[Samba] Terminal Server login with Samba OpenLDAP as PDC fails
Hi everybody, I've set up a samba (version 3.0.28a) PDC with OpenLDAP on Ubuntu 8.04 server. I can create user- and machine-accounts and join the domain, I can log in on any XP-client, so everything works fine except for one point: I joined an W2k3-Enterprise server to the domain. It is supposed to be our new terminal server. I can log in to the server with any domain user account if I'm using the keyboard an monitor directly attached to the server. But when I try to log in via rdp I get an error message stating that the specified domain could not be contacted or does not exist. Has anybody had this error an can give me a hint how to fix this problem. Best regards, Jens -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Openldap for PDC
hi, we had the same issues with openldap backend and bdb as backend. sometimes the backend broke and we had to recover the bdb db. it seems to be an issue between openldap v2 + bdb 4.2 + DB_CONFIG + filesystem (now /var/lib/ldap is on a seperate partition and ext3) - currently this works for us greez Philip Washington wrote: I have been testing with openldap_2.2.13-2 and have experience on 2 occasions lockups where the ldap server does not respond (slapcat will just hang). I have upgraded to openldap_2.2.13-4. Is there a recommended version of openldap for SambaPDC? Does anyone have a system in production using openldap_2.2.13-2 or openldap_2.2.13-4? I'm currently using samba3-20b any recommendations for a production system would be welcome. -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution (IT) Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Openldap for PDC
Hi all, I have the same problem, now I add in my slapd.conf a checkpoint directive and I'm waiting for the result. Do you have other suggest? Regards Michael Quoting Michael Gasch [EMAIL PROTECTED]: hi, we had the same issues with openldap backend and bdb as backend. sometimes the backend broke and we had to recover the bdb db. it seems to be an issue between openldap v2 + bdb 4.2 + DB_CONFIG + filesystem (now /var/lib/ldap is on a seperate partition and ext3) - currently this works for us greez Philip Washington wrote: I have been testing with openldap_2.2.13-2 and have experience on 2 occasions lockups where the ldap server does not respond (slapcat will just hang). I have upgraded to openldap_2.2.13-4. Is there a recommended version of openldap for SambaPDC? Does anyone have a system in production using openldap_2.2.13-2 or openldap_2.2.13-4? I'm currently using samba3-20b any recommendations for a production system would be welcome. -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution (IT) Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba This message was sent using IMP, the Internet Messaging Program. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Openldap for PDC
hi, [update] we couldn't fix it with my description (see last mail). i filed a bug report to the openldap list. btw: checkpointing didn't fix it for us greez [EMAIL PROTECTED] wrote: Hi all, I have the same problem, now I add in my slapd.conf a checkpoint directive and I'm waiting for the result. Do you have other suggest? Regards Michael Quoting Michael Gasch [EMAIL PROTECTED]: hi, we had the same issues with openldap backend and bdb as backend. sometimes the backend broke and we had to recover the bdb db. it seems to be an issue between openldap v2 + bdb 4.2 + DB_CONFIG + filesystem (now /var/lib/ldap is on a seperate partition and ext3) - currently this works for us greez Philip Washington wrote: I have been testing with openldap_2.2.13-2 and have experience on 2 occasions lockups where the ldap server does not respond (slapcat will just hang). I have upgraded to openldap_2.2.13-4. Is there a recommended version of openldap for SambaPDC? Does anyone have a system in production using openldap_2.2.13-2 or openldap_2.2.13-4? I'm currently using samba3-20b any recommendations for a production system would be welcome. -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution (IT) Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba This message was sent using IMP, the Internet Messaging Program. -- Michael Gasch Max Planck Institute for Evolutionary Anthropology Department of Human Evolution (IT) Deutscher Platz 6 D-04103 Leipzig Germany Phone: 49 (0)341 - 3550 137 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Openldap for PDC
Michael Gasch wrote: Philip Washington wrote: Do you me recover as in recover from a backup or going to the /var/lib/ldap directory and running db_recover. i mean db_recover any ideas? thx I wish I did, Craig seems to have the magic touch. I have about 150 computers + users and transfered that over to one of my Samba computers in a test environment. I have 4 computers connected to it there, 2 which came from the original NT Domain and 1 which I connected as BDC and I have another which I'm going to connect as a domain member server. So far I haven't gone 2 days without it locking up. I just updated to openldap 2.2.13-4 last night and if that locks up I'll gather all the configuration files and post them and hope somebody sees something I did wrong. Michael Gasch wrote: hi, we had the same issues with openldap backend and bdb as backend. sometimes the backend broke and we had to recover the bdb db. it seems to be an issue between openldap v2 + bdb 4.2 + DB_CONFIG + filesystem (now /var/lib/ldap is on a seperate partition and ext3) - currently this works for us greez Philip Washington wrote: I have been testing with openldap_2.2.13-2 and have experience on 2 occasions lockups where the ldap server does not respond (slapcat will just hang). I have upgraded to openldap_2.2.13-4. Is there a recommended version of openldap for SambaPDC? Does anyone have a system in production using openldap_2.2.13-2 or openldap_2.2.13-4? I'm currently using samba3-20b any recommendations for a production system would be welcome. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Openldap for PDC
On Fri, 2005-10-21 at 11:07 -0500, Philip Washington wrote: Michael Gasch wrote: Philip Washington wrote: Do you me recover as in recover from a backup or going to the /var/lib/ldap directory and running db_recover. i mean db_recover any ideas? thx I wish I did, Craig seems to have the magic touch. I have about 150 computers + users and transfered that over to one of my Samba computers in a test environment. I have 4 computers connected to it there, 2 which came from the original NT Domain and 1 which I connected as BDC and I have another which I'm going to connect as a domain member server. So far I haven't gone 2 days without it locking up. I just updated to openldap 2.2.13-4 last night and if that locks up I'll gather all the configuration files and post them and hope somebody sees something I did wrong. I don't think it's a magic touch thing at all - when I first started playing with samba 3.0.0 and ldap, I knew I was in over my head and spent time learning ldap and getting to the point where I could populate it, use it, repair it and function with it before I went back to samba to integrate it. The problem is trying to get the whole enchilada in one bite leads to a lot of indigestion. I took smaller bites. Craig -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Openldap for PDC
I have been testing with openldap_2.2.13-2 and have experience on 2 occasions lockups where the ldap server does not respond (slapcat will just hang). I have upgraded to openldap_2.2.13-4. Is there a recommended version of openldap for SambaPDC? Does anyone have a system in production using openldap_2.2.13-2 or openldap_2.2.13-4? I'm currently using samba3-20b any recommendations for a production system would be welcome. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Openldap for PDC
On Thu, 2005-10-20 at 21:40 -0500, Philip Washington wrote: I have been testing with openldap_2.2.13-2 and have experience on 2 occasions lockups where the ldap server does not respond (slapcat will just hang). I have upgraded to openldap_2.2.13-4. Is there a recommended version of openldap for SambaPDC? Does anyone have a system in production using openldap_2.2.13-2 or openldap_2.2.13-4? I'm currently using samba3-20b any recommendations for a production system would be welcome. you will get a lot of answers on this... First, I think Samba tries to be indifferent to which version of LDAP but I think if it reasonably implements LDAP v3, it's gonna work with Samba. from openldap list - it would go something like that version is way out of date and you need to upgrade (current is something like 2.2.28) Note, 2.2.x series is feature locked and only security issues are being handled. They also have nearly stable 2.3.11 but that is a horse of another color. Most of my clients - I am happy with RHEL 2.2.13-x It works, features haven't really changed and I don't have to screw with it. A lot of my clients though are small ( 50 employees) and it's hard to justify all the effort of compiling. I have manually compiled openldap 2.2.23 and am using it - it wasn't that hard (you really need to also download and compile heimdal kerberos, openssl, cyrus-sasl and berkeley-db4) and yet deal with the existing stuff that has dependencies. My recommendation is, if it ain't broke, don't fix it. If you feel you want to go the manual route, I would heavily recommend that you use Quanah's web site at Stanford as a guide... http://www.stanford.edu/services/directory/openldap/ Note that there is now another alternative, Fedora Directory Server which was formerly Netscape's Directory Server. I have no experience with this and am enjoying whatever little free time I am having at the moment. Craig -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba