[Samba] samba 3.4.2 centos with ldap 2.4.11 stucks

Kent Nasveschuk knasveschuk at mbl.edu
Thu Oct 15 07:35:22 MDT 2009 

I have the same setup Centos5.3, Samba3.4.2, OpenLDAP 2.4.11 (running on 127.0.0.1). Those entries show up in individual machine logs, there are no problems that I can see between OpenLDAP and Samba. 

smb.conf: 
... 
log file = /opt/samba-3.4.2/var/log/samba.%m 
... 

Kent 

----- Original Message ----- 
From: "Martin Hochreiter" <linuxbox at wavenet.at> 
To: samba at lists.samba.org 
Sent: Thursday, October 15, 2009 8:51:25 AM GMT -05:00 US/Canada Eastern 
Subject: [Samba] samba 3.4.2 centos with ldap 2.4.11 stucks 

Hi! 

We are using Samba 3.4.2 from sernet on a centos 5.3 box with 
ldap 2.4.11 as db. 

I have very heavy problems with the smbd daemon. 
If I set the smb.conf to the local ldap 
via ldapsam:ldap://127.0.0.1 or just ldapsam 

# LDAP SETTINGS 
ldap admin dn="uid=Admin,ou=Users,dc=xxx,dc=xxx" 
ldap ssl = no 
passdb backend = ldapsam:ldap://127.0.0.1 
ldap delete dn = no 
ldap user suffix = ou=Users 
ldap group suffix = ou=Groups 
ldap machine suffix = ou=Clients 
ldap suffix = dc=fh-stpoelten,dc=ac.at 
ldap passwd sync = yes 

the smbd daemon stucks while connecting to it (see "non working log") 
I have to kill -9 the daemons 

If I use the same 3.4.2 ldap externally from a similar centos 5.3 machine 
the the connection works without problems (see "working log") 

You can query the local ldap with the ldaptools in various ways and you 
get the correct response (with the credentials stored to the .tdb) 

- does anyone has a hint for me? 

regards 
Maritn 





Non working log (debug 2): 


[2009/10/15 14:42:59, 2] smbd/server.c:676(smbd_parent_loop) 
waiting for connections 
[2009/10/15 14:43:02, 2] smbd/sesssetup.c:1360(setup_new_vc_session) 
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close 
all old resources. 
[2009/10/15 14:43:02, 2] lib/smbldap.c:856(smbldap_open_connection) 
smbldap_open_connection: connection opened 
[2009/10/15 14:43:02, 2] passdb/pdb_ldap.c:571(init_sam_from_ldap) 
init_sam_from_ldap: Entry found for user: nsc 
[2009/10/15 14:43:02, 2] passdb/pdb_ldap.c:2353(init_group_from_ldap) 
init_group_from_ldap: Entry found for group: 999 
[2009/10/15 14:43:02, 2] passdb/pdb_ldap.c:2353(init_group_from_ldap) 
init_group_from_ldap: Entry found for group: 999 
[2009/10/15 14:43:02, 2] passdb/pdb_ldap.c:2353(init_group_from_ldap) 
init_group_from_ldap: Entry found for group: 999 
[2009/10/15 14:43:02, 2] passdb/pdb_ldap.c:2353(init_group_from_ldap) 
init_group_from_ldap: Entry found for group: 1003 
[2009/10/15 14:43:02, 2] auth/auth.c:310(check_ntlm_password) 
check_ntlm_password: authentication for user [nsc] -> [nsc] -> [nsc] 
succeeded 






Working log (debug 2): 


[2009/10/15 14:45:41, 2] smbd/sesssetup.c:1360(setup_new_vc_session) 
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close 
all old resources. 
[2009/10/15 14:45:41, 2] lib/smbldap.c:856(smbldap_open_connection) 
smbldap_open_connection: connection opened 
[2009/10/15 14:45:41, 2] passdb/pdb_ldap.c:571(init_sam_from_ldap) 
init_sam_from_ldap: Entry found for user: nsc 
[2009/10/15 14:45:41, 2] passdb/pdb_ldap.c:2353(init_group_from_ldap) 
init_group_from_ldap: Entry found for group: 999 
[2009/10/15 14:45:41, 2] passdb/pdb_ldap.c:2353(init_group_from_ldap) 
init_group_from_ldap: Entry found for group: 999 
[2009/10/15 14:45:41, 2] passdb/pdb_ldap.c:2353(init_group_from_ldap) 
init_group_from_ldap: Entry found for group: 999 
[2009/10/15 14:45:41, 2] passdb/pdb_ldap.c:2353(init_group_from_ldap) 
init_group_from_ldap: Entry found for group: 1003 
[2009/10/15 14:45:41, 2] auth/auth.c:310(check_ntlm_password) 
check_ntlm_password: authentication for user [nsc] -> [nsc] -> [nsc] 
succeeded 
[2009/10/15 14:45:41, 2] passdb/pdb_ldap.c:2353(init_group_from_ldap) 
init_group_from_ldap: Entry found for group: 998 
[2009/10/15 14:45:41, 2] passdb/pdb_ldap.c:571(init_sam_from_ldap) 
init_sam_from_ldap: Entry found for user: Admin 
[2009/10/15 14:45:41, 2] passdb/pdb_ldap.c:571(init_sam_from_ldap) 
init_sam_from_ldap: Entry found for user: Admin 
[2009/10/15 14:45:41, 1] smbd/service.c:1047(make_connection_snum) 
10.222.0.240 (10.222.0.240) connect to service netlogon initially as 
user nsc (uid=1746, gid=999) (pid 3061) 
-- 
To unsubscribe from this list go to the following URL and read the 
instructions: https://lists.samba.org/mailman/options/samba

More information about the samba mailing list