samba_3_0+ldapsam_nua: creating machine trust accounts fails
Alex Deiter
tiamat at komi.mts.ru
Fri Apr 25 12:21:35 GMT 2003
Hi!
With samba samba-3.0a23 i'm unable to create new Machine Trust Accounts with
ldapsam_nua.
# smbpasswd -D 5 -a -m pc-new
Netbios name list:-
my_netbios_names[0]="SANDRA"
Trying to load: ldapsam_nua
Attempting to find an passdb backend to match ldapsam_nua (ldapsam_nua)
Found pdb backend ldapsam_nua (at pos 5)
pdb backend ldapsam_nua has a valid init
ldapsam_search_one_user: searching
for:[(&(uid=pc-new$)(objectclass=sambaAccount))]
ldapsam_open_connection: connection opened
ldap_connect_system: succesful connection to the LDAP server
The LDAP server is succesful connected
We don't find this user [pc-new$] count=0
ldapsam_search_one_user: searching
for:[(&(uid=pc-new$)(objectclass=sambaAccount))]
ldapsam_open: allready connected to the LDAP server
ldapsam_search_one_user: searching for:[uid=pc-new$]
ldapsam_open: allready connected to the LDAP server
Adding new user
Setting entry for user: pc-new$
ldapsam_get_next_available_nua_rid: searching
for:[(&(uid=*)(objectclass=sambaAccount))]
ldapsam_open: allready connected to the LDAP server
search_top_nua_rid: 3 entries in the base!
Entry found for user: tiamat
Entry found for user: test
Entry found for user: pc-install$
ldapsam_search_one_user: searching for:[rid=7002]
ldapsam_open: allready connected to the LDAP server
NUA RID 7002 (0x1b5a), declared valid
ldapsam_open: allready connected to the LDAP server
failed to add user dn= uid=pc-new$,ou=computers,dc=komi,dc=mts,dc=ru with:
Object class violation
object class 'sambaAccount' requires attribute 'rid'
failed to modify/add user with uid = pc-new$ (dn =
uid=pc-new$,ou=computers,dc=komi,dc=mts,dc=ru)
Failed to add entry for user pc-new$.
Failed to modify password entry for user pc-new$
smb.conf:
[global]
passdb backend = ldapsam_nua
non unix account range = 3000-3100
ldap delete dn = yes
ldap admin dn = cn=root,dc=komi,dc=mts,dc=ru
ldap server = localhost
ldap port = 389
ldap ssl = No
ldap suffix = dc=komi,dc=mts,dc=ru
ldap machine suffix = ou=computers
ldap user suffix = ou=users
workgroup = KOMI
guest account = nobody
log file = /var/log/samba/%m.log
lock directory = /var/run/samba
pid directory = /var/run
log level = 1
security = user
encrypt passwords = yes
local master = yes
os level = 133
domain master = yes
preferred master = yes
domain logons = yes
Thanks!
More information about the samba-technical
mailing list