[Samba] Samba as PDC+OpenLDAP: unique login?
Adam Williams
awilliam at mdah.state.ms.us
Wed Oct 8 21:09:03 GMT 2008
try posting on the NSS LDAP mailling list at nssldap at padl.com
Joao Amancio wrote:
> Proskurin Kirill,
>
> First of all: Thank you!
> I've changed my /etc/nsswitch.conf file just like yours.
> My difficult is in get "nss_ldap" compiled and running on it server.
> I download the tgz file from PADL Software Pty Ltd website,
> decompress/untar, and then run "./configure" .
> ./configure runs just fine with no error message.
> Things go bad when I type: make
> This is the output after I try to do "make":
>
> root at ldap:~/nss_ldap-262# make
> make all-am
> make[1]: Entering directory `/root/nss_ldap-262'
> if gcc -DHAVE_CONFIG_H -I. -I. -I. -DLDAP_REFERRALS -DLDAP_DEPRECATED
> -D_REENTRANT -g -O2 -Wall -fPIC -MT ldap-nss.o -MD -MP -MF
> ".deps/ldap-nss.Tpo" -c -o ldap-nss.o ldap-nss.c; \
> then mv -f ".deps/ldap-nss.Tpo" ".deps/ldap-nss.Po"; else rm -f
> ".deps/ldap-nss.Tpo"; exit 1; fi
> In file included from ldap-nss.c:95:
> pagectrl.h:32: error: conflicting types for 'ldap_create_page_control'
> /usr/local/include/ldap.h:2004: error: previous declaration of
> 'ldap_create_page_control' was here
> pagectrl.h:41: error: conflicting types for 'ldap_parse_page_control'
> /usr/local/include/ldap.h:2013: error: previous declaration of
> 'ldap_parse_page_control' was here
> make[1]: *** [ldap-nss.o] Error 1
> make[1]: Leaving directory `/root/nss_ldap-262'
> make: *** [all] Error 2
> root at ldap:~/nss_ldap-262#
>
> I've also tried some google's answer but no one solve this problem.
> Server OS: Slackware 12.1 (standard full installation)
> OpenLDAP 2.4.11
>
> Best regards,
> João Ferreira
>
> On Wed, Oct 8, 2008 at 11:39 AM, Proskurin Kirill <k.proskurin at fxclub.org>wrote:
>
>
>> Joao Amancio wrote:
>>
>>
>>> 1. There is a way to populate Samba (users, groups) with the OpenLDAP
>>> base?
>>>
>>>
>> 1) smbldap-tools
>> 2) lam
>>
>>
>>> 2. It's really needed to get users at: linux local system, samba and
>>> openldap? Where's is the "single sign on" idea in this case?
>>>
>>>
>> No need.
>> Im use only LDAP users.
>>
>> Its makes via "nss_ldap" program and editing your nsswitch.conf to work
>> with ldap.
>>
>> That is how it work on my PDC:
>>
>> %cat /etc/nsswitch.conf
>> group: files ldap
>> hosts: files dns
>> networks: files
>> passwd: files ldap
>> shadow: files ldap
>> shells: files
>>
>> grep -v # /usr/local/etc/nss_ldap.conf | egrep -v '^$'
>> host 127.0.0.1
>> base ou=Samba,dc=domain,dc=org
>> ldap_version 3
>> binddn cn=root,dc=domain,dc=org
>> bindpw secret
>> rootbinddn cn=root,dc=domain,dc=org
>> port 389
>> scope one
>> timelimit 30
>> bind_timelimit 30
>> bind_policy soft
>> nss_connect_policy persist
>> idle_timelimit 3600
>> nss_paged_results yes
>> pagesize 1000
>> pam_login_attribute uid
>> pam_password crypt
>> nss_base_group ou=Groups,ou=Samba,dc=domain,dc=org?one
>> nss_base_passwd ou=Users,ou=Samba,dc=domain,dc=org?one
>> nss_base_passwd ou=Computers,ou=Samba,dc=domain,dc=org?one
>> nss_base_hosts ou=Computers,ou=Samba,dc=domain,dc=org?one
>> nss_base_shadow ou=Users,ou=Samba,dc=domain,dc=org?one
>>
>> --
>> Best regards,
>> Proskurin Kirill
>>
>> --
>> To unsubscribe from this list go to the following URL and read the
>> instructions: https://lists.samba.org/mailman/listinfo/samba
>>
>>
More information about the samba
mailing list