SAMBA and LDAP - net getlocalsid shows error NT_STATUS_UNSUCCESSFUL
Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
I have been getting the following error when I run the
Code:
net getlocalsid
command.
Code:
myuser@mycomputer:/etc/samba$ sudo net getlocalsid
[2008/12/23 10:35:05, 0] lib/smbldap_util.c:smbldap_search_domain_info(310)
smbldap_search_domain_info: Adding domain info for MYDOMAIN failed with NT_STATUS_UNSUCCESSFUL
SID for domain MYDOMAIN is: S-1-5-21-1153465165-1443174390-2997034973
Here is the section of my smb.conf file that is causing the trouble.
Code:
#######################################################################
#COPY AND PASTE THE FOLLOWING UNDERNEATH "OBEY PAM RESTRICTIONS = NO"
#######################################################################
#
# Begin: Custom LDAP Entries
#
ldap admin dn = cn=admin,dc=myserver,dc=mydomain,dc=co,dc=th
ldap suffix = dc=myserver,dc=mydomain,dc=co,dc=th
ldap group suffix = ou=Groups
ldap user suffix = ou=Users
ldap machine suffix = ou=Computers
ldap idmap suffix = ou=Users
; Do ldap passwd sync
ldap passwd sync = Yes
passwd program = /usr/sbin/smbldap-passwd %u
passwd chat = *New*password* %n\n *Retype*new*password* %n\n *all*authentication*tokens*updated*
add user script = /usr/sbin/smbldap-useradd -m "%u"
ldap delete dn = Yes
delete user script = /usr/sbin/smbldap-userdel "%u"
add machine script = /usr/sbin/smbldap-useradd -w "%u"
add group script = /usr/sbin/smbldap-groupadd -p "%g"
delete group script = /usr/sbin/smbldap-groupdel "%g"
add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"
domain logons = yes
#
# End: Custom LDAP Entries
#
#####################################################
#STOP COPYING HERE!
#####################################################
When I change the line that reads
Code:
ldap suffix = dc=myserver,dc=mydomain,dc=co,dc=th
to
Code:
ldap suffix =
I no longer get this error. Does any one know why this is????
I get the following error regardless of if I get the above error or not.
Code:
entry dc=myserver,dc=mydomain,dc=co,dc=th already exist.
entry ou=Users,dc=myserver,dc=mydomain,dc=co,dc=th already exist.
entry ou=Groups,dc=myserver,dc=mydomain,dc=co,dc=th already exist.
entry ou=Computers,dc=myserver,dc=mydomain,dc=co,dc=th already exist.
entry ou=Idmap,dc=myserver,dc=mydomain,dc=co,dc=th already exist.
adding new entry: uid=root,ou=Users,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: objectClass: value #4 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 55.
adding new entry: uid=nobody,ou=Users,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: objectClass: value #4 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 83.
adding new entry: cn=Domain Admins,ou=Groups,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 95.
adding new entry: cn=Domain Users,ou=Groups,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 106.
adding new entry: cn=Domain Guests,ou=Groups,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 117.
adding new entry: cn=Domain Computers,ou=Groups,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 128.
adding new entry: cn=Administrators,ou=Groups,dc=myserver,dc=mydomain,dc=co,dc=thh
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 173.
adding new entry: cn=Account Operators,ou=Groups,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 195.
adding new entry: cn=Print Operators,ou=Groups,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 206.
adding new entry: cn=Backup Operators,ou=Groups,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 217.
adding new entry: cn=Replicators,ou=Groups,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: objectClass: value #2 invalid per syntax at /usr/sbin/smbldap-populate line 499, <GEN1> line 228.
adding new entry: sambaDomainName=EPSRV,dc=myserver,dc=mydomain,dc=co,dc=th
failed to add entry: invalid DN at /usr/sbin/smbldap-populate line 499, <GEN1> line 236.
Please provide a password for the domain root:
/usr/sbin/smbldap-passwd: user root doesn't exist
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
