[Samba] problems with passwd program =
Hi, Thank you so much for your reply. I've changed my configuration: encrypt passwords = yes unix password sync = Yes passwd chat debug = yes passwd level = 2 passwd program = /usr/sbin/smbldap-passwd -s %u passwd chat = *old*password* %o\n *new*password* %n\n *new*password* %n\n *changed* But now I get a weird error which I do not understand, the case is when I try to change the password through windows xp appears a warning which says: you do not have permissions to change your password and on the log file I can see: check_ntlm_password: authentication for user [fred] - [fred] - [fred] succeeded [2011/03/22 17:47:18.890451, 2] passdb/pdb_ldap.c:572(init_sam_from_ldap) init_sam_from_ldap: Entry found for user: fred [2011/03/22 17:47:18.894130, 2] passdb/pdb_ldap.c:2446(init_group_from_ldap) init_group_from_ldap: Entry found for group: 1004 [2011/03/22 17:47:20.893790, 2] smbd/chgpasswd.c:308(expect) expect: NT_STATUS_IO_TIMEOUT [2011/03/22 17:47:20.939531, 2] passdb/pdb_ldap.c:572(init_sam_from_ldap) init_sam_from_ldap: Entry found for user: fred [2011/03/22 17:47:20.947319, 2] passdb/pdb_ldap.c:2446(init_group_from_ldap) init_group_from_ldap: Entry found for group: 1004 [2011/03/22 17:47:23.801991, 2] smbd/chgpasswd.c:308(expect) expect: NT_STATUS_IO_TIMEOUT and this user has the attribute set to 1: sambaPwdCanChange I will appreciate any thoughts !! I was trying to adapt the perl script smbldap-passwd to allow to my clients to change his/her password in another application of my company. Seems that the smbldap-passwd is not executed and I do not know why. the configuration I use is below: encrypt passwords = yes ldap password sync = Yes passwd chat debug = yes passwd level = 2 passwd program = /usr/sbin/smbldap-passwd -s %u passwd chat = *old*password* %o\n *new*password* %n\n *new*password* %n\n *changed* If you set ldap password sync = yes, Samba directly changes userPassword attribute and any script defined at passwd program iss never called. To change LDAP password with a script such as smbldap-passwd, try to set unix password sync = yes and to remove ldap password sync = yes. --- TAKAHASHI Motonobu mo...@monyo.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] problems with passwd program =
Hi all ! I was trying to adapt the perl script smbldap-passwd to allow to my clients to change his/her password in another application of my company. Seems that the smbldap-passwd is not executed and I do not know why. Currently they are able to change the password but for sure it is not through smbldap-passwd since I added a flag line on this script to check it as system('touch test'); after to change the password through windows xp box the test file is not created on the samba server /usr/sbin. the configuration I use is below: encrypt passwords = yes ldap password sync = Yes passwd chat debug = yes passwd level = 2 passwd program = /usr/sbin/smbldap-passwd -s %u passwd chat = *old*password* %o\n *new*password* %n\n *new*password* %n\n *changed* Does anyone understand why smbldap-passwd is not invoked and why instead of that is invoked passwd? I will appreciate so much any help and thoughts :) Thank you so much in advance ! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] WINS server 127.0.0.1 timed out registering IP
Hi Daniel, Thank you for your answer. I tried your suggestion and it works. The point is that one of reasons that I want the BDC is to have 100% redundadcy with the domain, with this I mean that If the PDC'd fall down, then I would have the BDC 100% up. Thus if the BDC is sharing some services with the PDC I will not get it. I don't know if is possible to have a samba wins in the BDC as I have in the PDC. Do you know it? --- -Ursprüngliche Nachricht- Von: samba-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org] Im Auftrag von sisu . Gesendet: Freitag, 18. Februar 2011 13:47 An: Samba Betreff: [Samba] WINS server 127.0.0.1 timed out registering IP Hi all. After set up a BDC, I found a weird problem on my log.nmbd file, the case is that my nmb (on BDC) is not able to connect to the local wins server, just receive a time out . I set the wins support = yes which is the only mandatory parameter according to samba doc. I tried to shut down the firewall even. The log output is: === ... === become_logon_server: Atempting to become logon server for workgroup FOG on subnet UNICAST_SUBNET [2011/02/18 13:11:04.631006, 0] nmbd/nmbd_logonnames.c:121(become_logon_server_success) become_logon_server_success: Samba is now a logon server for workgroup FOG on subnet 192.168.5.37 [2011/02/18 13:11:06.130886, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.130976, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.131008, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.131038, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.131067, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.131096, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.131125, 0] nmbd/nmbd_logonnames.c:121(become_logon_server_success) become_logon_server_success: Samba is now a logon server for workgroup FOG on subnet UNICAST_SUBNET ===EOF == For another side, I have a quick question, not really important. The case is that I receive from some windows machines which are not into the domain, user login attempts. Obviously these users don't reach to log on: [2011/02/18 10:47:43.906677, 2] auth/auth.c:314(check_ntlm_password) check_ntlm_password: Authentication for user [Felix] - [Felix] FAILED with error NT_STATUS_NO_SUCH_USER [2011/02/18 10:47:43.915067, 2] auth/auth.c:314(check_ntlm_password) check_ntlm_password: Authentication for user [Felix] - [Felix] FAILED with error NT_STATUS_NO_SUCH_USE But, does anybody know why these machines are sending these login attempts? Thank everybody in advance. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] WINS server 127.0.0.1 timed out registering IP
Hi all. After set up a BDC, I found a weird problem on my log.nmbd file, the case is that my nmb (on BDC) is not able to connect to the local wins server, just receive a time out . I set the wins support = yes which is the only mandatory parameter according to samba doc. I tried to shut down the firewall even. The log output is: === ... === become_logon_server: Atempting to become logon server for workgroup FOG on subnet UNICAST_SUBNET [2011/02/18 13:11:04.631006, 0] nmbd/nmbd_logonnames.c:121(become_logon_server_success) become_logon_server_success: Samba is now a logon server for workgroup FOG on subnet 192.168.5.37 [2011/02/18 13:11:06.130886, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.130976, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.131008, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.131038, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.131067, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.131096, 2] nmbd/nmbd_nameregister.c:192(wins_registration_timeout) wins_registration_timeout: WINS server 127.0.0.1 timed out registering IP 192.168.5.37 [2011/02/18 13:11:06.131125, 0] nmbd/nmbd_logonnames.c:121(become_logon_server_success) become_logon_server_success: Samba is now a logon server for workgroup FOG on subnet UNICAST_SUBNET ===EOF == For another side, I have a quick question, not really important. The case is that I receive from some windows machines which are not into the domain, user login attempts. Obviously these users don't reach to log on: [2011/02/18 10:47:43.906677, 2] auth/auth.c:314(check_ntlm_password) check_ntlm_password: Authentication for user [Felix] - [Felix] FAILED with error NT_STATUS_NO_SUCH_USER [2011/02/18 10:47:43.915067, 2] auth/auth.c:314(check_ntlm_password) check_ntlm_password: Authentication for user [Felix] - [Felix] FAILED with error NT_STATUS_NO_SUCH_USE But, does anybody know why these machines are sending these login attempts? Thank everybody in advance. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] modify the windws registry as administrator
Hi all, I am making my PDC up and I have a quick questions. I did an script to modify some windows registry keys, I execute it through netlogon and on windows xp box there is not any problem, but when it is executed on windows 7 the system reclaim the user approval to execute it. Is there any way to execute it through samba without any user approval? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] ACLs under windows 7 - you do not have permissions to access
Hi all again, Finally I found the source of my problem, it was I set force group = root parameter on my shares, It was really useful for me since whether an user created a file it forced the group root as a primary root and then as I had the default acls (for secondary group) for example: #ll drwxrwx---+ 2 user root 6 Feb 1 11:04 test_file default:group:tech:r-x thus only the members of this secondary group (tech) were able to interact with that file due to the default acl I had on this directory. Currently the problem that I have is all the users are in the same group 'company' then as I can't force the group as root the default group will be 'company', which implies everybody will have access to this file. drwxrwx---+ 2 user company 6 Feb 1 11:14 test_file2 Any suggestion? Thanks again for your support ! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] ACLs under windows 7 - you do not have permissions to access
Hi Everyone, I have a really huge trouble with the Acls under windows 7. I use filesystem's acls under samba and it works correctly under windows xp, but it does not in w7. I am not sure if it is a kind of bug, the case is last week I upgraded my samba 3.0 to 3.5 and my acls under w7 worked fine. Now the problem I have is if a directory is set for example with the grup 'company' and an user has this group as a primary group, windows 7 launches a notify saying: Windows cannot access ... you do not have permissions to access, however, the weird case, if this user has the group 'company' as a secondary group he/she is able to get in .. I will appreciate strongly any help or advice Some details: smb.conf === [shared] path = /samba/shared read only = no force create mode = 0770 force directory mode = 0770 force group = root locking = no oplocks = no veto oplock files = /*.txt/ net acl support = yes ACLS getfacl Google-analytics/ # file: Google-analytics # owner: root # group: root user::rwx group::--- group:company:r-x group:sem:rwx mask::rwx other::--- default:user::rwx default:group::--- default:group:sem:rwx default:mask::rwx default:other::--- pdbedit -u mu_jangelltroa smbldap_search_domain_info: Searching for:[((objectClass=sambaDomain)(sambaDomainName=COMPANY))] smbldap_open_connection: connection opened init_sam_from_ldap: Entry found for user: jangelltroa init_group_from_ldap: Entry found for group: 1004 init_group_from_ldap: Entry found for group: 1004 init_group_from_ldap: Entry found for group: 513 jangelltroa:1030: john angelltroa LDAP INFO: -GROUP - cn: company gid: 1004 sambaGroupMapping sambaGroupType : 2 sambaSID: S-1-2-0 *** I'm not sure what SID I have to put here I tried as well with a SAMBA SID S-1-5- 21-domain-1004 and I got the same problem One more question: Is there any problem if that group has the same name of my workgroup? I repeat I only have this problem with windows 7, with windows XP it works great instead. acls log: = [2011/01/27 16:16:53.079114, 10] smbd/posix_acls.c:2605(canonicalise_acl) canonicalise_acl: Default ace entries before arrange : [2011/01/27 16:16:53.079128, 10] smbd/posix_acls.c:2618(canonicalise_acl) canon_ace index 0. Type = allow SID = S-1-1-0 other SMB_ACL_OTHER ace_flags = 0x0 perms --- [2011/01/27 16:16:53.079144, 10] smbd/posix_acls.c:2618(canonicalise_acl) canon_ace index 1. Type = allow SID = S-1-2-0 gid 1004 (COMPANY) SMB_ACL_GROUP ace_flags = 0x0 perms rwx= HERE APPEARS [2011/01/27 16:16:53.079164, 10] smbd/posix_acls.c:2618(canonicalise_acl) canon_ace index 2. Type = allow SID = S-1-3-1 gid 0 (root) SMB_ACL_GROUP_OBJ ace_flags = 0x0 perms --- [2011/01/27 16:16:53.079182, 10] smbd/posix_acls.c:2618(canonicalise_acl) canon_ace index 3. Type = allow SID = S-1-22-1-603 uid 603 (hudson) SMB_ACL_USER ace_flags = 0x0 perms rwx [2011/01/27 16:16:53.079201, 10] smbd/posix_acls.c:2618(canonicalise_acl) canon_ace index 4. Type = allow SID = S-1-3-0 uid 0 (root) SMB_ACL_USER_OBJ ace_flags = 0x0 perms rwx [2011/01/27 16:16:53.079220, 10] smbd/posix_acls.c:841(print_canon_ace_list) print_canon_ace_list: canonicalise_acl: ace entries after arrange canon_ace index 0. Type = allow SID = S-1-3-0 uid 0 (root) SMB_ACL_USER_OBJ ace_flags = 0x0 perms rwx canon_ace index 1. Type = allow SID = S-1-3-1 gid 0 (root) SMB_ACL_GROUP_OBJ ace_flags = 0x0 perms --- canon_ace index 2. Type = allow SID = S-1-2-0 gid 1004 (COMPANY) SMB_ACL_GROUP ace_flags = 0x0 perms rwx = HERE APPEARS canon_ace index 3. Type = allow SID = S-1-22-1-603 uid 603 (hudson) SMB_ACL_USER ace_flags = 0x0 perms rwx canon_ace index 4. Type = allow SID = S-1-1-0 other SMB_ACL_OTHER ace_flags = 0x0 perms --- [2011/01/27 16:16:53.079279, 10] smbd/posix_acls.c:1117(map_canon_ace_perms) map_canon_ace_perms: Mapped (UNIX) 1c0 to (NT) 1f01ff [2011/01/27 16:16:53.079293, 10] smbd/posix_acls.c:1117(map_canon_ace_perms) map_canon_ace_perms: Mapped (UNIX) 0 to (NT) 0 [2011/01/27 16:16:53.079307, 10] smbd/posix_acls.c:1117(map_canon_ace_perms) map_canon_ace_perms: Mapped (UNIX) 140 to (NT) 1200a9 [2011/01/27 16:16:53.079320, 10] smbd/posix_acls.c:1117(map_canon_ace_perms) map_canon_ace_perms: Mapped (UNIX) 140 to (NT) 1200a9 [2011/01/27 16:16:53.079333, 10] smbd/posix_acls.c:1117(map_canon_ace_perms) map_canon_ace_perms: Mapped (UNIX) 140 to (NT) 1200a9 [2011/01/27 16:16:53.079354, 10] smbd/posix_acls.c:1117(map_canon_ace_perms) map_canon_ace_perms: Mapped (UNIX) 140 to (NT) 1200a9 [2011/01/27 16:16:53.079368, 10] smbd/posix_acls.c:1117(map_canon_ace_perms) map_canon_ace_perms: Mapped (UNIX) 1c0 to (NT) 1f01ff Thank you so much for your patience. ! :) -- To unsubscribe from this list go to the following URL and read the instructions:
[Samba] [samba] Linux acls problem with windows 7 and vista
Hei all, Today I upgraded my samba which was a really old version 3.0.33 (I know) to 3.5. The upgraded seemed alright since I realize that I got a problem with the linux acls, I wanna say that I only have this problem with windows 7 and Vista, however windows xp works alright To try to be concreted I will try to expose the problem with an example, the point is that I have a directory called 'shared', which is set as: [shared]comment = Shared directorypath = /samba/sharedread only = noforce create mode = 0770force directory mode = 0770force group = rootlocking = nooplocks = noveto oplock files = /*.txt/ and the acl's I set are the following: getfacl shared/ # file: shared# owner: root# group: rootuser::rwxgroup::---group:company:r-xgroup:helpdesk:r-xgroup:sysadmin:r-xgroup:tech:r-xmask::rwxother::---default:user::rwxdefault:group::---default:group:company:rwxdefault:mask::rwxdefault:other::--- I have an user called user1 who has company as a primary group, and I have a user2 who has company as a primary group and sysadmin as secondary group. The fact is that the user2 is able to get on the shared directory and user1 not, but if I set the user1 on the tech group then this user1 is able to get on the directory. weird huh? So weird ! I spent a lot of time with it and I'm not able to find out what is going on :( I thought even that it could be a bug but I didn't find any case exactly like that. The only suspicious line I fond in may samba log are: [2011/01/24 16:27:11.098007, 3] smbd/sec_ctx.c:418(pop_sec_ctx) pop_sec_ctx (1030, 0) - sec_ctx_stack_ndx = 0[2011/01/24 16:27:11.098046, 3] smbd/error.c:80(error_packet_set) error packet at smbd/error.c(160) cmd=162 (SMBntcreateX) NT_STATUS_ACCESS_DENIED[2011/01/24 16:27:11.098107, 3] smbd/process.c:1485(process_smb) Transaction 39 of length 114 (0 toread)[2011/01/24 16:27:11.098124, 3] smbd/process.c:1294(switch_message) switch message SMBntcreateX (pid 10278) conn 0x2b841d0f2200[2011/01/24 16:27:11.098139, 4] smbd/uid.c:257(change_to_user) change_to_user: Skipping user change - already user I will appreciate so much any help !!! c u ! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] [samba] is mandatory to execute smb service before that nmb?
Hi group, Does anybody know if is mandatory to execute smb service before that nmb? I searched it on the samba's official doc and I didn't find anything, it just to be sure. Thanks a lot. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] [samba] same uid - RID
Hi all, Does anybody know if could have any conflict give to a machine the same uid number and RID? I guess that it does not matter but I would like to be sure . Example: User ID: 1001 SambaSId: S-1-5-21-2019295574-2912910430-3808223165-1001 Thanks a lot -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Next uid with sambaUnixIdPool
Hi all, I have a doubt trying to set the users' RID since when I join a machine into the domain through smbldap-useradd, this script queries to my domain what is the next uid number available (uidpool) and then add +1 to that uid for the next time. It is ok, the problem is when I want to create a posix sam account through PHPLdapAdmin, since I try it: attribute id=sambaSID displaySamba SID/display valueS-1-5-21-2019295574/value helper idsidsuffix/id value=php.GetNextNumber(/,uid,true,(amp;(objectClass=sambaDomain)(sambaDomainName=domain_name)),*2;+1000)/value /helper post=php.Join(-,(%sambaSID%,%sidsuffix%))/post page1/page order23/order /attribute As you see, on the sidsuffix section, I try to query to (objectClass=sambaDomain)(sambaDomainName=domain_name) (my domain) what is the its uid and then with the true flag I try to add 1 the next uid for the next time and finally I calculate the RID *2;+1000. But it doesn't work since the value that I get is an autosearch. Any advice will be really appreciate. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] why the domain administrator has to has uid 0?
Hi All, Anybody could tell me why the user who is able to join a machine into the domain has to has uid=0. is it possible to has more administrators? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Could not find base dn trying to join a machine into the domain
Hi all, Trying to set up a samba PDC with 389-fd LDAP I get and error when I try to join my first windows machine to the domain. I did the smbldap-populate and all seems ok. The point is when I add a machine through command line as: usr/sbin/smbldap-useradd -w testmaschine4 I don't get any error, below I can demonstrate it: #getent passwd |grep 515 testmachine$:*:5001:515:Computer:/dev/null:/bin/false testmaschine2$:*:5002:515:Computer:/dev/null:/bin/false But the problem occurs when through the windowsXP box I try to join to the domain. I type my Administrator user with his password but then I get an error dialogue which says: The user name could not be found When I try to find out more info in the administrator.log on samba server I can see these lines: check_ntlm_password: authentication for user [Administrator] - [Administrator] - [Administrator] succeeded Returning domain sid for domain X - S-1-5-21-2019295574-2912910430-xx Could not find base dn, to get next uidNumber at /usr/lib/perl5/vendor_perl/5.8.8/smbldap_tools.pm line 1181 _samr_create_user: Running the command `/usr/sbin/smbldap-useradd -w vmwinxpbox$' gave 2 I don't understand why smbldap-useradd is able to add that machine through command line but it is not able through windows box Useful info: smbldap-populate file: suffix=o=company,dc=lan computersdn=ou=machines,${suffix} sambaUnixIdPooldn=sambadomainname=domainname,ou=domains,o=company,dc=lan defaultComputerGid=515 smb.cnf: ldap suffix = dc=lan ldap machine suffix = ou=machines,o=company add machine script = /usr/sbin/smbldap-useradd -w %u Thank you in advance. any advice will be grateful :) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Could not find base dn trying to join a machine into the domain
First of all thanks for your reply. Finally I Could fix it thanks your comment. It is not necessary to do it with root user but is necessary to do it with uid 0, since I changed that id to my administrator user and finally it workes smbldap-populate -a Administrator smbldap-pupulate man page says: -a: name Your local administrator login name (default: Administrator) Before: #getent passwd |grep Administrator Administrator:x:998:512:Netbios Domain Administrator:/home/Administrator:/bin/false #id Administrator uid=998(Administrator) gid=512(Domain Admins) groups=512(Domain Admins) Now: #getent passwd |grep Administrator Administrator:x:0:512:Netbios Domain Administrator:/home/Administrator:/bin/false #id Administrator uid=0(Administrator) gid=512(Domain Admins) groups=512(Domain Admins) I think you should mention 'root' as username and password should be which you put while running 'smbldap-populate'. You can change 'root' password using root# smbpasswd root command Thanks On 12/30/10, sisu . npil...@hotmail.com wrote: Hi all, Trying to set up a samba PDC with 389-fd LDAP I get and error when I try to join my first windows machine to the domain. I did the smbldap-populate and all seems ok. The point is when I add a machine through command line as: usr/sbin/smbldap-useradd -w testmaschine4 I don't get any error, below I can demonstrate it: #getent passwd |grep 515 testmachine$:*:5001:515:Computer:/dev/null:/bin/false testmaschine2$:*:5002:515:Computer:/dev/null:/bin/false But the problem occurs when through the windowsXP box I try to join to the domain. I type my Administrator user with his password but then I get an error dialogue which says: The user name could not be found When I try to find out more info in the administrator.log on samba server I can see these lines: check_ntlm_password: authentication for user [Administrator] - [Administrator] - [Administrator] succeeded Returning domain sid for domain X - S-1-5-21-2019295574-2912910430-xx Could not find base dn, to get next uidNumber at /usr/lib/perl5/vendor_perl/5.8.8/smbldap_tools.pm line 1181 _samr_create_user: Running the command `/usr/sbin/smbldap-useradd -w vmwinxpbox$' gave 2 I don't understand why smbldap-useradd is able to add that machine through command line but it is not able through windows box Useful info: smbldap-populate file: suffix=o=company,dc=lan computersdn=ou=machines,${suffix} sambaUnixIdPooldn=sambadomainname=domainname,ou=domains,o=company,dc=lan defaultComputerGid=515 smb.cnf: ldap suffix = dc=lan ldap machine suffix = ou=machines,o=company add machine script = /usr/sbin/smbldap-useradd -w %u Thank you in advance. any advice will be grateful :) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- http://linuxinterviews.blogspot.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba