[Samba] [SAMBA] Net groupmap list strange result

Elias Pereira empbilly at gmail.com
Mon Dec 22 12:02:41 MST 2014 

Hi, i'm running the samba as "classic primary domain controller" in my lab
test.

In my lab tests, at first everything seems to be working properly.

1. I set the Samba4 as "classic primary domain controller." *smb.conf in
the pastebin link*.
2. I set up an external ldap, with the equal ldif base what we have in
production here on campus.
3. I set up an bind9 as DNS server.

I tried to enter a machine with windows xp in the domain. When was shown
the login and password window, I put the login and password of a user who
is in the ldap base, and there was the error that the "Error while trying
to domain join "poa" Logon failure: unknown user name or bad password".

So, I tried a few things, but without success.

When I tried to run the commands mentioned above, as seen, more mistakes
happen. :(

http://pastebin.com/raw.php?i=3mUJB9fA

On Mon, Dec 22, 2014 at 4:41 PM, Rowland Penny <rowlandpenny at googlemail.com>
wrote:

> On 22/12/14 17:47, Elias Pereira wrote:
>
>> And now, I run the command "samba-tool user list" and the result is as
>> follows:
>>
>> *# samba-tool user list*
>> *ldb_wrap open of secrets.ldb*
>> *Could not find machine account in secrets database: Failed to fetch
>> machine account password from secrets.ldb: Could not find entry to match
>> filter: '(&(flatname=POA)(objectclass=primaryDomain))' base: 'cn=Primary
>> Domains': No such object: (null) and failed to fetch
>> SECRETS/MACHINE_PASSWORD/POA from /var/lib/samba/private/secrets.tdb:
>> NT_STATUS_CANT_ACCESS_DOMAIN_INFO*
>> *ERROR(ldb): uncaught exception - ldb_search: invalid basedn '(null)'*
>> *  File "/usr/lib/python2.7/dist-packages/samba/netcmd/__init__.py", line
>> 175, in _run*
>> *    return self.run(*args, **kwargs)*
>> *  File "/usr/lib/python2.7/dist-packages/samba/netcmd/user.py", line
>> 271,
>> in run*
>> *    attrs=["samaccountname"])*
>>
>>
>>
>>
>> On Mon, Dec 22, 2014 at 12:05 PM, Elias Pereira <empbilly at gmail.com>
>> wrote:
>>
>>  Guys,
>>>
>>> In my lab test when I run the command "net groupmap list" the result is
>>> as
>>> follows:
>>>
>>> *# net groupmap list*
>>> *Domain Admins (S-1-5-21-187220369-3628530160-3539241734-512) -> 512*
>>> *Domain Users (S-1-5-21-187220369-3628530160-3539241734-513) -> 513*
>>> *Domain Guests (S-1-5-21-187220369-3628530160-3539241734-514) -> 514*
>>> *Domain Computers (S-1-5-21-187220369-3628530160-3539241734-515) -> 515*
>>>
>>>
>>> I believe that would have to be like this:
>>>
>>> *# net groupmap list*
>>> *Domain Admins (S-1-5-21-187220369-3628530160-3539241734-512) -> Domain
>>> Admins*
>>> *Domain Users (S-1-5-21-187220369-3628530160-3539241734-513) -> Domain
>>> Users*
>>> *Domain Guests (S-1-5-21-187220369-3628530160-3539241734-514) -> Domain
>>> Guests*
>>> *Domain Computers (S-1-5-21-187220369-3628530160-3539241734-515) ->
>>> Domain
>>> Computers*
>>>
>>>
>>> Any idea what could have happened?
>>>
>>> Att.
>>> --
>>> Elias Pereira
>>>
>>>
>>
>>
> Hi, could you provide a bit more info, how are you running samba, what
> version and what is in your smb.conf.
>
> Rowland
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>



-- 
Elias Pereira

More information about the samba mailing list