rek2
Guru
Joined: 05 Jan 2003
Posts: 477
Location: Boston USA/Barcelona Spain
|
 Posted: Thu Oct 06, 2005 8:05 pm Post subject: samba+ldap |
 |
|
I have a problem hopefully someone can help cause it looks like something small..
I install ldap like the howto on the gentoo site. with users/passwords to replace nis. I use the migration tools..
I test it on a client.. ir works perfect..
ok now I go to the gentoo-wiki and follow the other howto that says go to install samba with ldap etc.
I follow it to the end till it says to run:
smbldap-populate
I run it and get:
smbldap-populate
Populating LDAP directory for domain lan.voicesignal.com (S-1-5-21-764701309-1305575956-2811638855)
(using builtin directory structure)
adding new entry: dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 2.
adding new entry: ou=Users,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 3.
adding new entry: ou=Groups,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 4.
adding new entry: ou=Computers,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 5.
adding new entry: ou=Idmap,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 6.
adding new entry: uid=root,ou=Users,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 7.
adding new entry: uid=nobody,ou=Users,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 8.
adding new entry: cn=Domain Admins,ou=Groups,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 9.
adding new entry: cn=Domain Users,ou=Groups,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 10.
adding new entry: cn=Domain Guests,ou=Groups,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 11.
adding new entry: cn=Domain Computers,ou=Groups,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 12.
adding new entry: cn=Administrators,ou=Groups,dc=lan,dc=voicesignal,dc=com
failed to add entry: Bad file descriptor at /usr/sbin/smbldap-populate line 471, <GEN1> line 16.
adding new entry: cn=Account Operators,ou=Groups,dc=lan,dc=voicesignal,dc=com
failed to add entry: Bad file descriptor at /usr/sbin/smbldap-populate line 471, <GEN1> line 18.
adding new entry: cn=Print Operators,ou=Groups,dc=lan,dc=voicesignal,dc=com
failed to add entry: Bad file descriptor at /usr/sbin/smbldap-populate line 471, <GEN1> line 19.
adding new entry: cn=Backup Operators,ou=Groups,dc=lan,dc=voicesignal,dc=com
failed to add entry: Bad file descriptor at /usr/sbin/smbldap-populate line 471, <GEN1> line 20.
adding new entry: cn=Replicators,ou=Groups,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 21.
adding new entry: sambaDomainName=lan.voicesignal.com,dc=lan,dc=voicesignal,dc=com
failed to add entry: Can't contact LDAP server at /usr/sbin/smbldap-populate line 471, <GEN1> line 21.
Please provide a password for the domain root:
Can't contact LDAP server at /usr/sbin//smbldap_tools.pm line 341.
my configuration is:
head of smbldap.conf
Slave LDAP server
# Ex: slaveLDAP=127.0.0.1
# If not defined, parameter is set to "127.0.0.1"
slaveLDAP="127.0.0.1"
# Slave LDAP port
# If not defined, parameter is set to "389"
slavePort="389"
#slavePort="631"
# Master LDAP server: needed for write operations
# Ex: masterLDAP=127.0.0.1
# If not defined, parameter is set to "127.0.0.1"
masterLDAP="127.0.0.1"
# Master LDAP port
# If not defined, parameter is set to "389"
masterPort="631"
# masterPort="384"
# Use TLS for LDAP
# If set to 1, this option will use start_tls for connection
# (you should also used the port 389)
# If not defined, parameter is set to "1"
ldapTLS="1"
----------------------------------------
/etc/samba/smb.conf
#passdb backend = ldapsam:ldap://ldap.lan.voicesignal.com:631/
passdb backend = ldapsam:ldaps://ldap.lan.voicesignal.com:636/
ldap passwd sync = Yes
ldap suffix = dc=lan,dc=voicesignal,dc=com
ldap admin dn = cn=root,dc=lan,dc=voicesignal,dc=com
ldap ssl = start tls
ldap group suffix = ou=Groups
ldap user suffix = ou=Users
ldap machine suffix = ou=Computers
ldap idmap suffix = ou=Users
add user script = /usr/sbin/smbldap-useradd -m "%u"
ldap delete dn = Yes
#delete user script = /usr/sbin/smbldap-userdel "%u"
add machine script = /usr/sbin/smbldap-useradd -w "%u"
add group script = /usr/sbin/smbldap-groupadd -p "%g"
#delete group script = /usr/sbin/smbldap-groupdel "%g"
add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"
Any help? thanks.
_________________
http://www.dailyradical.org
http://www.binaryfreedom.info
use jabber!!! sing on now, register an account:
http://jabber.binaryfreedom.info |
|
Networking & Security
