blade74
29.03.04, 19:56
Hallo, habe jetzt nach dem ich Samba 2.2.8a und ldap nicht dazu bekommen habe das er mich in die Domäne aufnimmt
entschlossen Samba 3.02a mit Ldap zu testen
Jetzt habe ich Samba installiert aber jetzt geht ´nichts mehr
vorher konnte ich wenigstens noch meine Laufwerke mappen
aber das geht jetzt auch nicht mehr
wenn ich smbpasswd -m -a ausführe wird dies ausgeführt aber es wird nichts in ldap eingetragen
So langsam verzweifele ich
(System ist Suse 9.0)
hier mal dein paar Dateien
smb.conf
[global]
workgroup = TUX-NET
netbiosname = SAMBA_PDC
server string = Samba %v (PDC) @ samba.home
browseable = no
public = no
writeable = no
guest ok = no
log level = 99
log file = /var/log.%m
unix password sync = no
domain master = yes
prefered master = yes
domain logons = yes
os level = 65
security = user
## LADP
ssl = no
ldap suffix = ou=home,o=no-ip
ldap machine suffix = ou=rechner
ldap user suffix = ou=user
ldap group suffix = ou=groups
ldap filter = (&(uid=%u)(objectclass=sambaSamAccount))
ldap admin dn = cn=Manager,ou=tigersworld,o=no-ip
ldap ssl =
# LogON Einstellungen für Windows 9x/NT/2000/ME
logon drive = Z:
logon path = \\SAMBA_PDC\profiles\%U.pds
logon home = \\SAMBA_PDC\profiles\%U
logon script = %U.bat
slapd.conf
# General Paramters
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/misc.schema
include /etc/openldap/schema/openldap.schema
include /etc/openldap/schema/samba3.schema
#
pidfile /var/run/slapd.pid
argsfile /var/run/slapd.args
#
allow bind_v2
database ldbm
cachesize 1000
dbcachesize 100000
suffix "o=no-ip"
#
rootdn "cn=Manager,o=no-ip"
rootpw test
#
directory /var/lib/ldap
access to *
by * read
index objectClass eq
ldif datei
dn: o=no-ip
objectClass: organization
o: no-ip
dn: ou=home,o=no-ip
objectClass: organizationalunit
ou: home
dn: cn=Manager,ou=home,o=no-ip
objectClass: person
cn: Manager
sn: Manager
description: "LDAP Manager"
dn: ou=user,ou=home,o=no-ip
ou: user
objectClass: organizationalUnit
dn: ou=group,ou=home,o=no-ip
ou: group
objectClass: organizationalUnit
dn: uid=testp,ou=user,ou=home,o=no-ip
objectClass: account
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
shadowLastChange: 11660
shadowMax: 99999
shadowWarning: 0
uidNumber: 500
gidNumber: 100
homeDirectory: /home/testp
loginShell: /bin/bash
cn: testp
userPassword: {crypt}rmDfbSaep00Gk
uid: testp
dn: uid=snoopy$,ou=rechner,ou=home,o=no-ip
objectClass: account
objectClass: top
objectClass: posixAccount
objectClass: sambaAccount
uidNumber: 599
gidNumber: 100
homeDirectory: \dev\null
uid: snoopy$
cn: snoopy$
das sagt das samba log beim Versuch auf ein share zuzugreifen
check_ntlm_password: Authentication for user [testp] -> [testp] FAILED with error NT_STATUS_NO_SUCH_USER
[2004/03/29 22:42:15, 2] auth/auth.c:check_ntlm_password(312)
check_ntlm_password: Authentication for user [testp] -> [testp] FAILED with error NT_STATUS_NO_SUCH_USER
[2004/03/29 22:42:15, 2] auth/auth.c:check_ntlm_password(312)
check_ntlm_password: Authentication for user [testp] -> [testp] FAILED with error NT_STATUS_NO_SUCH_USER
[2004/03/29 22:42:22, 2] smbd/server.c:exit_server(558)
Closing connections
und das /var/log/messeges/
Mar 29 22:47:09 linux smbd[2984]: [2004/03/29 22:47:09, 0] lib/util_sock.c:get_peer_addr(952)
Mar 29 22:47:09 linux smbd[2984]: getpeername failed. Error was Transport endpoint is not connected
Mar 29 22:47:09 linux smbd[2984]: [2004/03/29 22:47:09, 0] lib/util_sock.c:read_socket_data(342)
Mar 29 22:47:09 linux smbd[2984]: read_socket_data: recv failure for 4. Error = Connection reset by peer
Mar 29 22:47:09 linux slapd[2219]: conn=89 fd=21 ACCEPT from IP=127.0.0.1:32895 (IP=0.0.0.0:389)
Mar 29 22:47:09 linux slapd[2906]: conn=89 op=0 BIND dn="" method=128
Mar 29 22:47:09 linux slapd[2906]: conn=89 op=0 RESULT tag=97 err=0 text=
Mar 29 22:47:09 linux slapd[2906]: conn=89 op=1 SRCH base="ou=user,ou=home,o=no-ip" scope=2 filter="(uid=nobody)"
Mar 29 22:47:09 linux slapd[2906]: conn=89 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=
Mar 29 22:47:09 linux slapd[2222]: conn=89 op=2 SRCH base="ou=user,ou=home,o=no-ip" scope=1 filter="(&(objectClass=posixGroup)(memberUid=nobody))"
Mar 29 22:47:09 linux slapd[2222]: conn=89 op=2 SRCH attr=cn userPassword memberUid uniqueMember gidNumber
Mar 29 22:47:09 linux slapd[2222]: conn=89 op=2 SEARCH RESULT tag=101 err=0 nentries=0 text=
Mar 29 22:47:19 linux slapd[2219]: conn=89 fd=21 closed
entschlossen Samba 3.02a mit Ldap zu testen
Jetzt habe ich Samba installiert aber jetzt geht ´nichts mehr
vorher konnte ich wenigstens noch meine Laufwerke mappen
aber das geht jetzt auch nicht mehr
wenn ich smbpasswd -m -a ausführe wird dies ausgeführt aber es wird nichts in ldap eingetragen
So langsam verzweifele ich
(System ist Suse 9.0)
hier mal dein paar Dateien
smb.conf
[global]
workgroup = TUX-NET
netbiosname = SAMBA_PDC
server string = Samba %v (PDC) @ samba.home
browseable = no
public = no
writeable = no
guest ok = no
log level = 99
log file = /var/log.%m
unix password sync = no
domain master = yes
prefered master = yes
domain logons = yes
os level = 65
security = user
## LADP
ssl = no
ldap suffix = ou=home,o=no-ip
ldap machine suffix = ou=rechner
ldap user suffix = ou=user
ldap group suffix = ou=groups
ldap filter = (&(uid=%u)(objectclass=sambaSamAccount))
ldap admin dn = cn=Manager,ou=tigersworld,o=no-ip
ldap ssl =
# LogON Einstellungen für Windows 9x/NT/2000/ME
logon drive = Z:
logon path = \\SAMBA_PDC\profiles\%U.pds
logon home = \\SAMBA_PDC\profiles\%U
logon script = %U.bat
slapd.conf
# General Paramters
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/misc.schema
include /etc/openldap/schema/openldap.schema
include /etc/openldap/schema/samba3.schema
#
pidfile /var/run/slapd.pid
argsfile /var/run/slapd.args
#
allow bind_v2
database ldbm
cachesize 1000
dbcachesize 100000
suffix "o=no-ip"
#
rootdn "cn=Manager,o=no-ip"
rootpw test
#
directory /var/lib/ldap
access to *
by * read
index objectClass eq
ldif datei
dn: o=no-ip
objectClass: organization
o: no-ip
dn: ou=home,o=no-ip
objectClass: organizationalunit
ou: home
dn: cn=Manager,ou=home,o=no-ip
objectClass: person
cn: Manager
sn: Manager
description: "LDAP Manager"
dn: ou=user,ou=home,o=no-ip
ou: user
objectClass: organizationalUnit
dn: ou=group,ou=home,o=no-ip
ou: group
objectClass: organizationalUnit
dn: uid=testp,ou=user,ou=home,o=no-ip
objectClass: account
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
shadowLastChange: 11660
shadowMax: 99999
shadowWarning: 0
uidNumber: 500
gidNumber: 100
homeDirectory: /home/testp
loginShell: /bin/bash
cn: testp
userPassword: {crypt}rmDfbSaep00Gk
uid: testp
dn: uid=snoopy$,ou=rechner,ou=home,o=no-ip
objectClass: account
objectClass: top
objectClass: posixAccount
objectClass: sambaAccount
uidNumber: 599
gidNumber: 100
homeDirectory: \dev\null
uid: snoopy$
cn: snoopy$
das sagt das samba log beim Versuch auf ein share zuzugreifen
check_ntlm_password: Authentication for user [testp] -> [testp] FAILED with error NT_STATUS_NO_SUCH_USER
[2004/03/29 22:42:15, 2] auth/auth.c:check_ntlm_password(312)
check_ntlm_password: Authentication for user [testp] -> [testp] FAILED with error NT_STATUS_NO_SUCH_USER
[2004/03/29 22:42:15, 2] auth/auth.c:check_ntlm_password(312)
check_ntlm_password: Authentication for user [testp] -> [testp] FAILED with error NT_STATUS_NO_SUCH_USER
[2004/03/29 22:42:22, 2] smbd/server.c:exit_server(558)
Closing connections
und das /var/log/messeges/
Mar 29 22:47:09 linux smbd[2984]: [2004/03/29 22:47:09, 0] lib/util_sock.c:get_peer_addr(952)
Mar 29 22:47:09 linux smbd[2984]: getpeername failed. Error was Transport endpoint is not connected
Mar 29 22:47:09 linux smbd[2984]: [2004/03/29 22:47:09, 0] lib/util_sock.c:read_socket_data(342)
Mar 29 22:47:09 linux smbd[2984]: read_socket_data: recv failure for 4. Error = Connection reset by peer
Mar 29 22:47:09 linux slapd[2219]: conn=89 fd=21 ACCEPT from IP=127.0.0.1:32895 (IP=0.0.0.0:389)
Mar 29 22:47:09 linux slapd[2906]: conn=89 op=0 BIND dn="" method=128
Mar 29 22:47:09 linux slapd[2906]: conn=89 op=0 RESULT tag=97 err=0 text=
Mar 29 22:47:09 linux slapd[2906]: conn=89 op=1 SRCH base="ou=user,ou=home,o=no-ip" scope=2 filter="(uid=nobody)"
Mar 29 22:47:09 linux slapd[2906]: conn=89 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=
Mar 29 22:47:09 linux slapd[2222]: conn=89 op=2 SRCH base="ou=user,ou=home,o=no-ip" scope=1 filter="(&(objectClass=posixGroup)(memberUid=nobody))"
Mar 29 22:47:09 linux slapd[2222]: conn=89 op=2 SRCH attr=cn userPassword memberUid uniqueMember gidNumber
Mar 29 22:47:09 linux slapd[2222]: conn=89 op=2 SEARCH RESULT tag=101 err=0 nentries=0 text=
Mar 29 22:47:19 linux slapd[2219]: conn=89 fd=21 closed