[Samba] migrate samba3 with smpbassword to ldap , problem with machine account
arnaud plessix
arnaud.plessix at free.fr
Thu Dec 1 01:18:47 MST 2011
Hello,
I want to migrate a server from redhat9 with samba (3.0.11) using
smbpasswd file to regiter account to ubuntu server (8.04 hardy hearon)
with ldap (samba 3.4.5).
First I have got the original sid and modify i for all entries in ldap
To migrate machine account I insert in ldap id and NTPassword found in
smbpasswd.
Example:
testsige3$:1786:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:7CF3CEDCE1B18645345D30CE16402FEE:[W
]:LCT-4ECB6768:
so I add this in my ldap
dn:
uid=testsige3$,ou=ordinateurs,ou=ressources,ou=0929999u,ou=ac-versailles,o
u=education,o=gouv,c=fr
objectClass: top
objectClass: account
objectClass: posixAccount
objectClass: sambaSamAccount
cn: testsige3$
uid: testsige3$
uidNumber: 1786
gidNumber: 515
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer
gecos: Computer
sambaAcctFlags: [W ]
sambaSID: S-1-5-21-1187454690-116783985-3613760195-1786
sambaPrimaryGroupSID: S-1-5-21-1187454690-116783985-3613760195-515
displayName: TESTSIGE3$
structuralObjectClass: account
sambaNTPassword: 7CF3CEDCE1B18645345D30CE16402FEE
sambaPwdLastSet: 1321971582
Users accounts are migrated but not machines accounts> Can't found
domain at loggin prompt.
You can see logs jointed to this message:
testsige3.log (http://pastebin.com/61BLTXgs) is the log of the machine
account copy (failed loggin) and porta.log
(http://pastebin.com/e5jnCFsC) is the log of the same machine renamed
and inserted in samba migrated domain (success loggin).
I have about 250 machine accounts with local user's profil so I would
like not have to change domain for each machine.
Arnaud
More information about the samba
mailing list