Samba and LDAP
Ok, so I set up my LDAP, put my people and groups in it, and then told my Samba 3 to look towards my LDAP for the user accounts. However, it does not seem to find my samba users and when I try to add one it does not seem to work (in the KDE Samba Configuration snap-in the user does not appear in the Samba user list, and I try to add it from the Unix user list, but it will not allow me to Apply it and if I go from the Samba Configuration and back it is no longer there). Also, if I connect to a share using the Computer Management Console in Windows XP and try to add a user (as my Samba3 How-To guide book instructed), I try to add WSLYHBB\whobbie (the account that has Samba attributes set in my LDAP server), it says does not exist.
Here is my samba.conf file: # Samba config file created using SWAT # from localhost (127.0.0.1) # Date: 2004/06/24 19:51:19 # Global parameters [global] workgroup = PERSONALPC netbios aliases = wslyhbb server string = Wes' Computer map to guest = Bad User smb passwd file = passdb backend = ldapsam:ldap://wslyhbb.personal-pc.com passwd program = /etc/passwd unix password sync = Yes client plaintext auth = No log file = /var/log/samba/log.%m max log size = 50 server signing = auto socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192 hostname lookups = Yes load printers = No printcap name = cups add user script = /usr/share/samba/scripts/smbldap-useradd -m delete user script = /usr/share/samba/scripts/smbldap-userdel add group script = /usr/share/samba/scripts/smbldap-groupadd -p delete group script = /usr/share/samba/scripts/smbldap-groupdel add user to group script = /usr/share/samba/scripts/smbldap-groupmod -m delete user from group script = /usr/share/samba/scripts/smbldap-groupmod -x set primary group script = /usr/share/samba/scripts/smbldap-groupadd -p add machine script = /usr/share/samba/scripts/smbldap-useradd -w preferred master = No domain master = No ldap suffix = dc=personal-pc,dc=com ldap machine suffix = ou=Computers ldap user suffix = ou=People ldap group suffix = ou=Group ldap admin dn = cn=Manager,dc=personal-pc,dc=com ldap ssl = no ldap passwd sync = Yes idmap backend = ldapsam:ldap://wslyhbb.personal-pc.com idmap uid = 500-20000 idmap gid = 500-20000 printer admin = @adm guest ok = Yes printing = cups [homes] comment = Home Directories read only = No browseable = No Can anyone direct me in the correct direction of fixing my problem? |
Winbind
Actually, by reading the log files, I realized the uids and gids were conflicting, so I increased them to:
idmap uid = 1000-20000 idmap gid = 1000-20000 Also, I realized that somehow my workgroup name and the actual sambaDomainName were not the same and needed to be so I changed the workgroup to WSLYHBB as well. I would like to change them both to PERSONALPC but when I try changing the sambaDomainName entry in the LDAP server it then creates another one for WSLYHBB, so it must be set somewhere else but that is not as important right now. I realized that winbind is not mapping the UIDs and GIDs to the SIDs correctly, it connects and disconnects right away claiming the user does not exist, although it does. I run 'wbinfo -u' and get "Error looking up domain users". What is wrong, why is this not working correctly? How can I fix it? |
I can not help you, but I would like to know when you get this finished as I would like to do the samething.
|
All times are GMT -5. The time now is 02:49 AM. |