[Samba] samba ldap
Kaushal Shriyan
kaushalshriyan at gmail.com
Thu Oct 29 01:32:21 MDT 2009
On Thu, Oct 29, 2009 at 12:13 AM, Dale Schroeder
<dale at briannassaladdressing.com> wrote:
>
> Dale Schroeder
> Technical Issues
> Del Sol Food Company, Inc.
> (979)836-5978(979) 836-5978
>
>
> Kaushal Shriyan wrote:
>
> On Wed, Oct 28, 2009 at 11:44 PM, Dale Schroeder
> <dale at briannassaladdressing.com> wrote:
>
>
> Kaushal Shriyan wrote:
>
> Hi,
>
> I am following https://help.ubuntu.com/8.10/serverguide/C/samba-ldap.html
> and ldap works perfectly fine.
> I have issues with connecting to ldap from samba.
>
> I get
>
> [2009/10/27 12:37:28, 1] lib/smbldap.c:another_ldap_try(1153)
> Connection to LDAP server failed for the 9 try!
> [2009/10/27 12:37:29, 2] lib/smbldap.c:smbldap_open_connection(786)
> smbldap_open_connection: connection opened
> [2009/10/27 12:37:29, 2] lib/smbldap.c:smbldap_connect_system(982)
> failed to bind to server ldap://localhost/ with
> dn="cn=admin,dc=webaroo,dc=com" Error: Can't contact LDAP server
> (unknown)
>
> I have ldapserver running on the same server as samba server is
> running. when i run ldapsearch -x -H ldaps://localhost. I am able to
> see the user details.
> Please let me know if anyone needs configs and additional information.
> Also when i run smbldap-populate, i get
> http://paste.ubuntu.com/302630/
>
> Thanks,
>
> Kaushal
>
>
>
>
>
>
> Hi,
>
>
> I see you're using encryption. All of that is beyond me, as my setup is
> plain.
> Still, I noticed some inconsistencies and 1 probable error. I pasted each
> suspicious
> value below its pastebin link.
>
> Below are my configs.
>
>
> Notice below that you have different values for the ldap admin user.
> Twice you have cn=admin.
> Once you have dc=admin.
>
> http://pastebin.com/dcb24c87 ---> ldap.conf
> http://pastebin.com/d721f0d4d ---> slapd.conf
>
>
> rootdn "cn=admin,dc=example,dc=com"
>
> http://pastebin.com/d102cbfc5 --->samba.conf
>
>
> ldap admin dn = cn=admin,dc=example,dc=com
> ldap suffix = dc=example,dc=com (compare this line with what you put in
> smbldap.conf)
>
> http://pastebin.com/d4a02b874 --> smbldap.conf
>
>
> suffix="dc=admin,dc=example,dc=com" (compare to smb.conf)
> Probably should not have the dc=admin part.
> Because of all the ${suffix} entries, this would propagate throughout the
> "ou" entries.
>
> http://pastebin.com/d716fddc0 ---> smbldap_bind.conf
>
>
> masterDN="dc=admin,dc=example,dc=com"
>
> If the problem lies with ldaps/ssl rather than my observations, then someone
> far more knowledgeable than me will have to find it.
>
> Dale
>
>
> Hi Dale
>
> I have set it correctly in smbldap.conf and smbldap_bind.conf
>
> cn=admin,dc=webaroo,dc=com
>
> I get http://pastebin.com/d6d35247f
>
> Please suggest/guide.
>
>
> Did you try changing the value in smbldap.conf from
>
> suffix="dc=admin,dc=example,
> dc=com"
>
> to
>
> suffix="dc=example,dc=com"
>
> (removing "dc=admin")?
>
> The error message seems to indicate you did not.
>
> adding new entry: ou=Users,cn=admin,dc=example,dc=com
>
> Dale
>
> Thanks,
>
> Kaushal
>
>
Hi Dale,
I get http://pastebin.com/d47ac4bd9
Thanks,
Kaushal
More information about the samba
mailing list