Got it fixed the problem was with ldap.
Have 7 production ldap servers with a lot of data for many services.
slapd.conf is about 400 lines. Actually it's a bunch of include files.
My mistake was to use my customized slapd from our kolab server.
Much to my suprise it wasn't that acls that got me
I didn't use smldap-tools. But I think you have to configure them with
the appropriate ldap user credentials- which is typically NOT root.
Although it looks like ldap perms are not the issue since stuff is being
created.
So you have both a root and administrator account in /etc/passwd?
D
Thanks Gaiseric
Making progress but still messed up :-(
Turned up error messages in samba and getting some error message such as:
_samr_SetUserInfo2: root does possess sufficient rights
Odd as the I'm not using root.
My administrator account is administrator not root.
Set up over 4 years ago a
The localsid on a DC should be the domain sid.You should be able to
fix this with "net setlocalsid" command.
Generally in Windows you want to assign permissions and rights to a
group rather than directly to a user.As long as your Administrator
account is in the "Domain Admins" group a
How about some more specific problems.
noticed that there is no localsid.
net getlocalsid
[2010/08/27 13:48:15, 0] utils/net.c:net_getlocalsid(708)
Can't fetch domain SID for name: OSHKOSH
I have seen mention that the localsid should be the same as the domainsid
when using ldap.
Is that tru
Should have read this first:
http://samba.org/samba/docs/man/Samba-Guide/upgrades.html#id2600749
Problem is I did it the wrong way on a few production systems.
Odds are this is the second time I did it wrong.
Running Debian Lenny using smbldap.
It mostly works.
Existing members of the domain are