[Samba] SAMBA + OPENLDAP - Getent - Please help :)

[Samba] SAMBA + OPENLDAP - Getent - Please help :)	Choudary Mumtaz
RE: [Samba] SAMBA + OPENLDAP - Getent - Please help :)	Jeff Saxton
RE: [Samba] SAMBA + OPENLDAP - Getent - Please help :)	Choudary Mumtaz
RE: [Samba] SAMBA + OPENLDAP - Getent - Please help :)	Tony Earnshaw
[Samba] Re: SAMBA + OPENLDAP - Getent - Please help :)	Jim C.

From: Choudary Mumtaz Subject: [Samba] SAMBA + OPENLDAP - Getent - Please help :) Date: Fri, 21 Jan 2005 23:50:10 +0100 I have setup a SAMBA + OPENLDAP server following Samba-3 By Example, but I have run into several problems. All the tests described in the Chapter 6 such as pdbedit -Lv, slapcat, and ldapsearch -x -b give the desired results. But, getent can't read passwd or group information from ldap backend. I have done my best to solve the problem, but it just doesn't work. I have compiled the nss_ldap from Idealx and configured the /etc/ldap.conf as well as nsswitch.conf according to the instructions, but without any success. May someone please point me, how to troubleshoot this issue? Thank you. --------------------------------- Do you Yahoo!? Yahoo! Search presents - Jib Jab's 'Second Term' -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba From: Jeff Saxton Subject: RE: [Samba] SAMBA + OPENLDAP - Getent - Please help :) Date: Sat, 22 Jan 2005 00:00:19 +0100 Have you configured pam and nss? Jeff Saxton Sr. Support Engineer SenSage, Inc. ( Formerly Addamark Technologies, Inc. ) http://www.sensage.com mailto:support@sensage.com OFFICE: +1 415-281-1900x128 CELL: +1 415-640-6392 -----Original Message----- From: samba-bounces+jeff.saxton=addamark.com@lists.samba.org [mailto:samba-bounces+jeff.saxton=addamark.com@lists.samba.org] On Behalf Of Choudary Mumtaz Sent: Friday, January 21, 2005 2:48 PM To: samba@lists.samba.org Subject: [Samba] SAMBA + OPENLDAP - Getent - Please help :) I have setup a SAMBA + OPENLDAP server following Samba-3 By Example, but I have run into several problems. All the tests described in the Chapter 6 such as pdbedit -Lv, slapcat, and ldapsearch -x -b give the desired results. But, getent can't read passwd or group information from ldap backend. I have done my best to solve the problem, but it just doesn't work. I have compiled the nss_ldap from Idealx and configured the /etc/ldap.conf as well as nsswitch.conf according to the instructions, but without any success. May someone please point me, how to troubleshoot this issue? Thank you. --------------------------------- Do you Yahoo!? Yahoo! Search presents - Jib Jab's 'Second Term' -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba From: Choudary Mumtaz Subject: RE: [Samba] SAMBA + OPENLDAP - Getent - Please help :) Date: Sat, 22 Jan 2005 00:10:09 +0100 Yes. I have followed the instructions from the book, and I have also tried to use authconfig as it is RedHat AS 3. Thank you. Jeff Saxton wrote: Have you configured pam and nss? Jeff Saxton Sr. Support Engineer SenSage, Inc. ( Formerly Addamark Technologies, Inc. ) http://www.sensage.com mailto:support@sensage.com OFFICE: +1 415-281-1900x128 CELL: +1 415-640-6392 -----Original Message----- From: samba-bounces+jeff.saxton=addamark.com@lists.samba.org [mailto:samba-bounces+jeff.saxton=addamark.com@lists.samba.org] On Behalf Of Choudary Mumtaz Sent: Friday, January 21, 2005 2:48 PM To: samba@lists.samba.org Subject: [Samba] SAMBA + OPENLDAP - Getent - Please help :) I have setup a SAMBA + OPENLDAP server following Samba-3 By Example, but I have run into several problems. All the tests described in the Chapter 6 such as pdbedit -Lv, slapcat, and ldapsearch -x -b give the desired results. But, getent can't read passwd or group information from ldap backend. I have done my best to solve the problem, but it just doesn't work. I have compiled the nss_ldap from Idealx and configured the /etc/ldap.conf as well as nsswitch.conf according to the instructions, but without any success. May someone please point me, how to troubleshoot this issue? Thank you. --------------------------------- Do you Yahoo!? Yahoo! Search presents - Jib Jab's 'Second Term' -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba --------------------------------- Do you Yahoo!? Yahoo! Mail - 250MB free storage. Do more. Manage less. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba From: Tony Earnshaw Subject: RE: [Samba] SAMBA + OPENLDAP - Getent - Please help :) Date: Sun, 23 Jan 2005 15:10:08 +0100 Choudary Mumtaz: > Yes. I have followed the instructions from the book, and I have also > tried to use authconfig as it is RedHat AS 3. Thank you. > > > Jeff Saxton wrote: > > > Have you configured pam and nss? I'm a newbie to Samba (RHAS3, RH Samba samba-3.0.7-1.3E), but an old hand with Openldap. Just configured a working Samba PDC for XP/2000 clients and I'm pleased as punch :) Openldap 2.2.20. It wasn't easy, i didn't know what to expect at each turn and there's masses of new stuff to learn, though the Samba native utilities are phantastik, IDEALX's Perl scripts don't work for me - I write my own (shell, awk) scripts that call the Samba utilities. Anyway: My own experience with RHAS3 is, that any other nss_ldap solution than Red Hat's own rpm does not work (though one RHAS3 user on the Padl nss_ldap mailing list has got the latest nss_ldap source to work). Why are you using IDEALX source and not Padl anyway? 1: Red Hat's authconfig for Red Hat's Openldap deprecated standard version (2.0.27) is poison: it ruins /etc/pam.conf and nsswitch.conf is poison - it ruins both. You have to knuckle down and get used to configuring both pam_ldap and nss_ldap by hand; this can take time; 2: pam_ldap should not be necessary for Samba - it seems to use 100% nss for authentication. My advice is, to go back to Red Hat's nss_ldap rpm, learn to configure /etc/ldap.conf and nsswitch.conf by hand and get off the Red Hat Openldap versions (including 2.1.22). The only stable OL versions are 2.2.17 and upward, though configuring them with the requisite, patched BDB 4.2.52 will cost you both time and sweat .( --Tonni -- mail: tonye@billy.demon.nl http://www.billy.demon.nl -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba From: Jim C. Subject: [Samba] Re: SAMBA + OPENLDAP - Getent - Please help :) Date: Sun, 23 Jan 2005 21:20:11 +0100 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 |>Yes. I have followed the instructions from the book, and I have also .... | will cost you both time and sweat .( Heck, I'd be ecstatic if I could just get a schema file patch for posixGroups that appropriately support dn syntax. Jim C. - -- - ----------------------------------------------------------------- | I can be reached on the following Instant Messenger services: | |---------------------------------------------------------------| | MSN: j_c_llings @ hotmail.com AIM: WyteLi0n ICQ: 123291844 | |---------------------------------------------------------------| | Y!: j_c_llings Jabber: jcllings @ njs.netlab.cz | - ----------------------------------------------------------------- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFB9AZm57L0B7uXm9oRAk2AAJsFqLGNuWASZSMZ9qIX5Cv2/ghIaQCeOT6A BHNNQmehi7bBhplsKlNKji8= =3G2O -----END PGP SIGNATURE----- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba