[Samba] objectClass:posixAccount missing

Luca Olivetti luca at wetron.es
Wed Aug 28 12:05:27 MDT 2013 

Al 28/08/13 19:30, En/na steve ha escrit:
> On Wed, 2013-08-28 at 19:15 +0200, Luca Olivetti wrote:
> 
>>
>>
>> Without the filter
>>
>>
>> $ id aimaretti
>> uid=1234(aimaretti) gid=513(Domain Users) grups=513(Domain
>> Users),675(intranet),676(portal),507(devel)
>> $ id pruebaunix
>> id: pruebaunix: l’usuari no existeix
>> $ LC_ALL=en id pruebaunix
>> id: pruebaunix: no such user
> 
> Hi
> OK then, so just compare the DN of aimaretti with that of pruebauinx.
> 
> Post them here if you like:

OK, but just to avoid you the hassle to compare the two, here is a
summary of the differences:

* pruebaunix is missing the posixAccount objectClass, the description
and homeDrive (though I don't think the last two are what's causing the
problem and the missing posixAccount is normal AD behavior)

* pruebaunix has the following fields not present in aimaretti:
    -givenName
    -msSFU3OName
    -sn
    -uid
    -unixUserPassword
    -userPrincipalName

  >
> ldbsearch --url=/usr/local/samba/private/sam.ldb cn=aimaretti

# record 1
dn: CN=aimaretti,CN=Users,DC=wetron,DC=es
cn: aimaretti
instanceType: 4
whenCreated: 20130816222436.0Z
whenChanged: 20130816222436.0Z
uSNCreated: 5300
name: aimaretti
objectGUID: cf69597e-c29e-4734-8fee-0c5f261593b9
badPwdCount: 0
codePage: 0
countryCode: 0
badPasswordTime: 0
lastLogoff: 0
lastLogon: 0
primaryGroupID: 513
objectSid: S-1-5-21-1375475485-2168029398-3937786652-3468
accountExpires: 9223372036854775807
logonCount: 0
sAMAccountName: aimaretti
sAMAccountType: 805306368
objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=wetron,DC=es
pwdLastSet: 129115956830000000
displayName: Alberto Aimaretti
homeDrive: U:
logonHours:: ////////////////////////////
userAccountControl: 512
description: Usuario Wetron
uidNumber: 1234
objectClass: top
objectClass: posixAccount
objectClass: person
objectClass: organizationalPerson
objectClass: user
unixHomeDirectory: /home/aimaretti
loginShell: /bin/false
gidNumber: 513
msSFU30NisDomain: wetron
uSNChanged: 5304
memberOf: CN=devel,CN=Users,DC=wetron,DC=es
memberOf: CN=intranet,CN=Users,DC=wetron,DC=es
memberOf: CN=portal,CN=Users,DC=wetron,DC=es
distinguishedName: CN=aimaretti,CN=Users,DC=wetron,DC=es

# Referral
ref: ldap://wetron.es/CN=Configuration,DC=wetron,DC=es

# Referral
ref: ldap://wetron.es/DC=DomainDnsZones,DC=wetron,DC=es

# Referral
ref: ldap://wetron.es/DC=ForestDnsZones,DC=wetron,DC=es

# returned 4 records
# 1 entries
# 3 referrals


> and
> ldbsearch --url=/usr/local/samba/private/sam.ldb cn=pruebaunix

# Referral
ref: ldap://wetron.es/CN=Configuration,DC=wetron,DC=es

# Referral
ref: ldap://wetron.es/DC=DomainDnsZones,DC=wetron,DC=es

# Referral
ref: ldap://wetron.es/DC=ForestDnsZones,DC=wetron,DC=es

# returned 3 records
# 0 entries
# 3 referrals

(oops, I forgot that this user has a space in the cn, and, no, that's
not the problem, I have other users without a space in the cn, don't
mind the OU, it was an unrelated test, other users under CN=Users work
the same)

$ sudo /usr/local/samba/bin/ldbsearch
--url=/usr/local/samba/private/sam.ldb cn="prueba unix"
# record 1
dn: CN=prueba unix,OU=kk,DC=wetron,DC=es
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: user
cn: prueba unix
sn: unix
givenName: prueba
instanceType: 4
whenCreated: 20130827101804.0Z
uSNCreated: 7219
name: prueba unix
objectGUID: deb50617-08a6-4c98-8d81-73c0134514ee
badPwdCount: 0
codePage: 0
countryCode: 0
badPasswordTime: 0
lastLogoff: 0
lastLogon: 0
primaryGroupID: 513
objectSid: S-1-5-21-1375475485-2168029398-3937786652-4011
accountExpires: 9223372036854775807
logonCount: 0
sAMAccountName: pruebaunix
sAMAccountType: 805306368
userPrincipalName: pruebaunix at wetron.es
objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=wetron,DC=es
pwdLastSet: 130220722840000000
userAccountControl: 512
msSFU30Name: pruebaunix
unixUserPassword: ABCD!efgh12345$67890
uid: pruebaunix
msSFU30NisDomain: wetron
loginShell: /bin/sh
unixHomeDirectory: /home/pruebaunix
uidNumber: 10069
displayName: pruebaunix
gidNumber: 513
memberOf: CN=intranet,CN=Users,DC=wetron,DC=es
memberOf: CN=brmuestra,CN=Users,DC=wetron,DC=es
whenChanged: 20130828004001.0Z
uSNChanged: 7249
distinguishedName: CN=prueba unix,OU=kk,DC=wetron,DC=es

# Referral
ref: ldap://wetron.es/CN=Configuration,DC=wetron,DC=es

# Referral
ref: ldap://wetron.es/DC=DomainDnsZones,DC=wetron,DC=es

# Referral
ref: ldap://wetron.es/DC=ForestDnsZones,DC=wetron,DC=es

# returned 4 records
# 1 entries
# 3 referrals


Bye
-- 
Luca Olivetti
Wetron Automation Technology http://www.wetron.es
Tel. +34 935883004  Fax +34 935883007

More information about the samba mailing list