I am not a Samba Guru, But I have done a similar purpose for testing
before, as the problem is caused when you are changing the password on
the Machine 2, which is a slave, it is READ ONLY and the changes what
you do will not be updated or reflected on the original copy. And the
ldap credentials of the slave will not be written to the database.All
the changes have to be passed on from the Master database.
Lukasz Stelmach wrote:
Greetings All.
First let me introduce my situation
Machine1: Pdc Samba + OpenLDAP(master)
Machine2: Bdc Samba + OpenLDAP(slave)
LDAP stores Samba and POSIX information for each user.
Case1: I login to Machine1 and invoke smbpasswd. I change
my passwords (samba and posix without any problem). In next
few seconds they get propagated to Machin2 wher I can login
with new credentials.
ldap log says
conn=327 fd=26 ACCEPT from PATH=/var//run/ldapi (PATH=/var//run/ldapi)
conn=327 op=0 BIND dn="cn=Sambaroot,o=example,c=xx" method=128
conn=327 op=0 BIND dn="cn=Sambaroot,o=example,c=xx" mech=SIMPLE ssf=0
conn=327 op=0 RESULT tag=97 err=0 text=
conn=327 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
conn=327 op=1 SRCH attr=supportedControl
conn=327 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
conn=327 op=2 SRCH base="o=example,c=xx" scope=2 deref=0 filter="(&(uid=jdoe)(objectClass=sambaSamAccount))"
conn=327 op=2 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn displayName sambaHomeDrive sambaHomePath sambaLogonScript sambaProfilePath description sambaUserWorkstations sambaSID sambaPrimaryGroupSID sambaLMPassword sambaNTPassword sambaDomainName objectClass sambaAcctFlags sambaMungedDial sambaBadPasswordCount sambaBadPasswordTime sambaPasswordHistory modifyTimestamp sambaLogonHours modifyTimestamp
conn=327 op=2 SEARCH RESULT tag=101 err=0 nentries=1 text=
#
#conn=328 is made via nss_ldap
#
conn=328 fd=27 ACCEPT from PATH=/var//run/ldapi (PATH=/var//run/ldapi)
conn=328 op=0 BIND dn="cn=Authenticate,o=example,c=xx" method=128
conn=328 op=0 BIND dn="cn=Authenticate,o=example,c=xx" mech=SIMPLE ssf=0
conn=328 op=0 RESULT tag=97 err=0 text=
conn=328 op=1 SRCH base="ou=People,o=example,c=xx" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=jdoe))"
conn=328 op=1 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectClass
conn=328 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
conn=328 op=2 SRCH base="o=example,c=xx" scope=2 deref=0 filter="(&(objectClass=posixGroup)(memberUid=jdoe))"
conn=328 op=2 SRCH attr=gidNumber
conn=328 op=2 SEARCH RESULT tag=101 err=0 nentries=2 text=
conn=328 op=3 ABANDON msg=3
conn=327 op=3 SRCH base="ou=Groups,o=example,c=xx" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=1000))"
conn=327 op=3 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
conn=327 op=3 SEARCH RESULT tag=101 err=0 nentries=1 text=
conn=327 op=5 SRCH base="ou=Groups,o=example,c=xx" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=1001))"
conn=327 op=5 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
conn=327 op=5 SEARCH RESULT tag=101 err=0 nentries=1 text=
conn=327 op=6 SRCH base="o=example,c=xx" scope=2 deref=0 filter="(&(uid=jdoe)(objectClass=sambaSamAccount))"
conn=327 op=6 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn displayName sambaHomeDrive sambaHomePath sambaLogonScript sambaProfilePath description sambaUserWorkstations sambaSID sambaPrimaryGroupSID sambaLMPassword sambaNTPassword sambaDomainName objectClass sambaAcctFlags sambaMungedDial sambaBadPasswordCount sambaBadPasswordTime sambaPasswordHistory modifyTimestamp sambaLogonHours modifyTimestamp
conn=327 op=6 SEARCH RESULT tag=101 err=0 nentries=1 text=
conn=328 op=4 SRCH base="o=example,c=xx" scope=2 deref=0 filter="(&(objectClass=posixGroup)(memberUid=jdoe))"
conn=328 op=4 SRCH attr=gidNumber
conn=328 op=4 SEARCH RESULT tag=101 err=0 nentries=2 text=
conn=328 op=5 ABANDON msg=5
conn=327 op=7 SRCH base="o=example,c=xx" scope=2 deref=0 filter="(&(uid=jdoe)(objectClass=sambaSamAccount))"
conn=327 op=7 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn displayName sambaHomeDrive sambaHomePath sambaLogonScript sambaProfilePath description sambaUserWorkstations sambaSID sambaPrimaryGroupSID sambaLMPassword sambaNTPassword sambaDomainName objectClass sambaAcctFlags sambaMungedDial sambaBadPasswordCount sambaBadPasswordTime sambaPasswordHistory modifyTimestamp sambaLogonHours modifyTimestamp
conn=327 op=7 SEARCH RESULT tag=101 err=0 nentries=1 text=
#
#it seems to be here where the modi