[Samba] Cannot bind to AD using nslcd

Rob Mason rob.mason at acasta.co.uk
Wed Nov 19 10:45:22 MST 2014

A little further forward!  I've re-provisioned the domain and re-created
the new 'nslcd-connect' user just to be sure.

'binddn' is now working - but is complaining about 'uidNumber'. I think
this is now just a mapping issue.  Anyone??

nslcd: [495cff] <passwd(all)> DEBUG:
nslcd: [495cff] <passwd(all)> DEBUG: ldap_result():
nslcd: [495cff] <passwd(all)>
CN=Administrator,CN=Users,DC=acasta,DC=intra: uidNumber: missing
nslcd: [495cff] <passwd(all)> DEBUG: ldap_result():
nslcd: [495cff] <passwd(all)>
CN=nslcd-connect,CN=Users,DC=acasta,DC=intra: uidNumber: missing
nslcd: [495cff] <passwd(all)> DEBUG: ldap_result():
nslcd: [495cff] <passwd(all)> CN=krbtgt,CN=Users,DC=acasta,DC=intra:
uidNumber: missing
nslcd: [495cff] <passwd(all)> DEBUG: ldap_result():
nslcd: [495cff] <passwd(all)> CN=Guest,CN=Users,DC=acasta,DC=intra:
uidNumber: missing
nslcd: [495cff] <passwd(all)> DEBUG: ldap_result(): end of results (4 total)

The full nslcd.conf is here:

uid nslcd
gid nslcd
uri ldap://kepler.acasta.intra/
base CN=Users,DC=acasta,DC=intra
binddn CN=nslcd-connect,CN=Users,DC=acasta,DC=intra
bindpw xxxxxxxx
pagesize 1000
referrals off
filter  passwd  (objectClass=user)
filter  group   (objectClass=group)
map     passwd  uid                sAMAccountName
map     passwd  homeDirectory      unixHomeDirectory
map     passwd  gecos              displayName
map     passwd  gidNumber          primaryGroupID
map     passwd  uidNumber          uidNumber
#map     group   uniqueMember       member

More information about the samba mailing list