapter 5 of Samba-3 by Example, "Making 
> Users Happy"
> Step 16 is where I get a hiccup. When I execute the command "pdbedit 
> -Lv" which according to the man page should list out all my users, I 
> get nothing back.  All the previous steps have worked using one of my 
> existing LDAP account uids.
> There seem to be extra things I need to have in my LDAP directory 
> tree, but I'm unsure how to get them there. The Samba installation is 
> new, so I can afford to mess things up there, but not in the existing 
> LDAP structure. I've googled 'adding ldap accounts to samba' and I've 
> done a search here on the list for anything related to LDAP. So far, 
> nothing I've been reading seems to apply.  If I had no LDAP accounts 
> there are some migration commands that look appropriate, but none of 
> them seem to address the situation of having an already established 
> LDAP directory.

did you tell samba to connect to ldap?  you'll need to run smbpasswd -w 

and have in your smb.conf something like this:

  passdb backend = ldapsam:ldap://gomer.mdah.state.ms.us
  ldap suffix = dc=gomer,dc=mdah,dc=state,dc=ms,dc=us
  ldap machine suffix = ou=People
  ldap user suffix = ou=People
  ldap group suffix = ou=Group
  ldap idmap suffix = ou=Idmap
  ldap admin dn = cn=Manager,dc=gomer,dc=mdah,dc=state,dc=ms,dc=us
  idmap backend = ldap:ldap://gomer.mdah.state.ms.us
  idmap uid = 10000-20000
  idmap gid = 10000-20000

More information about the samba mailing list