[Samba] samba3 pdc+ldap logon problem!
Hi, I can now successfuly add w2k computers to the samba domain, however when I reboot to log in, I am not able to. I get the error "The system could not log you on...". I havent found anything at all in the logs about why this is happening. Could it be related to a dns resolution error? I only have the pdc registered in a local LMHOSTS file on the w2k box. I have wins enabled on the PDC also, and it seems to be working... Any ideas? - David -- David Caplan Key fingerprint: AADC 53B6 D5FB 31FE E191 4E9A 8D5D 2952 9358 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] FIXED: samba3 PDC+ldap domain logon problem
Once again, I'm using samba 3.0.2a. The line in smb.conf that reads: ldap machine suffix = ou=Hosts (or it can be ou=Computers) has basically no effect. I think samba doesnt take it into account. When it looks for the registered computers in the domain, it was looking in the People group, not the computers group... so, if you are using the IDEALX scripts, and this version of samba, make sure that in smbldap_conf.pm has $computersou = q(People); Also, just in case, I made the ldap machine suffix line in smb.conf = to ou=People. It seems to work! :) Does anybody here know if this is a bug? or if its fixed in the latest versions? - David -- David Caplan Key fingerprint: AADC 53B6 D5FB 31FE E191 4E9A 8D5D 2952 9358 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] samba3 PDC+ldap domain logon problem
Hi, I've got an issue with a samba 3 PDC with an ldap backend. I get a logon failure (unknown username or bad password) when trying to add a win2k box to the domain. I'm using Mandrake with Samba 3.0.2a and openldap 2.1.22. I am able to set up the workgroup on the w2k box, and access folders for users registered in the ldap database, however I am not able to join the domain with the user Administrator. Any ideas on where I can look to find errors or test another way? (I cant find anything in the ldap logs or the samba logs). Please CC me any response, as I'm not subscribed to the list. Thanks. - David ---Some relevant smb.conf [global] ... username map = /etc/samba3/smbusers obey pam restrictions = No ldap passwd sync = yes passdb backend = ldapsam:ldap://127.0.0.1/ unix password sync = yes pam password change = yes passwd chat = *New*UNIX*password* %n\n *Retype*new*UNIX*password* %n\n *LDAP*password*information*changed*for*dcaplan*\n *passwd:*all*authentication*tokens*updated*successfully* ldap admin dn = cn=root,dc=cloudraker,dc=com ldap suffix = dc=cloudraker,dc=com ldap group suffix = ou=Group ldap user suffix = ou=People ldap machine suffix = ou=Hosts ldap idmap suffix = ou=People ldap ssl = off #ldap ssl = start tls add user script = /usr/bin/smbldap-useradd3 -m "%u" ldap delete dn = Yes delete user script = /usr/bin/smbldap-userdel3 "%u" add machine script = /usr/bin/smbldap-useradd3 -w "%u" add group script = /usr/bin/smbldap-groupadd3 -p "%g" #delete group script = /usr/bin/smbldap-groupdel3 "%g" add user to group script = /usr/bin/smbldap-groupmod3 -m "%u" "%g" delete user from group script = /usr/bin/smbldap-groupmod3 -x "%u" "%g" set primary group script = /usr/bin/smbldap-usermod3 -g "%g" "%u" os level = 65 security = user logon path = \\%L\profiles\%U logon drive = U: update encrypted = Yes encrypt passwords = yes domain master = yes domain logons = yes local master = yes preferred master = yes guest ok = no admin users = root Administrator #wins support = yes #wins proxy = yes -- David Caplan Key fingerprint: AADC 53B6 D5FB 31FE E191 4E9A 8D5D 2952 9358 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba