Re: [Samba] smbpasswd and LDAP backend
On 09/09/05, Mark Proehl [EMAIL PROTECTED] wrote: Hello, you have to set unix password sync = No ldap passwd sync = Yes What about just: passdb backend = ldapsam:ldap://ldap.blah.org and use an LDAP-server that supports the password modify extended operation (like OpenLDAP). A password change via smbpasswd will update all userPassword attributes of the LDAP entry Mark -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbpasswd and LDAP backend
Dear List, If I have a PDC with an LDAP backend, would just running smbpasswd username update the users passwd in both the LDAP directory and smb secrets? Thanks, Paul. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE [Samba] smbpasswd and LDAP backend
I think you have to use smbldap-tools (available at samba.org) Cyrille Paul Henry [EMAIL PROTECTED] Envoyé par : [EMAIL PROTECTED] 09/09/2005 09:43 Veuillez répondre à [EMAIL PROTECTED] A samba@lists.samba.org cc Objet [Samba] smbpasswd and LDAP backend Dear List, If I have a PDC with an LDAP backend, would just running smbpasswd username update the users passwd in both the LDAP directory and smb secrets? Thanks, Paul. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd and LDAP backend
Paul Henry wrote: Dear List, If I have a PDC with an LDAP backend, would just running smbpasswd username update the users passwd in both the LDAP directory and smb secrets? Yes, as long as you give the correct setting for passwd program in smb.conf. -- --beast -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd and LDAP backend
Hello, you have to set unix password sync = No ldap passwd sync = Yes and use an LDAP-server that supports the password modify extended operation (like OpenLDAP). A password change via smbpasswd will update all userPassword attributes of the LDAP entry Mark -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd to LDAP
Quoting Paul Gienger [EMAIL PROTECTED]: mess. My question is Shouldn't I somehow be able to insert samba passwords into the LDAP database and move on? Or is it just past that point now? Well, you can do one of two things, as I see it: 1. Try to run pdbedit with import/export flags and point it at your password file. Note that I don't know what this will do with existing entries' data. Will not work. All user passwords are already in LDAP in the current server. 2. Grab the password hashes out of the file and manually insert them. This did work. I'll have to write a script to take care of this for our site here. Thanks for all the help. Naturally 1 would be easier. -- Paul GiengerOffice: 701-281-1884 Applied Engineering Inc. Systems Architect Fax:701-281-1322 URL: www.ae-solutions.com mailto: [EMAIL PROTECTED] This message was sent using IMP, the Internet Messaging Program. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd to LDAP
mess. My question is Shouldn't I somehow be able to insert samba passwords into the LDAP database and move on? Or is it just past that point now? Well, you can do one of two things, as I see it: 1. Try to run pdbedit with import/export flags and point it at your password file. Note that I don't know what this will do with existing entries' data. Will not work. All user passwords are already in LDAP in the current server. I don't think I was clear here, I didn't say to point it at your smbpasswd file, instead I said passsword file. You already stated that you didn't have the windows passwords in LDAP so there shouldn't be any overlap there. My concern was how it would handle if you had somehow gotten the sambaSamAccount objectClass on the users already. -- Paul GiengerOffice: 701-281-1884 Applied Engineering Inc. Systems Architect Fax:701-281-1322 URL: www.ae-solutions.com mailto: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd to LDAP
Quoting Paul Gienger [EMAIL PROTECTED]: mess. My question is Shouldn't I somehow be able to insert samba passwords into the LDAP database and move on? Or is it just past that point now? Well, you can do one of two things, as I see it: 1. Try to run pdbedit with import/export flags and point it at your password file. Note that I don't know what this will do with existing entries' data. Will not work. All user passwords are already in LDAP in the current server. I don't think I was clear here, I didn't say to point it at your smbpasswd file, instead I said passsword file. You already stated that you didn't have the windows passwords in LDAP so there shouldn't be any overlap there. My concern was how it would handle if you had somehow gotten the sambaSamAccount objectClass on the users already. I really do not follow what you suggested I try with the pdbedit command. All I'm interested in is the LM and NT hashes inside of the sambapassword file on my production server. How would the pdbedit command help me get those LM and NT hashes into my LDAP database on my new server? -- Paul GiengerOffice: 701-281-1884 Applied Engineering Inc. Systems Architect Fax:701-281-1322 URL: www.ae-solutions.com mailto: [EMAIL PROTECTED] This message was sent using IMP, the Internet Messaging Program. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd to LDAP
I don't think I was clear here, I didn't say to point it at your smbpasswd file, instead I said passsword file. You already stated that you didn't have the windows passwords in LDAP so there shouldn't be any overlap there. My concern was how it would handle if you had somehow gotten the sambaSamAccount objectClass on the users already. I really do not follow what you suggested I try with the pdbedit command. All I'm interested in is the LM and NT hashes inside of the sambapassword file on my production server. How would the pdbedit command help me get those LM and NT hashes into my LDAP database on my new server? It would help you because that is exactly what it does. If you have ldap set up and working already, so that a newly added user works, the command should be something like pdbedit -i smbpasswd:/etc/smbpasswd.old otherwise you'd have to specify the ldapsam with the -e flag Quoting the man page -i passdb-backend Use a different passdb backend to retrieve users than the one specified in smb.conf. Can be used to import data into your lo- cal user database. This option will ease migration from one passdb backend to another. -e passdb-backend Exports all currently available users to the specified password database backend. This option will ease migration from one passdb backend to another and will ease backing up. -- Paul GiengerOffice: 701-281-1884 Applied Engineering Inc. Systems Architect Fax:701-281-1322 URL: www.ae-solutions.com mailto: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbpasswd to LDAP
Is there a way to take users samba passwords from an old 2.x Samba server, and insert them into a new 3.x Samba server that using an LDAP backend? The new server is already populated with all users and groups in LDAP and is currently on a test network. All that is needed is the users samba passwords from the old server that is using the smbpasswd file. Thanks -- Matt Lung Midwest Tool Die, Corp. This message was sent using IMP, the Internet Messaging Program. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd to LDAP
Matt Lung wrote: Is there a way to take users samba passwords from an old 2.x Samba server, and insert them into a new 3.x Samba server that using an LDAP backend? The new server is already populated with all users and groups in LDAP and is currently on a test network. All that is needed is the users samba passwords from the old server that is using the smbpasswd file. If there aren't samba attributes in ldap you can use pdbedit -i smbpasswd:smbpasswd-file-path If there are already samba attributes this won't work. What I did was: - clean the ldap database (easy here since I was just testing) - smbldap-populate -k 0 -a root - obtain /etc/passwd, /etc/shadow, /etc/samba/smbpasswd from the old machine - remove all machine accounts, system groups and other users/groups you don't in ldap from all these files at this point, if you have special characters (like, á, é, í, etc.) in your files, you'll have to make somewhat a cleaned-up copy, since the idealx tools don't work with non us-ascii characters -temporarily add users in /etc/passwd of the new machine -pdbedit -i smbpasswd:smbpasswd-file -remove the users previously added to /etc/passwd -smbldap-migrate-passwd -d account -a -P your cleansed passwd file -S your shadow file -smbldap-migrate-group -a -G your cleansed group file What I done may be totally wrong, YMMV, etc., but it seems it has worked fine so far. Bye -- Luca Olivetti Wetron Automatización S.A. http://www.wetron.es/ Tel. +34 93 5883004 Fax +34 93 5883007 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd to LDAP
Quoting Luca Olivetti [EMAIL PROTECTED]: Matt Lung wrote: Is there a way to take users samba passwords from an old 2.x Samba server, and insert them into a new 3.x Samba server that using an LDAP backend? The new server is already populated with all users and groups in LDAP and is currently on a test network. All that is needed is the users samba passwords from the old server that is using the smbpasswd file. If there aren't samba attributes in ldap you can use pdbedit -i smbpasswd:smbpasswd-file-path If there are already samba attributes this won't work. What I did was: Hmm... I don't think that will work for us here. Our users have been migrated out of the passwd and shadow file on the old server for a while now. Their account info (except their samba password) has lived in LDAP for a few years now. I'm just trying to avoid having to change all the users passwords on the new server and having a big mess. I'd like it to be very transparent. I guess if what I'm asking is impossible at this point I'm sort of heading towards the mess. My question is Shouldn't I somehow be able to insert samba passwords into the LDAP database and move on? Or is it just past that point now? When I change my password on the new server I know it is changing the sambaLMPassword attribute. So how is the migrate tool setting that from the sambapasswd file when someone is migrating? - clean the ldap database (easy here since I was just testing) - smbldap-populate -k 0 -a root - obtain /etc/passwd, /etc/shadow, /etc/samba/smbpasswd from the old machine - remove all machine accounts, system groups and other users/groups you don't in ldap from all these files at this point, if you have special characters (like, á, é, í, etc.) in your files, you'll have to make somewhat a cleaned-up copy, since the idealx tools don't work with non us-ascii characters -temporarily add users in /etc/passwd of the new machine -pdbedit -i smbpasswd:smbpasswd-file -remove the users previously added to /etc/passwd -smbldap-migrate-passwd -d account -a -P your cleansed passwd file -S your shadow file -smbldap-migrate-group -a -G your cleansed group file What I done may be totally wrong, YMMV, etc., but it seems it has worked fine so far. Bye -- Luca Olivetti Wetron Automatización S.A. http://www.wetron.es/ Tel. +34 93 5883004 Fax +34 93 5883007 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba This message was sent using IMP, the Internet Messaging Program. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd to LDAP
mess. My question is Shouldn't I somehow be able to insert samba passwords into the LDAP database and move on? Or is it just past that point now? Well, you can do one of two things, as I see it: 1. Try to run pdbedit with import/export flags and point it at your password file. Note that I don't know what this will do with existing entries' data. 2. Grab the password hashes out of the file and manually insert them. Naturally 1 would be easier. -- Paul GiengerOffice: 701-281-1884 Applied Engineering Inc. Systems Architect Fax:701-281-1322 URL: www.ae-solutions.com mailto: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbpasswd and ldap problem
Hi, I recently upgraded a working samba server from 2.2.8a to 2.2.9_1 under FreeBSD 5.1R. This is still working expept a ldap problem. Here is what's happening : server# smbpasswd myUser New SMB password: Retype new SMB password: LDAPS option set...! ldap_connect_system: Binding to ldap server as Bind failed: Can't contact LDAP server Failed to find entry for user myUser. Failed to modify password entry for user myUser The user 'myUser' already exists in the smbpasswd file, I just want to change its password. Please note that the problem appears exactly the same when trying to add a user with a '-a' option. It seems that I compiled ldap (well, the automated package installer of freebsd), and I like it. I forecast that I will use samba one day, but not yet. Is it possible to have a samba compiled with the ldap support, but not be forced to use it? Is there an option in smb.conf to tell samba to avoid bothering me with these ldap add-ons? If not, what can I do to make him play with its ldap things, but actually still use the good old smbpasswd file we all know? Thank you. -- Nicolas Ecarnot -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Smbpasswd to LDAP migration
I have a Samba PDC running on Redhat 7.3 (samba 3.0.0 installed from binaries). I initially set it up using smbpasswd as the database backend and everything was working just fine. I've since decided to migrate everything to LDAP. I have OpenLDAP 2.0.27 installed and have set up the directory following the instructions in the Samba-HOWTO-Collection. If I use slapadd to add Samba users, they get set up in the LDAP directory just fine, and I can use those user accounts on a windows box to authenticate Workgroup shares. However, if I try to add a windows (XP PRo) machine to the domain, or try to use pdbedit to add users, I get errors. It's almost as if Samba has no problem reading the ldap directory, but can't make any modifications to it. I haven't set up Groups yet (I'm not entirely clear on how to do this since the HOWTO merely says ldap users are responsible for adding Groups without any indication of HOW that's supposed to be done) Command line LDAP tools such as ldapdelete and ldapmodify work just fine for adding items using .ldif files. The only ldap access lines I have are access to attrs=lmPassword,ntPassword by dn=cn=admin,ou=People,dc=pandora-net,dc=com write by * none access to dn= by * read If I try to add a user using pdbedit I get: ldapsam_modify_entry: Failed to add user dn= uid=asmith,ou=People with: No such object This comes after asking me for a password for the user. Oddly enough, if I try to add a user that did NOT exist in the old smbpasswd file, I get a DIFFERENT error: could not create account to add new user invaliduser I've checked and rechecked the rootdn that I have in my smb.conf file and it matches exactly with what is in slapd.conf. The password is correct as it's the same one I use to make modifications to the Directory using ldapmodify I'm not certain where I'm going wrong here. -- - The pain of war could not exceed, the woe of aftermath. The drums will shake the castle walls The ringwraiths ride in black -Led Zeppelin The Battle of Evermoore -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: pdbedit [ WAS Re: [Samba] smbpasswd and LDAP
On Fri, 1 Aug 2003 17:47:11 +0700 Beast [EMAIL PROTECTED] wrote: It seems samba was trying to add this new user instead of modify. Whenever I add new user which doesn't has posixaccount yet, smbpasswd refused to add. It's like chicken and egg pb. Aah.., using pdbedit -a was able to add new (non existing posixaccount), but what if I want to add custom attributes? So you solved your problems finally? I suppose with add custom attributes you mean you want to write your own schema-file and have the users use these new objectClass(es) and attributes. Well, then just use LDAP-commands to assign them to them. That's nothing Samba-specific... (Don't ask me how to apply a specific LDAP-command such as ldapmodify to a perhaps large subset of all LDAP entries ... I just don't know that yet either.) Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: pdbedit [ WAS Re: [Samba] smbpasswd and LDAP
Saturday, August 2, 2003, 2:16:40 PM, Markus wrote: On Fri, 1 Aug 2003 17:47:11 +0700 Beast [EMAIL PROTECTED] wrote: It seems samba was trying to add this new user instead of modify. Whenever I add new user which doesn't has posixaccount yet, smbpasswd refused to add. It's like chicken and egg pb. Aah.., using pdbedit -a was able to add new (non existing posixaccount), but what if I want to add custom attributes? So you solved your problems finally? For this case, yes. more pb still waiting on the list... I suppose with add custom attributes you mean you want to write your own schema-file and have the users use these new objectClass(es) and attributes. Well, then just use LDAP-commands to assign them to them. That's nothing Samba-specific... Hmm, if i can not customize the attribute that were added by this tool, then better to create/modify/delete user stright to ldap server itself. It would be better if it has an options like -l which specify the ldif file to be added OR this tools will only modify existing posixaccount instead of creating new account. (Don't ask me how to apply a specific LDAP-command such as ldapmodify to a perhaps large subset of all LDAP entries ... I just don't know that yet either.) Well, tks. I can handle it myself :-) --beast -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd and LDAP
I believe that in samba 2.2.x it is set in /etc/ldap.conf on the server box. Mine reads like this ... # may incur a small performance impact. nss_base_passwd dc=microverse,dc=net?sub #nss_base_passwd ou=People,dc=microverse,dc=net?one nss_base_shadow ou=People,dc=microverse,dc=net?one nss_base_group ou=Group,dc=microverse,dc=net?one nss_base_hosts ou=Hosts,dc=microverse,dc=com?one ... The nss_base_passwd line is different so that it can find the machine accounts which don't live in the People ou. In Samba 3.0 it will be set more explicitly. Jason C. Leach wrote: hi, What is the search scope of samba by default? One, Base, Sub Also. Can two LDAP PDCs, on different subnets and windows domains use the same LDAP server for auth? I have one working well, but the other seems to have trouble, seems to have problems with the machine account settings. j. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd and LDAP
On Sat, 26 Jul 2003 12:38:12 +0700 Beast [EMAIL PROTECTED] wrote: Hi! Is it possible to use smbpasswd command to add necessary objectclasses and attributes to existing ldap entries which contain only posix account?? Yes, it should work. I got invalid DN syntax when adding smbuser using smbpasswd : - [EMAIL PROTECTED] root]# smbpasswd -a beast New SMB password: Retype new SMB password: failed to add domain dn= sambaDomainName=DJKT,dc=mydomain,dc=com with: Invalid DN syntax invalid DN Adding domain info for DJKT failed with NT_STATUS_UNSUCCESSFUL failed to add user dn= uid=beast,ou=people,dc=mydomain,dc=com with: Invalid DN syntax invalid DN failed to modify/add user with uid = beast (dn = uid=beast,ou=people,dc=mydomain,dc=com) Failed to add entry for user beast. Failed to modify password entry for user beast I have necessary ldap entry under ou=people,ou=mysite,dc=mydomain,dc=com. Your LDAP entries really are at ou=, ou=, dc=, dc=? This setup is not a standard setup (which holds people in ou=People,dc=mydomain,dc=net. You'll have to tell Samba about where to search for your Users using smb.conf's option ldap suffix. Here are my LDAP-settings in smb.conf: # Without SSL: ldap admin dn = cn=manager,dc=mydomain,dc=net ldap server = ldap.mydomain.net ldap suffix = ou=People,dc=mydomain,dc=net # Plus these options for SSL support: #ldap port = 636 #ldap ssl = on Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd and LDAP
Friday, August 1, 2003, 2:26:21 PM, Markus wrote: On Sat, 26 Jul 2003 12:38:12 +0700 Beast [EMAIL PROTECTED] wrote: Hi! Is it possible to use smbpasswd command to add necessary objectclasses and attributes to existing ldap entries which contain only posix account?? Yes, it should work. Thnaks for your response, i almost desperate waiting response in this list. In facts, many questions (posting) was left unanswered 8=) I have necessary ldap entry under ou=people,ou=mysite,dc=mydomain,dc=com. Your LDAP entries really are at ou=, ou=, dc=, dc=? This setup is not a standard setup (which holds people in ou=People,dc=mydomain,dc=net. You'll have to tell Samba about where to search for your Users using smb.conf's option ldap suffix. Many thanks, i was not checking the error once again because many pb were waiting :( FYI, we can not use quote becaue samba will include this also. I already fix it, however problem still appear : [EMAIL PROTECTED] samba]# smbpasswd -D5 -a budhi .. smbldap_search_suffix: searching for:[((sambaSID=S-1-5-21-2897595519-3619093474-3625347041-11598)(|(objectClass=sambaIdmapEntry)(objectClass=sambaSidEntry)))] Adding new user Setting entry for user: budhi failed to add user dn= uid=budhi,ou=people,ou=jakarta,dc=indorama,dc=com with: Already exists failed to modify/add user with uid = budhi (dn = uid=budhi,ou=people,ou=jakarta,dc=indorama,dc=com) Failed to add entry for user budhi. Failed to modify password entry for user budhi It seems samba was trying to add this new user instead of modify. Whenever I add new user which doesn't has posixaccount yet, smbpasswd refused to add. It's like chicken and egg pb. This coming from ldap log : Aug 1 16:21:31 ventura slapd[15000]: conn=6 op=9 ADD dn=uid=budhi,ou=people,ou=jakarta,dc=indorama,dc=com Aug 1 16:21:31 ventura slapd[15000]: = bdb_dn2id_add: put failed: DB_KEYEXIST: Key/data pair already exists -30997 Here are my LDAP-settings in smb.conf: # Without SSL: ldap admin dn = cn=manager,dc=mydomain,dc=net ldap server = ldap.mydomain.net ldap suffix = ou=People,dc=mydomain,dc=net # Plus these options for SSL support: #ldap port = 636 #ldap ssl = on Have you try it with tls support? it would not work with this settings: -- passdb backend = ldapsam, guest ldap server = ldap.jkt.irs.co.id ldap port = 389 ldap admin dn = cn=ldapmanager,dc=indorama,dc=com ldap ssl = start_tls [EMAIL PROTECTED] samba]# pdbedit -L Failed to issue the StartTLS instruction: Can't contact LDAP server Connection to LDAP Server failed for the 1 try! Failed to issue the StartTLS instruction: Can't contact LDAP server Connection to LDAP Server failed for the 2 try! But working when using this syntax : passdb backend = ldapsam:ldap://ldap.jkt.irs.co.id, guest If you have success with samba3, please share :-) So far I can not make any user (even having uid=0, rid=1000 and groupmap rid=512 Domain Admin) Any clue? --beast -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd and LDAP
Friday, August 1, 2003, 4:32:48 PM, Beast wrote: [EMAIL PROTECTED] samba]# pdbedit -L Failed to issue the StartTLS instruction: Can't contact LDAP server Connection to LDAP Server failed for the 1 try! Failed to issue the StartTLS instruction: Can't contact LDAP server Connection to LDAP Server failed for the 2 try! But working when using this syntax : passdb backend = ldapsam:ldap://ldap.jkt.irs.co.id, guest If you have success with samba3, please share :-) So far I can not make any user (even having uid=0, rid=1000 and groupmap rid=512 Domain Admin) Any clue? Sorry, It should be I can not make any user to be member of domain admin, even root or 'administrator' itself... --beast -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
pdbedit [ WAS Re: [Samba] smbpasswd and LDAP
Friday, August 1, 2003, 4:32:48 PM, Beast wrote: [EMAIL PROTECTED] samba]# smbpasswd -D5 -a budhi .. smbldap_search_suffix: searching for:[((sambaSID=S-1-5-21-2897595519-3619093474-3625347041-11598)(|(objectClass=sambaIdmapEntry)(objectClass=sambaSidEntry)))] Adding new user Setting entry for user: budhi failed to add user dn= uid=budhi,ou=people,ou=jakarta,dc=indorama,dc=com with: Already exists failed to modify/add user with uid = budhi (dn = uid=budhi,ou=people,ou=jakarta,dc=indorama,dc=com) Failed to add entry for user budhi. Failed to modify password entry for user budhi It seems samba was trying to add this new user instead of modify. Whenever I add new user which doesn't has posixaccount yet, smbpasswd refused to add. It's like chicken and egg pb. Aah.., using pdbedit -a was able to add new (non existing posixaccount), but what if I want to add custom attributes? --beast -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd and LDAP
hi, What is the search scope of samba by default? One, Base, Sub Also. Can two LDAP PDCs, on different subnets and windows domains use the same LDAP server for auth? I have one working well, but the other seems to have trouble, seems to have problems with the machine account settings. j. -- .. . Jason C. Leach .. Current PGP/GPG Key ID: 43AD2024 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] smbpasswd and LDAP
Hello, Is it possible to use smbpasswd command to add necessary objectclasses and attributes to existing ldap entries which contain only posix account?? I got invalid DN syntax when adding smbuser using smbpasswd : - [EMAIL PROTECTED] root]# smbpasswd -a beast New SMB password: Retype new SMB password: failed to add domain dn= sambaDomainName=DJKT,dc=mydomain,dc=com with: Invalid DN syntax invalid DN Adding domain info for DJKT failed with NT_STATUS_UNSUCCESSFUL failed to add user dn= uid=beast,ou=people,dc=mydomain,dc=com with: Invalid DN syntax invalid DN failed to modify/add user with uid = beast (dn = uid=beast,ou=people,dc=mydomain,dc=com) Failed to add entry for user beast. Failed to modify password entry for user beast I have necessary ldap entry under ou=people,ou=mysite,dc=mydomain,dc=com. --beast -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba