[Samba] How to bind properly to Samba4 LDAP server?

Michael Wood esiotrot at gmail.com
Fri Dec 17 17:04:42 MST 2010


On 17 December 2010 14:33, dobrimaros at yahoo.pl <dobrimaros at yahoo.pl> wrote:
> Hello all,
> This is my second approach to make a script which will be used to Samba4 users management.
> As I wrote in my previous mail, I have no problems to read records from LDAP, and that's because It could happen without bind process.
> Problem is when I try to write or modify something to LDAP.
> Here is my simple script written in Perl: http://pastebin.com/eF0hh5Ee
> After adding some debugging options, this is what I get when trying to run it: http://pastebin.com/2py5EixU
> Bind process returns: Simple Bind Failed : NT_STATUS_LOGON_FAILURE
> When trying to add a record: error in module acl: insufficient access rights (50)
> Please give me a clue how to bind properly to Samba4 LDAP server. Maybe should I use SASL authentication? If yes, with which mechanism?

The following might give you a hint, but not sure how you would do it
from perl code:

$ kinit user
user at EXAMPLE.COM's Password:
$ ldapsearch -Y GSSAPI sAMAccountName=user

> Thats very important to me. I will be very grateful for helping me.
> Greetings,
> Mark Felskowski

Michael Wood <esiotrot at gmail.com>

More information about the samba mailing list