Re: [Samba] new box can't join domain since switch to ldapsam
On Thu, Oct 10, 2002 at 10:31:41AM +0200, Louis-David Mitterrand wrote: > On Wed, Oct 09, 2002 at 11:49:10PM +1000, Andrew Bartlett wrote: > > Louis-David Mitterrand wrote: > > > Hello, > > > > > > Since changing to "passdb backend = ldapsam" on my debian unstable PDC > > > things work well, however a new winxp machine can't join the domain. > > > > > > Here is the /var/log/samba/log.smbd output. It seems the sticking point > > > is about a missing user RID? (the new machine is sylla). > > > > Use either ldapsam_nua as the passdb backend, or use an add machine > > script to add a 'unix' account for the machine. getpwnam(machinename$) > > must function by the time the add to the domain is attempted, or if you > > use the _nua hack, it will try to do without - see the doco on this one. > > Thanks, the "add machine script" directive works fine. > > Before I switched to ldapsam from unixsam the "add user script" did > create unix account for machines joining the domain. So apparently "add > machine script" is either a new item or is required when using ldapsam. No, it's just new in Samba 3.0 Andrew Bartlett -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] new box can't join domain since switch to ldapsam
On Wed, Oct 09, 2002 at 11:49:10PM +1000, Andrew Bartlett wrote: > Louis-David Mitterrand wrote: > > Hello, > > > > Since changing to "passdb backend = ldapsam" on my debian unstable PDC > > things work well, however a new winxp machine can't join the domain. > > > > Here is the /var/log/samba/log.smbd output. It seems the sticking point > > is about a missing user RID? (the new machine is sylla). > > Use either ldapsam_nua as the passdb backend, or use an add machine > script to add a 'unix' account for the machine. getpwnam(machinename$) > must function by the time the add to the domain is attempted, or if you > use the _nua hack, it will try to do without - see the doco on this one. Thanks, the "add machine script" directive works fine. Before I switched to ldapsam from unixsam the "add user script" did create unix account for machines joining the domain. So apparently "add machine script" is either a new item or is required when using ldapsam. Thanks again for your help, cheers, -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] new box can't join domain since switch to ldapsam
Louis-David Mitterrand wrote: > > Hello, > > Since changing to "passdb backend = ldapsam" on my debian unstable PDC > things work well, however a new winxp machine can't join the domain. > > Here is the /var/log/samba/log.smbd output. It seems the sticking point > is about a missing user RID? (the new machine is sylla). Use either ldapsam_nua as the passdb backend, or use an add machine script to add a 'unix' account for the machine. getpwnam(machinename$) must function by the time the add to the domain is attempted, or if you use the _nua hack, it will try to do without - see the doco on this one. Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] new box can't join domain since switch to ldapsam
Hello, Since changing to "passdb backend = ldapsam" on my debian unstable PDC things work well, however a new winxp machine can't join the domain. Here is the /var/log/samba/log.smbd output. It seems the sticking point is about a missing user RID? (the new machine is sylla). Thanks in advance for any hints as to what may be wrong, cheer, 2002/10/08 18:06:30, 0] passdb/pdb_ldap.c:init_ldap_from_sam(935) NO user RID specified on account sylla$, cannot store! [2002/10/08 18:06:30, 0] passdb/pdb_ldap.c:ldapsam_add_sam_account(1661) ldapsam_add_sam_account: init_ldap_from_sam failed! [2002/10/08 18:06:30, 0] rpc_server/srv_samr_nt.c:_api_samr_create_user(2302) could not add user/computer sylla$ to passdb. Check permissions? [2002/10/08 18:06:30, 2] smbd/server.c:exit_server(533) Closing connections [2002/10/08 18:06:31, 2] smbd/reply.c:reply_special(81) netbios connect: name1=ZENONname2=SYLLA [2002/10/08 18:06:31, 2] smbd/reply.c:reply_special(95) netbios connect: local=zenon remote=sylla [2002/10/08 18:06:31, 2] passdb/pdb_ldap.c:ldapsam_open_connection(267) ldap_open_connection: connection opened [2002/10/08 18:06:31, 2] passdb/pdb_ldap.c:ldapsam_connect_system(419) ldap_connect_system: succesful connection to the LDAP server [2002/10/08 18:06:31, 2] passdb/pdb_ldap.c:ldapsam_search_one_user(431) ldapsam_search_one_user: searching for:[(&(uid=root)(objectclass=sambaAccount) )] [2002/10/08 18:06:31, 2] passdb/pdb_ldap.c:init_sam_from_ldap(677) Entry found for user: root [2002/10/08 18:06:31, 2] passdb/pdb_ldap.c:ldapsam_open_connection(267) ldap_open_connection: connection opened [2002/10/08 18:06:31, 2] passdb/pdb_ldap.c:ldapsam_connect_system(419) ldap_connect_system: succesful connection to the LDAP server [2002/10/08 18:06:31, 2] passdb/pdb_ldap.c:ldapsam_search_one_user(431) ldapsam_search_one_user: searching for:[rid=1000] [2002/10/08 18:06:31, 2] passdb/pdb_ldap.c:init_sam_from_ldap(677) Entry found for user: root [2002/10/08 18:06:31, 2] auth/auth.c:check_ntlm_password(266) check_password: authentication for user [root] -> [root] -> [root] suceeded [2002/10/08 18:06:32, 2] smbd/server.c:exit_server(533) Closing connections -- HIPPOLYTE: Je permets tout le reste à mon libre courroux. Sortez de l'esclavage où vous êtes réduite. (Phèdre, J-B Racine, acte 5, scène 1) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba