LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 05-06-2010, 07:30 AM   #1
mcrites
LQ Newbie
 
Registered: Apr 2010
Posts: 6

Rep: Reputation: 0
Samba and OpenLDAP does not change userPassword


I have OpenLDAP 2.4.12 and Samba 3.5.1 installed. When I try to change the password with smbpasswd, it changes the Windows password fine. But userPassword is not updated in LDAP. The error message is: "smbldap_check_root_dse: Expected one rootDSE, got 0" when I run smbpasswd -D 10 <username>.

I added the following to slapd.conf:

access to dn.base=""
by * read
password-hash {md5}

in hopes of allowing samba to read the root DSE, even though Samba is configured with the root DN.

Any ideas on how to make samba find what it needs in the root DSE of my LDAP server?
 
Old 05-06-2010, 10:19 AM   #2
Blue_Ice
Member
 
Registered: Jul 2006
Location: Belgium
Distribution: Debian, Fedora, CentOS, Windows
Posts: 352

Rep: Reputation: Disabled
Did you add the following parameter to your samba configuration?

Code:
ldap passwd sync = yes
By the way, it is easier for us to help you, when you post your configuration here as well.

Last edited by Blue_Ice; 05-06-2010 at 10:21 AM.
 
Old 05-07-2010, 06:43 AM   #3
mcrites
LQ Newbie
 
Registered: Apr 2010
Posts: 6

Original Poster
Rep: Reputation: 0
Unfortunately it is not easy for me to post the configs because they are on an internal testing network with no Internet connection. I do have ldap passwd sync = yes in smb.conf which makes samba try to update userPassword in LDAP. But I get the above message "smbldap_check_root_dse: Expected one rootDSE, got 0". This worked with older versions of OpenLDAP and Samba, so I was wondering if there is some configuration change I need to make to OpenLDAP to get Samba to update the userPassword LDAP attribute.
 
Old 05-07-2010, 07:45 AM   #4
Blue_Ice
Member
 
Registered: Jul 2006
Location: Belgium
Distribution: Debian, Fedora, CentOS, Windows
Posts: 352

Rep: Reputation: Disabled
As said before, to be of any help we need the configuration files. Your problem can be caused by many things or even combinations of things. We can guess, but I think you have more chances to win in a casino.
 
Old 05-12-2010, 06:12 AM   #5
mcrites
LQ Newbie
 
Registered: Apr 2010
Posts: 6

Original Poster
Rep: Reputation: 0
Just in case this helps other people, it was a config issue with PAM. I forgot to configure /etc/pam.d/samba to use LDAP.
 
  


Reply

Tags
ldap, openldap, samba


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] Samba member server in a domain of samba and openldap Blue_Ice Linux - Server 1 05-08-2010 05:01 AM
OpenLDAP - change DN shlonginator Linux - Server 4 04-30-2010 01:45 PM
Samba issue (SAMBA and OpenLDAP for PDC) nyu2009 Linux - Server 1 08-01-2009 11:00 AM
Password change with OpenLDAP 2.4.11 john_es Linux - Server 2 03-13-2009 06:11 AM
Need a user friendly tool for users to change ldap userpassword Niceman2005 Linux - Software 3 08-27-2007 08:54 PM


All times are GMT -5. The time now is 02:34 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration