[Samba] Unable to provision with openldap/samba4: pdc_fsmo_init: no domain object present

Francesco Malvezzi francesco.malvezzi at unimore.it
Mon Feb 15 02:24:42 MST 2010 

I was trying to follow howto at
http://wiki.samba.org/index.php/Samba4/LDAP_Backend/OpenLDAP
with today's source (15 february 2010)
(latest commit: 6ec6fa0ac4e71f9b14a3cbfef328d50e321b0544)

./configure --enable-developer worked as well as make && make install.

Provision fails:

./setup/provision --realm=unimore.it --ldapadminpass=atmlite
--ldap-backend-type=openldap --server-role='domain controller'
--domain=ateneo --targetdir=setup/ --slapd-path=/usr/local/libexec/slapd
Administrator password will be set randomly!
Failed to bind - LDAP client internal error:
NT_STATUS_UNEXPECTED_NETWORK_ERROR
Failed to connect to
'ldapi://%2Fopt%2Fsrc%2Fsamba%2Fsource4%2Fsetup%2Fprivate%2Fldap%2Fldapi'
Setting up secrets.ldb
Setting up the registry
Setting up the privileges database
Setting up idmap db
Setting up SAM db
Setting up sam.ldb partitions and settings
Setting up sam.ldb rootDSE
Pre-loading the Samba 4 and AD schema
Adding DomainDN: DC=unimore,DC=it
pdc_fsmo_init: no domain object present: (skip loading of domain details)

Traceback (most recent call last):
  File "./setup/provision", line 245, in <module>
    nosync=opts.nosync,ldap_dryrun_mode=opts.ldap_dryrun_mode,useeadb=eadb)
  File "bin/python/samba/provision.py", line 1326, in provision
    dom_for_fun_level=dom_for_fun_level)
  File "bin/python/samba/provision.py", line 957, in setup_samdb
    "SAMBA_VERSION_STRING": version
  File "bin/python/samba/provision.py", line 261, in setup_modify_ldif
    ldb.modify_ldif(data)
  File "bin/python/samba/__init__.py", line 261, in modify_ldif
    self.modify(msg, controls)
_ldb.LdbError: (1, 'LDAP client internal error: NT_STATUS_INTERNAL_ERROR')
A transaction is still active in ldb context [0x9d3af28] on
/opt/src/samba/source4/setup/private/secrets.ldb

I would like to raise your attention to the first error:
NT_STATUS_UNEXPECTED_NETWORK_ERROR
Failed to connect to
'ldapi://%2Fopt%2Fsrc%2Fsamba%2Fsource4%2Fsetup%2Fprivate%2Fldap%2Fldapi'

which looks untrue to me:

ldapsearch -x -H
ldapi://%2Fopt%2Fsrc%2Fsamba%2Fsource4%2Fsetup%2Fprivate%2Fldap%2Fldapi
# extended LDIF
#
# LDAPv3
# base <dc=unimore,dc=it> (default) with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#

# search result
search: 2
result: 32 No such object

# numResponses: 1

(empty resultset looks ok for an empty directory, ad before provision it
should be)

What I'm doing wrong? Is it possible to set a domain different from
realm (ateneo as domain, unimore.it as realm)? After each failed
provision, should I do something special (rm -rf setup/private or the like)?

Thank you for your time,

Francesco

More information about the samba mailing list