[Samba] Re: ldap group authentication refresh [SOLVED]
Arthur Odekerken
odekerken at gmail.com
Tue Mar 10 16:39:54 GMT 2009
Hi,
I resolved the problem.
I changed my smb.conf as follows:
[global]
netbios name = SAMBA
server string = %h
workgroup = DOMAIN.TLD
security = user
encrypt passwords = true
ldap passwd sync = yes
guest account = nobody
passdb backend = ldapsam:ldap://zarafa.hasselt.be
ldap admin dn = cn=root,ou=hasselt.be,o=hasselt,c=be
ldap suffix = o=hasselt,c=be
ldap group suffix = ou=groups
ldap user suffix = ou=hasselt.be
enable privileges = yes
socket options = TCP_NODELAY
case sensitive = no
default case = lower
preserve case = yes
short preserve case = yes
dns proxy = no
printcap name = /etc/printcap
log level = 3
log file = /var/log/samba/%m.log
max log size = 50
nt acl support = Yes
create mask = 0644
directory mask = 0755
level2 oplocks = True
I now have a Samba server that authenticates against an OpenLDAP directory
without the use of a domain.
Thank you all for your support.
Arthur
2009/3/10 Adam Tauno Williams <awilliam at whitemice.org>
> On Tue, 2009-03-10 at 14:41 +0100, Arthur Odekerken wrote:
> > Adam,
> > I get this whenever I do
> > [root at samba ~]# pdbedit --user=nobody
> > smbldap_search_domain_info: Searching
> > for:[(&(objectClass=sambaDomain)(sambaDomainName=DOMAIN.TLD))]
> > smbldap_open_connection: connection opened
> > ldap_connect_system: succesful connection to the LDAP server
> > smbldap_search_domain_info: Searching
> > for:[(&(objectClass=sambaDomain)(sambaDomainName=DOMAIN.TLD))]
> > smbldap_open_connection: connection opened
> > ldap_connect_system: succesful connection to the LDAP server
> > init_sam_from_ldap: Entry found for user: nobody
> > nobody:99:nobody
> > How do you map nobody to guest?
> > Do I have to do this in LDAP or local?
>
> As mentioned in the previous message:
> <quote>
> Is your guest account mapped to "nobody"? (Maybe that is the default,
> don't remember; I try not to rely on defaults).
> Like: guest account = nobody
> </quote>
>
> > 2009/3/10 Adam Tauno Williams <awilliam at whitemice.org>
> > On Mon, 2009-03-09 at 22:21 +0100, Arthur Odekerken wrote:
> > > nscd wasn't running on my machine.
> > > After setting the option ldapsam:trusted = yes smbd doesn"t
> > start any longer
> > > I get the following error in /var/log/smbd.log:
> > > [2009/03/09 22:01:31, 0] smbd/server.c:main(1063)
> > > ERROR: failed to setup guest info.
> > > I did add a nobody account & group to my LDAP database with
> > the following
> > > DN's:
> >
> >
> > Is your guest account mapped to "nobody"? (Maybe that is the
> > default,
> > don't remember; I try not to rely on defaults).
> >
> > Like: guest account = nobody
> >
> > I assume your nobody user shows up if your do an `id nobody`
> > and a
> > `pdbedit --user=nobody`
> > --
> > OpenGroupware developer: awilliam at whitemice.org
> > <http://whitemiceconsulting.blogspot.com/>
> >
> > OpenGroupare & Cyrus IMAPd documenation @
> > <
> http://docs.opengroupware.org/Members/whitemice/wmogag/file_view>
> >
> > --
> >
> > To unsubscribe from this list go to the following URL and read
> > the
> > instructions: https://lists.samba.org/mailman/options/samba
> >
> >
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
>
More information about the samba
mailing list