[Samba] Samba 3.4.7 with LDAP authentication

Amit More amore at xetus.com
Thu Oct 6 15:55:32 MDT 2011


the output of  `pdbedit -L` is 

doing parameter security = user
doing parameter encrypt passwords = true
doing parameter passdb backend = ldapsam:ldap://ldap1.xetus.com/
doing parameter ldap admin dn = cn=root,dc=xetus,dc=com
doing parameter ldap user suffix = ou=people
doing parameter ldap group suffix = ou=groups
doing parameter ldap machine suffix = ou=people
doing parameter ldap suffix = dc=xetus,dc=com
doing parameter ldap ssl = no
doing parameter obey pam restrictions = yes
doing parameter unix password sync = yes
doing parameter passwd program = /usr/bin/passwd %u
doing parameter passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
doing parameter pam password change = yes
doing parameter map to guest = bad user
doing parameter usershare allow guests = yes
pm_process() returned Yes
smbldap_search_domain_info: Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=FILESERVER))]
smbldap_open_connection: connection opened
ldap_connect_system: successful connection to the LDAP server
The LDAP server is successfully connected
smbldap_search_paged: base => [dc=xetus,dc=com], filter => [(&(uid=*)(objectclass=sambaSamAccount))],scope => [2], pagesize => [1024]
smbldap_search_paged: search was successful
User Search failed!

On Oct 6, 2011, at 2:38 PM, Miguel Medalha wrote:

> 
>> [2011/10/06 13:48:38,  4] passdb/pdb_ldap.c:1600(ldapsam_getsampwnam)
>>   ldapsam_getsampwnam: Unable to locate user [amore] count=0
>> [2011/10/06 13:48:38,  3] auth/auth_sam.c:282(check_sam_security)
>>   check_sam_security: Couldn't find user 'amore' in passdb.
>> [2011/10/06 13:48:38,  2] auth/auth.c:320(check_ntlm_password)
>>   check_ntlm_password:  Authentication for user [amore] ->  [amore] FAILED with error NT_STATUS_NO_SUCH_USER
>> [2011/10/06 13:48:38,  3] smbd/sesssetup.c:42(do_map_to_guest)
>>   No such user amore [FILESERVER] - using guest account
>> [2011/10/06 13:48:38,  4] passdb/pdb_ldap.c:2550(ldapsam_getgroup)
>>   ldapsam_getgroup: Did not find group, filter was (&(objectClass=sambaGroupMapping)(gidNumber=65534))
> 
> Are you sure that the LDAP database is correct? Are the user and group names in the correct places?
> 
> What is the output of "pdbedit -L" ?



More information about the samba mailing list