[Samba] Migration from 3.6.25-0ubuntu0.12.04.10 to 4.x with passdb backend = ldapsam
Rowland Penny
rpenny at samba.org
Tue Feb 20 11:25:16 UTC 2018
On Tue, 20 Feb 2018 13:29:56 +0300
Vladimir Skubriev via samba <samba at lists.samba.org> wrote:
> > ```
> > [global]
> >
> > workgroup = EXAMPLE
> > server string =
> > dns proxy = no
> >
> > interfaces = eth0
> > bind interfaces only = yes
> >
> > log file = /var/log/samba/log.%m
> > max log size = 1000
> >
> > # new options
> > log level = 5
> > netbios name = FILES
> > #panic action = /usr/share/samba/panic-action %d
> > server role = STANDALONE SERVER
> >
> > local master = no
> >
> > security = user
> > encrypt passwords = true
> >
> > #passdb backend = tdbsam
> > #obey pam restrictions = yes
> > passdb backend = ldapsam:"ldap://ldap/"
> > ldapsam:trusted=yes
> > ldapsam:editposix=yes
> >
OK, took a bit of time, but I think I understand what your problem is,
you want a standalone server with an ldap backend, BUT you have these
lines in smb.conf:
ldapsam:editposix = yes
ldapsam:trusted = yes
These lines make Samba expect ldap to be set up as a PDC, it expects
'Domain Users' etc to exist, which they wont be on a standalone server.
see here for an ldap/standalone server:
http://lapsz.eu/blog/2013/09/04/standalone-samba-server-with-ldap-authentication/
Rowland
More information about the samba
mailing list