Have you stored the password for cn=admin in secrets.tdb? # smbpasswd -w put_your_ldap_admin_password_here Last week I tried to get a new samba server to authenticate to my PDC (samba+openLDAP) and after digging for two days I found out that the only part I missing was the above line. Stupid me.