[linux-l] ldapadd Probleme (Openldap und Samba)
Stephan Hesse
stehesse at web.de
Sa Sep 21 12:45:58 CEST 2002
Hallo Liste,
mit einer woody und Openldap habe ich Probleme bei dem Hinzufuegen
von Objekten. Kennt sich jemand aus, der/die vielleicht einen Fehler in der
Konfiguration erkennt! ?
Ziel ist ein Sambaserver mit LDAP um wintendo-xp-Clients eine
Anmeldung ueber eben dieses (stressige) ldap zu ermoeglichen!
ldapadd -v -D "cn=smb1 sambauser,o=buero,dc=spezwerk,dc=de" -W
ldap_initialize( <DEFAULT> )
Enter LDAP Password:
ldap_bind: Invalid credentials
## openldap version 2.0.25
#SIZELIMIT 12
#TIMELIMIT 15
#DEREF never
#host 127.0.0.1
BASE dc=spezwerk, dc=de
URI ldap://localhost:389
##################################################
#@#20.09.2002 /slapd.conf
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/nis.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema
include /usr/local/etc/openldap/schema/samba.schema
pidfile /usr/local/var/slapd.pid
argsfile /usr/local/var/slapd.args
schemacheck off
loglevel 256
access to attrs=userPassword,lmPassword,ntPassword
by self write
by * auth
access to * by * read
#######################################################################
# ldbm database definitions
#######################################################################
database ldbm
suffix "dc=spezwerk, dc=de"
suffix "o=buero"
rootdn "cn=ste,dc=spezwerk, dc=de"
rootpw kommschon
directory /usr/local/etc/openldap/ldif
# Indices to maintain
index objectClass eq
########################
#file /etc/nsswitch.conf
#passwd: compat
#group: compat
#shadow: compat
passwd: files ldap
group: files ldap
shadow: files ldap
hosts: files dns
networks: files
protocols: db files
services: db files
ethers: db files
rpc: db files
#netgroup: nis
#################################################
#/usr/local/samba/lib/smb.conf domain-ldap version
[global]
workgroup= buero
netbios name = debi23
server string = Samba PDC running %v
printcap name = /etc/printcap
load printers = yes
printing = cups
printer admin = @admins
log file = /usr/local/samba/var/locks/log.%m
max log size = 4096
log level = 2
hosts allow = 127.0.0.1 192.168.111.0/255.255.255.0
security = user
password level = 2
encrypt passwords = yes
update encrypted = yes
smb passwd file = /usr/local/samba/private/smbpasswd
unix password sync = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *Enter* new*UNIX*password* %n\n *Retype*new*UNIX*password* %n\n *passwd: *all* authentication*tokens*updated*successfully*
socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=8192 SO_SNDBUF=8192
interfaces = 192.168.111.0/24
local master = yes
ldap server = localhost
ldap port = 389
ldap suffix = dc=spezwerk, dc=de
ldap admin dn = cn=ste, dc=spezwerk, dc=de
ldap filter = (&(objectclass=smbaccount) (uid=%u))
ldap ssl = no
os level = 64
domain logons = yes
domain master = yes
preferred master = yes
logon path = \\%L\profiles\%U
logon drive = U:
logon home = \\%L\%U\win
client code page = 850
character set = ISO8859-15
#============================ Share Definitions ==============================
[homes]
comment = Home Directories
browseable = no
valid users = %S
writable = yes
[netlogon]
comment = Network Logon Service
path = /usr/local/samba/netlogon
browseable = yes
write list = @smbuser @admins
create mode = 0755
[profiles]
#path = \\%L\%U\xpprofile also windows profile im %HOMEDIRECTORY%
path = /home/samba/profiles
browseable = no
writeable = yes
create mode = 0700
directory mask = 0700
guest ok = no
[printers]
comment = All Printers
path = /var/spool/samba
browseable = yes
guest ok = no
writable = yes
printable = yes
public = yes
create mask = 0775
print command = lpr-cups -P %p %s
# using cups own drivers (use generic PostScript on clients).
lpq command = lpstat -o %p
lprm command = cancel %p-%j
[print$]
path = /var/lib/samba/printers
browseable = yes
read only = no
write list = @smbuser @admins
[buero]
comment = buero spezial
path = /home/shared
valid users = @smbuser
public = no
writable = yes
printable = no
create mask = 0760
# usr/local/etc/openladap/ldif/struktur.ldif
dn:cn=ste,dc=spezwerk,dc=de
cn:ste
description: Directory Manager
description: Verzeichnis Manager
objectClass: organizationalRole
objectclass: top
roleOccupant: cn=S H,o=buero,dc=spezwerk,dc=de
dn:o=buero,dc=de
objectclass: top
objectclass: domain
objectclass: organization
o:buero
l:Berlin
postalcode: 10824
streetadress: BreiteStr. 7
Ich freue mich ueber eine konstruktive Unterstuetzung!
D A N K E
Stephan
______________________________________________________________________________
Jetzt testen fur 1 Euro! Ihr All-in-one-Paket!
https://digitaledienste.web.de/Club/?mc=021106
Mehr Informationen über die Mailingliste linux-l