Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Global symbol "$SID" requires explicit package name at /usr/share/doc/smbldap-tools/configure.pl line 350.
Execution of /usr/share/doc/smbldap-tools/configure.pl aborted due to compilation errors.
Can someone help me with this error? I am running folowing Ubuntu Linux Server:
[2012/01/11 05:39:02.940370, 0] lib/smbldap.c:731(smb_ldap_start_tls)
Failed to issue the StartTLS instruction: Protocol error
[2012/01/11 05:39:03.942961, 0] lib/smbldap.c:731(smb_ldap_start_tls)
Failed to issue the StartTLS instruction: Protocol error
[2012/01/11 05:39:04.945808, 0] lib/smbldap.c:731(smb_ldap_start_tls)
Failed to issue the StartTLS instruction: Protocol error
[2012/01/11 05:39:05.946761, 0] lib/smbldap_util.c:310(smbldap_search_domain_info)
smbldap_search_domain_info: Adding domain info for PARTIZANI failed with NT_STATUS_UNSUCCESSFUL
SID for domain KOVACEVIC is: S-1-5-21-1407527557-2246753790-1107767490
Namely, KOVACEVIC is NOT DOMAIN, but computer name - host name, defined in /etc/hosts and I do not know how it is detected as domain. PARTIZANI IS A DOMAIN, defined in "workgroup=PARTIZANI" in smb.conf.
Here is also detailed getlocalsid report:
Code:
[2012/01/11 06:32:39, 2] param/loadparm.c:4798(max_open_files)
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
[2012/01/11 06:32:39.300379, 3] ../lib/util/params.c:550(pm_process)
params.c:pm_process() - Processing configuration file "/etc/samba/smb.conf"
doing parameter passdb backend = ldapsam:ldap://kovacevic
doing parameter ldap suffix = dc=zenit-ms-real,dc=com
doing parameter ldap user suffix = ou=People
doing parameter ldap group suffix = ou=Groups
doing parameter ldap machine suffix = ou=Computers
doing parameter ldap idmap suffix = ou=Idmap
doing parameter ldap admin dn = cn=admin,dc=zenit-ms-real,dc=com
doing parameter ldap ssl = start tls
doing parameter ldap passwd sync = yes
doing parameter add machine script = sudo /usr/sbin/smbldap-useradd -t 0 -w "%u"
[2012/01/11 06:32:39.300495, 3] param/loadparm.c:7853(do_section)
Processing section "[global]"
doing parameter workgroup = PARTIZANI
doing parameter server string = %h server (Samba, Ubuntu)
doing parameter dns proxy = no
doing parameter log file = /var/log/samba/log.%m
doing parameter max log size = 1000
doing parameter syslog = 0
doing parameter panic action = /usr/share/samba/panic-action %d
doing parameter security = user
doing parameter encrypt passwords = true
doing parameter obey pam restrictions = yes
doing parameter unix password sync = yes
doing parameter passwd program = /usr/bin/passwd %u
doing parameter passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
doing parameter pam password change = yes
doing parameter domain logons = yes
doing parameter logon path = \\%N\%U\profile
doing parameter logon drive = H:
doing parameter logon home = \\%N\%U
doing parameter logon script = logon.cmd
doing parameter add machine script = /usr/sbin/useradd -N -g machines -c Machine -d /var/lib/samba -s /bin/false %u
doing parameter usershare allow guests = yes
[2012/01/11 06:32:39.300678, 4] param/loadparm.c:9204(lp_load_ex)
pm_process() returned Yes
[2012/01/11 06:32:39.300688, 7] param/loadparm.c:9410(lp_servicenumber)
lp_servicenumber: couldn't find homes
[2012/01/11 06:32:39.300697, 10] param/loadparm.c:8414(set_server_role)
set_server_role: role = ROLE_DOMAIN_PDC
[2012/01/11 06:32:39.300708, 5] lib/iconv.c:104(smb_register_charset)
Attempting to register new charset UCS-2LE
[2012/01/11 06:32:39.300716, 5] lib/iconv.c:112(smb_register_charset)
Registered charset UCS-2LE
[2012/01/11 06:32:39.300723, 5] lib/iconv.c:104(smb_register_charset)
Attempting to register new charset UTF-16LE
[2012/01/11 06:32:39.300732, 5] lib/iconv.c:112(smb_register_charset)
Registered charset UTF-16LE
[2012/01/11 06:32:39.300739, 5] lib/iconv.c:104(smb_register_charset)
Attempting to register new charset UCS-2BE
[2012/01/11 06:32:39.300745, 5] lib/iconv.c:112(smb_register_charset)
Registered charset UCS-2BE
[2012/01/11 06:32:39.300752, 5] lib/iconv.c:104(smb_register_charset)
Attempting to register new charset UTF-16BE
[2012/01/11 06:32:39.300759, 5] lib/iconv.c:112(smb_register_charset)
Registered charset UTF-16BE
[2012/01/11 06:32:39.300765, 5] lib/iconv.c:104(smb_register_charset)
Attempting to register new charset UTF8
[2012/01/11 06:32:39.300772, 5] lib/iconv.c:112(smb_register_charset)
Registered charset UTF8
[2012/01/11 06:32:39.300778, 5] lib/iconv.c:104(smb_register_charset)
Attempting to register new charset UTF-8
[2012/01/11 06:32:39.300790, 5] lib/iconv.c:112(smb_register_charset)
Registered charset UTF-8
[2012/01/11 06:32:39.300797, 5] lib/iconv.c:104(smb_register_charset)
Attempting to register new charset ASCII
[2012/01/11 06:32:39.300806, 5] lib/iconv.c:112(smb_register_charset)
Registered charset ASCII
[2012/01/11 06:32:39.300812, 5] lib/iconv.c:104(smb_register_charset)
Attempting to register new charset 646
[2012/01/11 06:32:39.300821, 5] lib/iconv.c:112(smb_register_charset)
Registered charset 646
[2012/01/11 06:32:39.300832, 5] lib/iconv.c:104(smb_register_charset)
Attempting to register new charset ISO-8859-1
[2012/01/11 06:32:39.300839, 5] lib/iconv.c:112(smb_register_charset)
Registered charset ISO-8859-1
[2012/01/11 06:32:39.300845, 5] lib/iconv.c:104(smb_register_charset)
Attempting to register new charset UCS2-HEX
[2012/01/11 06:32:39.300851, 5] lib/iconv.c:112(smb_register_charset)
Registered charset UCS2-HEX
[2012/01/11 06:32:39.300868, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301039, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301063, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301076, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301087, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301098, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301108, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301131, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301143, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301154, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301179, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301218, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301240, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301264, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301296, 5] lib/util.c:276(init_names)
Netbios name list:-
my_netbios_names[0]="KOVACEVIC"
[2012/01/11 06:32:39.301445, 2] lib/interface.c:340(add_interface)
added interface eth0 ip=fe80::219:66ff:feef:2559%eth0 bcast=fe80::ffff:ffff:ffff:ffff%eth0 netmask=ffff:ffff:ffff:ffff::
[2012/01/11 06:32:39.301528, 2] lib/interface.c:340(add_interface)
added interface eth0 ip=192.168.100.101 bcast=192.168.100.255 netmask=255.255.255.0
[2012/01/11 06:32:39.301551, 5] passdb/pdb_interface.c:63(smb_register_passdb)
Attempting to register passdb backend ldapsam
[2012/01/11 06:32:39.301562, 5] passdb/pdb_interface.c:76(smb_register_passdb)
Successfully added passdb backend 'ldapsam'
[2012/01/11 06:32:39.301568, 5] passdb/pdb_interface.c:63(smb_register_passdb)
Attempting to register passdb backend ldapsam_compat
[2012/01/11 06:32:39.301575, 5] passdb/pdb_interface.c:76(smb_register_passdb)
Successfully added passdb backend 'ldapsam_compat'
[2012/01/11 06:32:39.301582, 5] passdb/pdb_interface.c:63(smb_register_passdb)
Attempting to register passdb backend NDS_ldapsam
[2012/01/11 06:32:39.301589, 5] passdb/pdb_interface.c:76(smb_register_passdb)
Successfully added passdb backend 'NDS_ldapsam'
[2012/01/11 06:32:39.301595, 5] passdb/pdb_interface.c:63(smb_register_passdb)
Attempting to register passdb backend NDS_ldapsam_compat
[2012/01/11 06:32:39.301605, 5] passdb/pdb_interface.c:76(smb_register_passdb)
Successfully added passdb backend 'NDS_ldapsam_compat'
[2012/01/11 06:32:39.301612, 5] passdb/pdb_interface.c:63(smb_register_passdb)
Attempting to register passdb backend smbpasswd
[2012/01/11 06:32:39.301625, 5] passdb/pdb_interface.c:76(smb_register_passdb)
Successfully added passdb backend 'smbpasswd'
[2012/01/11 06:32:39.301633, 5] passdb/pdb_interface.c:63(smb_register_passdb)
Attempting to register passdb backend tdbsam
[2012/01/11 06:32:39.301640, 5] passdb/pdb_interface.c:76(smb_register_passdb)
Successfully added passdb backend 'tdbsam'
[2012/01/11 06:32:39.301647, 5] passdb/pdb_interface.c:63(smb_register_passdb)
Attempting to register passdb backend wbc_sam
[2012/01/11 06:32:39.301656, 5] passdb/pdb_interface.c:76(smb_register_passdb)
Successfully added passdb backend 'wbc_sam'
[2012/01/11 06:32:39.301663, 5] passdb/pdb_interface.c:133(make_pdb_method_name)
Attempting to find a passdb backend to match ldapsam:ldap://kovacevic (ldapsam)
[2012/01/11 06:32:39.301670, 5] passdb/pdb_interface.c:154(make_pdb_method_name)
Found pdb backend ldapsam
[2012/01/11 06:32:39.301693, 2] lib/smbldap_util.c:277(smbldap_search_domain_info)
smbldap_search_domain_info: Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=PARTIZANI))]
[2012/01/11 06:32:39.301709, 5] lib/smbldap.c:1367(smbldap_search_ext)
smbldap_search_ext: base => [dc=zenit-ms-real,dc=com], filter => [(&(objectClass=sambaDomain)(sambaDomainName=PARTIZANI))], scope => [2]
[2012/01/11 06:32:39.301731, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301746, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301759, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301770, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301781, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301792, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301802, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301813, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301824, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301838, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301852, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301865, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301877, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301888, 5] lib/charcnv.c:98(charset_name)
Substituting charset 'UTF-8' for LOCALE
[2012/01/11 06:32:39.301910, 5] lib/smbldap.c:1269(smbldap_close)
The connection to the LDAP server was closed
[2012/01/11 06:32:39.301918, 10] lib/smbldap.c:751(smb_ldap_setup_conn)
smb_ldap_setup_connection: ldap://kovacevic
[2012/01/11 06:32:39.302999, 0] lib/smbldap.c:731(smb_ldap_start_tls)
Failed to issue the StartTLS instruction: Protocol error
[2012/01/11 06:32:39.303026, 1] lib/smbldap.c:1337(another_ldap_try)
Connection to LDAP server failed for the 1 try!
[2012/01/11 06:32:40.303834, 3] lib/smbldap_util.c:302(smbldap_search_domain_info)
smbldap_search_domain_info: Got no domain info entries for domain
[2012/01/11 06:32:40.303948, 5] lib/smbldap.c:1367(smbldap_search_ext)
smbldap_search_ext: base => [dc=zenit-ms-real,dc=com], filter => [(&(sambaDomainName=PARTIZANI)(objectclass=sambaDomain))], scope => [2]
[2012/01/11 06:32:40.304235, 5] lib/smbldap.c:1269(smbldap_close)
The connection to the LDAP server was closed
[2012/01/11 06:32:40.304273, 10] lib/smbldap.c:751(smb_ldap_setup_conn)
smb_ldap_setup_connection: ldap://kovacevic
[2012/01/11 06:32:40.305430, 0] lib/smbldap.c:731(smb_ldap_start_tls)
Failed to issue the StartTLS instruction: Protocol error
[2012/01/11 06:32:40.305473, 1] lib/smbldap.c:1337(another_ldap_try)
Connection to LDAP server failed for the 1 try!
[2012/01/11 06:32:41.306140, 3] lib/smbldap_util.c:163(add_new_domain_info)
add_new_domain_info: Adding new domain
[2012/01/11 06:32:41.306564, 10] lib/smbldap_util.c:217(add_new_domain_info)
add_new_domain_info: setting next available user rid [1000]
[2012/01/11 06:32:41.306599, 5] lib/smbldap.c:1607(smbldap_add)
smbldap_add: dn => [sambaDomainName=PARTIZANI,dc=zenit-ms-real,dc=com]
[2012/01/11 06:32:41.306865, 5] lib/smbldap.c:1269(smbldap_close)
The connection to the LDAP server was closed
[2012/01/11 06:32:41.306904, 10] lib/smbldap.c:751(smb_ldap_setup_conn)
smb_ldap_setup_connection: ldap://kovacevic
[2012/01/11 06:32:41.308068, 0] lib/smbldap.c:731(smb_ldap_start_tls)
Failed to issue the StartTLS instruction: Protocol error
[2012/01/11 06:32:41.308119, 1] lib/smbldap.c:1337(another_ldap_try)
Connection to LDAP server failed for the 1 try!
[2012/01/11 06:32:42.308662, 10] lib/smbldap.c:1627(smbldap_add)
Failed to add dn: sambaDomainName=PARTIZANI,dc=zenit-ms-real,dc=com, error: 8 (Strong(er) authentication required) (modifications require authentication)
[2012/01/11 06:32:42.308776, 1] lib/smbldap_util.c:233(add_new_domain_info)
add_new_domain_info: failed to add domain dn= sambaDomainName=PARTIZANI,dc=zenit-ms-real,dc=com with: Strong(er) authentication required
modifications require authentication
[2012/01/11 06:32:42.308826, 0] lib/smbldap_util.c:310(smbldap_search_domain_info)
smbldap_search_domain_info: Adding domain info for PARTIZANI failed with NT_STATUS_UNSUCCESSFUL
[2012/01/11 06:32:42.308860, 2] passdb/pdb_ldap.c:6621(pdb_init_ldapsam)
pdb_init_ldapsam: WARNING: Could not get domain info, nor add one to the domain
pdb_init_ldapsam: Continuing on regardless, will be unable to allocate new users/groups, and will risk BDCs having inconsistant SIDs
[2012/01/11 06:32:42.308904, 5] passdb/pdb_interface.c:165(make_pdb_method_name)
pdb backend ldapsam:ldap://kovacevic has a valid init
[2012/01/11 06:32:42.309252, 10] intl/lang_tdb.c:138(lang_tdb_init)
lang_tdb_init: /usr/share/samba/en_US:en.msg: No such file or directory
[2012/01/11 06:32:42.309499, 2] utils/net.c:916(main)
return code = 0
[2012/01/11 06:32:42.309919, 5] lib/gencache.c:65(gencache_init)
Opening cache file at /var/run/samba/gencache.tdb
[2012/01/11 06:32:42.310058, 5] lib/gencache.c:108(gencache_init)
Opening cache file at /var/run/samba/gencache_notrans.tdb
[2012/01/11 06:32:42.310481, 0] ../lib/util/talloc_stack.c:189(talloc_tos)
no talloc stackframe around, leaking memory
[2012/01/11 06:32:42.310518, 5] lib/smbldap.c:1269(smbldap_close)
The connection to the LDAP server was closed
A link to the guide might have gotten you a faster response...
I found this
Quote:
Next, configure the smbldap-tools package to match your environment. The package comes with a configuration script that will ask questions about the needed options. To run the script enter:
sudo gzip -d /usr/share/doc/smbldap-tools/configure.pl.gz
sudo perl /usr/share/doc/smbldap-tools/configure.pl
You may need to comment out the strict pragma in the configure.pl file.
Once you have answered the questions, the files /etc/smbldap-tools/smbldap.conf and /etc/smbldap-tools/smbldap_bind.conf should be generated. If you made any mistakes while executing the script you can always edit the files afterwards.
Questions
- what were the results of the previous step? Did it complete successfully?
- The instructions suggest you may need to change configure.pl. Did you try that?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
SAMBA+LDAP as MS Active Directory problem
