Re: [Samba] winbind / ldap
Hello, LDAP could also be used store id maps, but I don't know how to migrate from a winbindd_idmap.tdb to the ldap idmap container regards odi Am Donnerstag, 12. August 2004 11:19 schrieb Hamish: Hello Im not sure how to ask the question i need, but let me try: Background: SuSE 9.0 Samba from rpms: samba 3.0.3pre2-SuSE Role: domain member server (winbind) I am having a lot of trouble upgrading samba and I'm thinking of moving to another server. I have found that if I move the winbindd_idmap.tdb across, the AD / UID mappings are saved but would like to know: a) Is this safe? (is there anything that will bomb out a few months down the line?) b) can this be done with LDAP instead (I know close to nothing of LDAP, I have assumed it is for use as a PDC, but could it be used to store UID mappings as well? How 'interesting' would this be to set up?) Thanks, H -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] LDAP Idmap
Hi, at least you have to specify: idmap backend = ldap:ldap://host idmap uid = 1-2 idmap gid = 1-2 ldap idmap suffix = suffix ldap admin dn = admindn ldap suffix = suffix you don't have to change the nsswitch if winbind is already in there regards odi Am Freitag, 6. August 2004 13:51 schrieb Shannon Johnson: Thanks for the quick response... but I've already been there. As I said, I'm NOT looking for an LDAP PDC... I'm ONLY looking for LDAP idmap. There is no documentation on idealx.org for an LDAP idmap that does NOT include the PDC... nor is there much documentation anywhere else about it. Shannon Johnson Network Support Specialist / Systems Administrator Dept. of Mechanical and Nuclear Engineering 224 Reber Building University Park, PA 16802 Phone: (814) 865-8267 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Friday, August 06, 2004 3:59 AM To: Shannon Johnson; [EMAIL PROTECTED] Subject: Re: [Samba] LDAP Idmap Shannon Johnson [EMAIL PROTECTED] Sent by: [EMAIL PROTECTED] 05.08.2004 22:59 To: [EMAIL PROTECTED] cc: Subject:[Samba] LDAP Idmap Hi shannon, a good start you'll find at www.idealx.org. There is a very good docu on how to setup samba3-LDAP. If you then running into problems. ask the list. Chris I'm having quite a bit of trouble getting an LDAP directory set up for the idmap backend for winbind. I've been working on it for quite a while, and haven't found any very helpful websites or anything. I've found quite a bit on how to set up a PDC using LDAP, which would be nice, but I already have the PDC... I just need LDAP to host UID's and GID's. The things I'd like to know are: 1. What should the rootdn, suffix, and indexes be in the slapd.conf? I think that the rootdn needs to match what I put in the smb.conf for the ldap admin dn, and I'm fairly sure the suffix needs to match the ldap suffix from the smb.conf... I don't have any idea about the indexes. 2. What needs to be in the ldif file to create the directory properly? I've tried several that I've found online, both from the Samba 3 By Example book, and lots of forum / mailing list posts. I'm not sure if what I've tried has been correct, but it hasn't worked yet, and this is one part I'm not sure about. 3. I think that once I get the first 2 things worked out, I just set about 6 things in my smb.conf (ldap suffix, ldap admin dn, idmap backend (which should point to ldap:ldap://127.0.0.1, if the server is running on the same machine, right?), ldap idmap suffix, idmap uid, and idmap gid), enter my password from the smbpasswd -w command, and once I restart winbind, it should automatically start filling up the directory, right? 4. Once I get the server going and filled up with UID's and GID's, for the clients, am I correct in saying that I alter the smb.conf to include the ldap suffix, ldap admin dn, idmap backend, ldap idmap suffix, idmap uid, and idmap gid, then again enter my password via smbpasswd -w, change /etc/nsswitch.conf to be passwd files ldap instead of passwd files winbind, and it should work? This isn't documented very well anywhere, so I'd appreciate any hints or suggestions anybody might have... Shannon -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] move samba file and print shares
Hello, Am Donnerstag, 29. Juli 2004 17:26 schrieben Sie: Thanks Odi I have no LDAP running, authentication is all through the 2003 AD server, do any users details get stored on the samba box (ie winbind tdbs)? The windows user to unix user mappings are stored in the winbind tdb(s). If you take the disk, which already contains data with user-mappings and you don't move your winbind.tdb, those mappings will be lost and the newly creating mapping will be not the same as on the other box. e.g. file blabla was owned by user testuser1(mapped unix id 10001), on the new box, the owner will be e.g. testuser15 (new mapped unix id 10001). This is because if you are using winbind, the unix user id will be generated at runtime if it is not already in the winbind.tdb (or LDAP), so if you plan to implement more than one member server, its better to migrate the idmapping to an ldap backend, then the windows user will have the same unix user id on all member server and a transfer of data-only disk will be no problem. regards odi Manfred Odenstein wrote: Hello, Am Donnerstag, 29. Juli 2004 15:47 schrieb Hamish: Hello all Is this possible?: samba3.0.3pre2 running as domain member with winbind, acls on reiser providing file security this is all on a seperate disk mounted as 'data1' you have to check, if your ReiserFS implementation supports ACL Could I take this disk, put it in a new box, mount it again as data1, then copy the old smb.conf over to the new box? (I would also join the domain with the same name as the old box) 1.) My proposal is only a suggestion with no working waranty :-), maybe another will post the right way 2.) if you use LDAP for you id mapping, it should work, you also have to transfer the winbind tdb(s) (should be located in /var/lib/samba/ to the new box. Maybe it's better to transfer the whole directory (/var/lib/samba) and also the security tdb(s), located elsewhere (distribution dependent), then its not nescessary to join the domain again, then you have all your printer default settings, drivers, and so on. regards odi Thanks in advance, H -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] move samba file and print shares
Hello, Am Donnerstag, 29. Juli 2004 15:47 schrieb Hamish: Hello all Is this possible?: samba3.0.3pre2 running as domain member with winbind, acls on reiser providing file security this is all on a seperate disk mounted as 'data1' you have to check, if your ReiserFS implementation supports ACL Could I take this disk, put it in a new box, mount it again as data1, then copy the old smb.conf over to the new box? (I would also join the domain with the same name as the old box) 1.) My proposal is only a suggestion with no working waranty :-), maybe another will post the right way 2.) if you use LDAP for you id mapping, it should work, you also have to transfer the winbind tdb(s) (should be located in /var/lib/samba/ to the new box. Maybe it's better to transfer the whole directory (/var/lib/samba) and also the security tdb(s), located elsewhere (distribution dependent), then its not nescessary to join the domain again, then you have all your printer default settings, drivers, and so on. regards odi Thanks in advance, H -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with umlaut on windows server
Hello, I've had nearly the same problem. I've fixed the character mapping with the following entries in the smb.conf ([global] section): 8-- dos charset = 850 unix charset = ISO8859-15 8-- but you have to determine which charset your unix file system is really using, maybe another one could help you to determine *shame*, I've forgotten how I was doing that :-( I also run into problems with umlauts (without samba) using jfs, so I switched to xfs and I'm happy with it. but I think there is no way to avoid renaming of scrambled files/directories. manfred Am Mittwoch, 21. Juli 2004 09:16 schrieb Weimann Philipp: Hallo Samba-users, I've got a problem mounting a windows-share via mount / smbmount: The mount itself works without any problem, but when I try to enter a directory with a Umlaut (such as ,,) the command fails. All the umlauts are replaced with a question mark when I ls in the directory which contains the directory with the umlaut. Changing the character set results in equal problems: The umlauts are shown as Block-Symbol ( - if you cant see it: it's ASCII sign Nr. 177, see http://www.asciitable.com/) but entering a directory works. Unfortunately any further actions fail, i.e. listing the content of the directory quits with an IO Error. Browsing the share with the smb:// tool of the Konqueror returns correct umlauts, but entering a directory is also not possible. What can I do to get the Windows-Shares displayed correctly ? Renaming is unfortunately not an option. Configuration: Client: RedHat Enterprise Linux 3.0; Samba 3.0; Server: Windows 2000 Server in a Domain; Thanks in advance for your help, Philipp Weimann -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] about a pdc
this is only a hint :-) http://us1.samba.org/samba/docs/man/howto/ regards Am Montag, 17. Mai 2004 14:37 schrieb charly.amiel: please can you explain me how to configurate samba as primary domain controller. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Admins cannot change folder ownership
The best way I think is to add admin users = e.g. ... [sharename] admin users = Administrator path = /to/path ... regards odiX Am Freitag, 30. April 2004 12:22 schrieb ww m-pubsyssamba: Hi All, how can I allow an administrator to have permission to change folder ownership from windows explorer? The Samba server is an AD domain member server and I'm using group mapping not winbind for users and groups in Samba, I've tried mapping both the Administrators and Domain Admins groups to UNIX groups of which my test user is a member of but I always get a permission denied error when attempting to change the ownership of a folder. Anyone like to explain this to me? thanks in advance, cheers Andy. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Printing in 3.0.1
thx, will update to 3.0.2a and report regards manfred Am Montag, 26. April 2004 14:43 schrieb [EMAIL PROTECTED]: Client: add new printer - network printer - browse for network printers , and here is the problem, the samba isn't shown as a print server, it's displayed in the network browser but not if want to add a new printer. the printers are shown in the normal network browser if I click on the samba server. This was fixed with 3.0.2. From WHATSNEW: * BUG 101: set the SV_TYPE_PRINTQ_SERVER flag in host announcement packet. ~ Daniel --- This message is the property of Time Inc. or its affiliates. It may be legally privileged and/or confidential and is intended only for the use of the addressee(s). No addressee should forward, print, copy, or otherwise reproduce this message in any manner that would allow it to be viewed by any individual not originally listed as a recipient. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized disclosure, dissemination, distribution, copying or the taking of any action in reliance on the information herein is strictly prohibited. If you have received this communication in error, please immediately notify the sender and delete this message. Thank you. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] winbind tdb migration to ldap
hello, I've asked this a few days ago, but no answer yet. Is it possible to mirgrate a winbind.tdb to ldap ? regards manfred -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] migrate winbind tdb to ldap
Hi, is there a tool/script to migrate an existing winbind.tdb to ldap ? regards manfred (odiX) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] How to enable both remote and local users?
take a look in /etc/nsswitch.conf make an entry like : passwd: files winbind should solve your problem regards odi Am Mo, den 08.03.2004 schrieb Arno Hahma um 10:08: Is there any way to enable both local (/etc/passwd or smbpasswd) users and users authenticated remotely by winbindd? I have a problem with samba-3.0.2a not recognizing local users at all, if winbindd is enabled (and vice versa, of course). However, I'd like to have local users take precedence over networked users, i.e. samba would let in a user, if he/she is a local one and only ask the password server, if none is found by that name. This way, it would be easiest to implement a small amount of users able to log in with a shell account the rest being samba-only users. So far, I have found no workaround to this problem, especially, if there is the same username in the active directory domain and local /etc/passwd. In this case, samba gets a real attack of schitzophrenia and doesn't know whom to obey - with a result that nobody with such a duplicate username can get a samba mount. -- ArNO 2 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] SAMBA3 - LDAP
On the second server, check with getent group if the group normal is present on the second server, if no, then check your /etc/nsswitch.conf regards odi Am Fr, den 27.02.2004 schrieb Stefan Bergner um 14: 08: Hello! I have this Configuration: 1st Server (incl. openldap). On this server, i hold my User and Group-Management with smbldap-Tools. It work's great, the user's, group's and machine-account's stored in my ldap-db. This Server is not a PDC!! Now i want to setup a 2nd Server. I want to connect this Samba-Server with the ldap-db of the 1st Server. Now, the good news: The User works. With smbpasswd from 2nd Server i could change the Password of the users in my ldap-db on the 1st Server. But the group-setting (no unix-group, only a ldap-group) doesn't work. In my ldap-db (1st Server) is one user - smbuser and one group - normal On my 1st Server it works for a share with valid users = @normal On my 2nd Server there is also a share with valid users = @normal I now want to connect me to the share of the 2nd Server. The Errormessage is : tree connect failed: NT_STATUS_ACCESS_DENIED If i change the valid users-Parameter to valid users = smbuser everything is fine. Any hint? Greetings/thanx Stefan -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] 3.0.1-member-server-printing
hello list, after successfully playing around to get a working samba 3.0.1-PDC-LDAP-Suse9 configuration a new challenge takes place : scenario: suse9 with samba 3.0.1 as a member server in a NT4 controlled domain. winbind works as expected (thanks to documention authors). There seems to be no problem with file sharing, ACL is working properly (I'm using xfs filesystem). :-) so, now the problem : printing 1.) sharing the printer(s) works ok, the only problem occurs with long and short names of Printer shares, I've named the printer queues with short names and load all printers for sharing, then gave additional shares with log names referencing the proper queue. My question, is this a passable solution ?? extract of smb.conf: ... [printers] comment = All printers printable = yes path = /var/spool/samba browseable = no guest ok = yes public = yes read only = yes writable = no printer admin = @ntadmin,DOMAIN+Administrator [hp LaserJet 2200 Series PCL6-2] printable = yes path = /var/spool/samba browseable = yes guest ok = yes public = yes read only = yes writable = no printer name = laser2200 printer admin = @ntadmin,DOMAIN+Administrator ... 2.) driver installation : I've tried to install the printer drivers for clients (win9x/2000/xp) via the APW (add printer wizard), but I've failed with access denied. If I changed the filesystem permissions in the [print$]-path in the way that the DOMAIN+Administrator is allowed to create directories and files, the driver files were copied on to the samba box. But the driver installation failed (maybe for the default properties). My question, are there other files where I've to change the permission to allow DOMAIN+Administrator write access, e.g. /var/lib/samba/ntprinters.tdb or the the subdirectory containing the *.tdb(s) for the shared printers (e.g. /var/lib/samba/printing/hp LaserJet 2200 Series PCL6-2.tdb) ?? extract of smb.file ... [print$] comment = Printer Driver Download Area path = /var/lib/samba/drivers browsable = no guest ok = yes read only = yes write list = @ntadmin,DOMAIN+Administrator,root thanks in advanced regards odi -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] 3.0.1-member-server-printing
Thanks for the fast reply, but the problem is that the server is a member server in a NT4 controlled domain, there is no user root (uid=0) in the domain, if there would be a samba PDC, there should be no problem with your solution. regards odi Am Mi, den 11.02.2004 schrieb Bertrand Maugain um 12:09: I guess your smb.conf is correct. I'm using cups on freebsd. I install cups( very easy) and I add a printer thanks to the webinterface. I print a test page. After that I upload the drivers in the print$ share by a little bit tricky way. I log to my domain with root (added with pdbedit...-u root) on my Windows 2000 client ( It is the only case you shoul do it!!). I browse the network, the sambaserver and go to the printers section. I right click on the printers , and properties I'm asked if I want to download the drivers on my client since no drivers are installed. You have to click no Then you go the drivers section and do as if you install new drivers. You choose in the list and it will upload the drivers on your sambaserver. It works fine!! Hope it helps Bertrand -Message d'origine- De : Manfred Odenstein [mailto:[EMAIL PROTECTED] Envoyé : mercredi 11 février 2004 12:01 À : [EMAIL PROTECTED] Objet : [Samba] 3.0.1-member-server-printing hello list, after successfully playing around to get a working samba 3.0.1-PDC-LDAP-Suse9 configuration a new challenge takes place : scenario: suse9 with samba 3.0.1 as a member server in a NT4 controlled domain. winbind works as expected (thanks to documention authors). There seems to be no problem with file sharing, ACL is working properly (I'm using xfs filesystem). :-) so, now the problem : printing 1.) sharing the printer(s) works ok, the only problem occurs with long and short names of Printer shares, I've named the printer queues with short names and load all printers for sharing, then gave additional shares with log names referencing the proper queue. My question, is this a passable solution ?? extract of smb.conf: ... [printers] comment = All printers printable = yes path = /var/spool/samba browseable = no guest ok = yes public = yes read only = yes writable = no printer admin = @ntadmin,DOMAIN+Administrator [hp LaserJet 2200 Series PCL6-2] printable = yes path = /var/spool/samba browseable = yes guest ok = yes public = yes read only = yes writable = no printer name = laser2200 printer admin = @ntadmin,DOMAIN+Administrator ... 2.) driver installation : I've tried to install the printer drivers for clients (win9x/2000/xp) via the APW (add printer wizard), but I've failed with access denied. If I changed the filesystem permissions in the [print$]-path in the way that the DOMAIN+Administrator is allowed to create directories and files, the driver files were copied on to the samba box. But the driver installation failed (maybe for the default properties). My question, are there other files where I've to change the permission to allow DOMAIN+Administrator write access, e.g. /var/lib/samba/ntprinters.tdb or the the subdirectory containing the *.tdb(s) for the shared printers (e.g. /var/lib/samba/printing/hp LaserJet 2200 Series PCL6-2.tdb) ?? extract of smb.file ... [print$] comment = Printer Driver Download Area path = /var/lib/samba/drivers browsable = no guest ok = yes read only = yes write list = @ntadmin,DOMAIN+Administrator,root thanks in advanced regards odi -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 3.0.1-member-server-printing
[global] ... printer admin = DOMAIN+Administrator ... doesn't help, sorry, it's already there. I will try to chmod to 775 the /var/lib/samba (owner root.root) directory and add DOMAIN+Administrator to group root, only for testing will report success or failure regards odi Am Mi, den 11.02.2004 schrieb Gerald (Jerry) Carter um 16:33: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Manfred Odenstein wrote: | I've tried to install the printer drivers for clients | (win9x/2000/xp) via the APW (add printer wizard), but | I've failed with access denied. If I changed the | filesystem permissions in the [print$]-path in the way | that the DOMAIN+Administrator is allowed to create | directories and files, the driver files were copied on to | the samba box. But the driver installation failed (maybe | for the default properties). put 'printer admin' in the gloabl section and this should the final piece. cheers, jerry - -- Hewlett-Packard- http://www.hp.com SAMBA Team -- http://www.samba.org GnuPG Key http://www.plainjoe.org/gpg_public.asc If we're adding to the noise, turn off this song --Switchfoot (2003) -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFAKktlIR7qMdg1EfYRAlDXAJ4pCNm6O+tdYdku9A3q/JN7n+dd7wCgomcQ g2xf7vr6jecbx5pBGM16XJU= =l336 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 3.0.1-member-server-printing
ok, failure :-( I've changed permission on all *.tdb in /var/lib/samba, driver files transfered correctly, samba noticed Added printer driver. Printer name is blabla . NT4-Server reported (translated from german) : could not changed to given driver, previous settings will be restored. after closing the dialog, an additional dialog pops up saying: Printer properties couldn't be stored, Access denied. (also translated from german) I've raised the log level and noticed a lot of NT_STATUS messages like: NT_STATUS_OBJECT_NAME_NOT_FOUND NT_STATUS_NOT_A_DIRECTORY NT_STATUS_NO_SUCH_FILE NT_STATUS_INVALID_LEVEL any suggestions ? is this a solution ? 1.) create account named root on PDC (NT4), added to group Domain Admins 2.) changed uid in winbind_idmap.tdb to 0 (is there a way to do this ? with the tdb utitlities ?) 3.) log on with this account and try ones more regards odi Am Mi, den 11.02.2004 schrieb Manfred Odenstein um 16:48: [global] ... printer admin = DOMAIN+Administrator ... doesn't help, sorry, it's already there. I will try to chmod to 775 the /var/lib/samba (owner root.root) directory and add DOMAIN+Administrator to group root, only for testing will report success or failure regards odi Am Mi, den 11.02.2004 schrieb Gerald (Jerry) Carter um 16:33: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Manfred Odenstein wrote: | I've tried to install the printer drivers for clients | (win9x/2000/xp) via the APW (add printer wizard), but | I've failed with access denied. If I changed the | filesystem permissions in the [print$]-path in the way | that the DOMAIN+Administrator is allowed to create | directories and files, the driver files were copied on to | the samba box. But the driver installation failed (maybe | for the default properties). put 'printer admin' in the gloabl section and this should the final piece. cheers, jerry - -- Hewlett-Packard- http://www.hp.com SAMBA Team -- http://www.samba.org GnuPG Key http://www.plainjoe.org/gpg_public.asc If we're adding to the noise, turn off this song --Switchfoot (2003) -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFAKktlIR7qMdg1EfYRAlDXAJ4pCNm6O+tdYdku9A3q/JN7n+dd7wCgomcQ g2xf7vr6jecbx5pBGM16XJU= =l336 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba and Oracle directory
@Andrew, I think the question of the author is not related to pdb_oracle, because Oracle Directory AFAIK is a kind of LDAP server. @Jérôme AFAIK there exists no schema for the Oracle Directory, but it should not take much time to convert on. regards odi Am Dienstag, 27. Januar 2004 09:57 schrieb Andrew Bartlett: On Tue, 2004-01-27 at 00:08, Jérôme Tournier wrote: Hello ! Does anyone already configured samba 3 with Oracle directory ? Is it possible ? Does anyone has any link to an existing schema ? Thanks for any comment :) There is nothing that prevents you from writing a pdb_oracle - I would suggest you look closely at pdb_mysql and pdb_pgsql for hints, and common code to raid. Andrew Bartlett -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbldap-tools 8.3 populate errors
Am Sonntag, 18. Januar 2004 10:55 schrieb Jérôme Tournier: My system is now runnung, but I think there are some bugs in the populate script, e.g. the SID of the Administrator account should end with -500 as I know, because it's predefinded. Any comment from the author ??? 500 is the well-known RID for the domain administrator, not for the administrator account, am i wrong ? AFAIK, if you operate as a PDC it have to be 500, because a NT PDC hasn't its own user-database, it uses the domain-database, so the administrator is the same as the Domain Adminstrator, maybe I'm wrong, but ... I've also changed the gidNumber and uidNumber of the guest account and Domain Guest group to the default values of my system (SuSE9) after this all worked correctly except some log-entries . Failed to open group mapping database and failed to decode PDU Do you always have this error messages ? With every scripts ? Thanks for your report ! -- Jérôme I've not tested this with other scripts (e.g. 0.8.2), because til I've tried 0.8.3 I didn't noticed that if I want to add a user, the given script at add user script isn't called with smbpasswd -a, if I added a user with net user add, the given script was called (I've written a dummy script with syslog output), and the I've tried 0.8.3 and it worked. but I will give 0.8.2 a try if you want odi -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbldap-tools 8.3 populate errors
Hi, The tgz file is incomplete, I've notced this too. The rpm is complete, so I've downloaded the rpm file instead, unpacked it, and copied the scripts to their respective location. My system is now runnung, but I think there are some bugs in the populate script, e.g. the SID of the Administrator account should end with -500 as I know, because it's predefinded. Any comment from the author ??? and please take care of the default groups in the smbldap.conf file, default machine account points to Print Operators (550) should be Domain Computers (553). I've also changed the gidNumber and uidNumber of the guest account and Domain Guest group to the default values of my system (SuSE9) after this all worked correctly except some log-entries . Failed to open group mapping database and failed to decode PDU any suggestions ...? regards odi Am Freitag, 16. Januar 2004 21:16 schrieb Curtis Grote: I downloaded the new 8.3 (tgz format) ldap-tools from IDEALX today. When I run the smbldap-po pulate script I receive an error that it cannot find the smbldap_tools.pm file. This file was not included in the tar file. If I use the tools file from the samba 3.0.2pre1 distribution it is then expecting the old smbldap_conf.pm file which has now been split in favor of the /etc/smbldap-tools config. I do not know if the populate script is broken or a 'tools' file should have been included in the distro. (I did run configure.pl prior to trying to populate). Curtis Grote Memorial Hospital -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba