Re: Configurado Samba + LDAP
cara eu estava com o mesmo erro ......da uma olhada no seguinte
seu smbldap_bind.conf tem que estar certinho...e o smbldap.conf tb e após a
verificacao dos dois arquivos da um smbldap-populate
depois tenta criar o usuários...no Debian deu certo mano!
smbldap_bind.conf
############################
# Credential Configuration #
############################
# Notes: you can specify two differents configuration if you use a
# master ldap for writing access and a slave ldap server for reading access
# By default, we will use the same DN (so it will work for standard Samba
# release)
# Especifica o administrador da base LDAP do servidor principal
# masterDN="cn=Manager,dc=idealx,dc=org"
masterDN="cn=admin,dc=first,dc=com"
# masterPw="secret"
masterPw="teste"
Rodrigo Tavares-2 wrote:
>
> Pessoal,
>
> Estou tentando integrar Samba e LDAP.
>
> Depois de tudo configurado (samba e sldap) quando
> tento adicionar um usuário vem a resposta :
>
> desktop:~# smbldap-useradd faria
> Error looking for next uid in
> cn=NextFreeUnixId,ou=System,dc=home:No such object at
> /usr/share/perl5/smbldap_tools.pm line 1071.
>
> Consultando a Internet, achei a seguinte solução :
>
> ldapadd -x -h 192.168.1.3 -D "cn=root,dc=home" -f
> base.ldif -W
>
> Mesmo assim a senha definida no LDAP, não autentica
> após rodar o comando acima, retornando Invalid
> credentials (49).
>
> Link :
> http://sourceforge.net/docman/display_doc.php?docid=33543&group_id=166108
>
> Alguém tem alguma idéia ?
>
> Att,
>
> Rodrigo Faria
>
> #/etc/ldap/sldap.conf
> # Schema and objectClass definitions
> include /etc/ldap/schema/core.schema
> include /etc/ldap/schema/cosine.schema
> include /etc/ldap/schema/nis.schema
> include /etc/ldap/schema/inetorgperson.schema
> include /etc/ldap/schema/samba.schema
> include /etc/ldap/schema/misc.schema
>
> schemacheck on
> pidfile /var/run/slapd/slapd.pid
> argsfile /var/run/slapd/slapd.args
>
> loglevel 0
> modulepath /usr/lib/ldap
> moduleload back_bdb
> backend bdb
> database bdb
> suffix "dc=home"
> directory "/var/lib/ldap"
>
> index objectClass eq
> index sambaSID eq
> index sambaPrimaryGroupSID eq
> index sambaDomainName eq
>
> lastmod on
>
> replogfile /var/lib/ldap/replog
>
> access to attrs=userPassword
> by dn.regex="cn=admin,dc=home" write
> by dn="cn=admin,dc=home" write
> by anonymous auth
> by self write
> by * none
> access to dn.base="" by * read
>
> access to *
> by dn.regex="cn=admin,dc=home" write
> by dn="cn=admin,dc=home" write
> by * read
>
> # Samba
> access to
> attrs=sambaLmPassword,sambaNtPassword,sambaPwdLastSet,sambaPwdMustChange,sambaPwdCanChang
> by dn.regex="cn=admin,dc=home" write
> by dn="cn=admin,dc=home" write
> by anonymous auth
> by self write
> by * none
>
> SASL_SECPROPS = passcred
>
> # Comando ldapsearch
>
> # extended LDIF
> #
> # LDAPv3
> # base <dc=home> with scope subtree
> # filter: (objectclass=*)
> # requesting: ALL
> #
>
> # home
> dn: dc=home
> objectClass: dcObject
> objectClass: organization
> o: Laboratorio de Informatica
> dc: home
>
> # admin, home
> dn: cn=admin,dc=home
> objectClass: organizationalRole
> cn: Admin
>
> # People, home
> dn: ou=People,dc=home
> objectClass: top
> objectClass: organizationalUnit
> ou: People
>
> # Group, home
> dn: ou=Group,dc=home
> objectClass: top
> objectClass: organizationalUnit
> ou: Group
>
> # HOME, home
> dn: sambaDomainName=HOME,dc=home
> sambaDomainName: HOME
> sambaSID: S-1-5-21-1477455234-568052318-2139700303
> sambaAlgorithmicRidBase: 1000
> objectClass: sambaDomain
> sambaNextUserRid: 1000
> sambaMinPwdLength: 5
> sambaPwdHistoryLength: 0
> sambaLogonToChgPwd: 0
> sambaMaxPwdAge: -1
> sambaMinPwdAge: 0
> sambaLockoutDuration: 30
> sambaLockoutObservationWindow: 30
> sambaLockoutThreshold: 0
> sambaForceLogoff: -1
> sambaRefuseMachinePwdChange: 0
>
> # search result
> search: 2
> result: 0 Success
>
> # numResponses: 6
> # numEntries: 5
>
>
>
>
>
> Abra sua conta no Yahoo! Mail, o único sem limite de espaço para
> armazenamento!
> http://br.mail.yahoo.com/
>
>
> --
> To UNSUBSCRIBE, email to debian-user-portuguese-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
>
>
>
--
View this message in context: http://www.nabble.com/Configurado-Samba-%2B-LDAP-tp15002499p15479620.html
Sent from the debian-user-portuguese mailing list archive at Nabble.com.
Reply to: