[Samba] Samba4 binding LDAP Server

Harry Jede walk2sun at arcor.de
Mon Jun 2 12:05:29 MDT 2014

On 19:41:51 wrote steve:
> On Mon, 2014-06-02 at 18:55 +0200, Harry Jede wrote:
> > Am Montag, 2. Juni 2014 schrieb Danilo Mussolini:
> > 
> > Two errors:
> > 1. The sid from cn=mussolini,ou=groups,dc=o2pos,dc=com does not
> > match your sambadomainsid. So this group is never used by your
> > samba server.
> > 
> > 2. No groupmapping for group o2pos. This group is ignored by samba.
> > 
> > > > > > > Just to remember, this only happens in Samba4.
> Are you sure that this is the same db as you used for samba3? e.g.
> before any upgrade?
What upgrade? He is using samba in classic mode. No need to upgrade 
schema. In classic mode one *must* use samba3 schema. AD schema is 
unknown, no support for rfc2307bis, member/uniqemember just memberuid, 
and so on...

Sure, one my use rfc2307(bis) in nss instead of nis, but samba internal 
does not.

Try it. Setup samba 4.1.x in classic mode as PDC with openldap as 
ldapsam backend and use "net sam provision" to setup the builtin and 
domain groups. Will work with samba3 schema, will fail with AD schemas.

> Steve



	Harry Jede

More information about the samba mailing list