On Tue, May 01, 2007 at 02:49:10AM -0500, Don Meyer wrote:
[...]
> Then I traced the secret retrieval process back to passdb/secrets.c,
> where I then traced the secrets_store_generic function back out to
> the 'net idmap secret' command. For others reference, to set the
> ldap_user_dn password for each defined domain, and for the idmap
> alloc config side, you use the following commands:
>
> net idmap secret <DOMAIN> <secret>
> net idmap secret alloc <secret>
>
>
> (Note: A little pointer dropped in the man page for idmap_ldap would
> have been quite helpful here...)
There is a note in the man pages that say:
NOTE
In order to use authentication against ldap servers you may need to
provide a DN and a password. To avoid exposing the password in plain
text in the configuration file we store it into a security store. The
"net idmap " command is used to store a secret for the DN specified in a
specific idmap domain.
From:
http://www.samba.org/samba/docs/man/manpages-3/idmap_ldap.8.html
[..]
> I'm having trouble tracing this beyond the idmap_init function in
> nsswitch/idmap.c.
>
>
> If this points to a problem in samba, I hope this helps. On the
> other hand, if this is a problem in my setup, any pointers in the
> direction of fixing it would be greatly appreciated.
A core dump is definitively an issue, I will try to reproduce and fix it
today on my train trip or at worst tomorrow.
Simo.
--
Simo Sorce [EMAIL PROTECTED]
-------------------------------
Samba Team http://www.samba.org
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
