Bom galera..to a muito tempo apanhando do ldap+samba, depois de muitos problemas consegui chegar em um ponto onde somente falta a maquina
win2k logar, ela acha o dominio..mas nao loga
samba-winbind-3.0.2a-51
samba-3.0.2a-51
openldap2-2.2.6-34
nss_ldap-215-55
pam_ldap-169-24
smbldap-tools
MigrationTools
DaveDAP
SuSE 9.1
bom..segui todos os passos
consegui colocar a maquina win2k no meu dominio
adicionei a conta do computador$ mas a maquina diz
que a conta esta errada ou o dominio nao existe
o engracado..é que com o smbclient eu consigo logar na maquina...local..onde esta instalado o samba com o usuario que eu to tentando logar
meu smb.conf
[global]
unix charset = LOCALE
workgroup = SAMBA_HOMOLOG
netbios name = SAMBA_SERVER
interfaces = eth0
bind interfaces only = Yes
passdb backend = ldapsam:ldap://localhost
username map = /etc/samba/smbusers
log level = 1
syslog = 0
log file = /var/log/samba/%m
max log size = 50
smb ports = 139 445
name resolve order = wins bcast hosts
time server = Yes
printcap name = CUPS
show add printer wizard = No
# USER FUNCTION
add user script = /usr/local/sbin/smbldap-useradd.pl -a -m '%u'
delete user script = /usr/local/sbin/smbldap-userdel.pl %u
add group script = /usr/local/sbin/smbldap-groupadd.pl -p '%g'
delete group script = /usr/local/sbin/smbldap-groupdel.pl '%g'
add user to group script = /usr/local/sbin/smbldap-groupmod.pl -m '%u' '%g'
delete user from group script = /usr/local/sbin/smbldap-groupmod.pl -x '%u' '%g'
set primary group script = /usr/local/sbin/smbldap-usermod.pl -g '%g' '%u'
add machine script = /usr/local/sbin/smbldap-useradd.pl -w '%u'
logon script = scripts\logon.bat
logon path = \\%L\profiles\%U
logon drive = X:
domain logons = Yes
preferred master = Yes
wins support = Yes
# LDAP
ldap suffix = dc=gp,dc=com,dc=br
ldap machine suffix = ou=People
ldap user suffix = ou=People
ldap group suffix = ou=Group
ldap idmap suffix = ou=Idmap
ldap admin dn = cn=admin,dc=gp,dc=com,dc=br
idmap backend = ldap:ldap://localhost
idmap uid = 10000-20000
idmap gid = 10000-20000
map acl inherit = Yes
printing = cups
printer admin = Administrator, root
------ ///-------------------------///-----
Tento fazer a consulta ele me retorna perfeitamente
smbclient -L samba_server -U bruno
Password:
Domain=[SAMBA_HOMOLOG] OS=[Unix] Server=[Samba 3.0.2a-SUSE]
Sharename Type Comment
--------- ---- -------
accounts Disk Accounting Files
service Disk Financial Services Files
pidata Disk Property Insurance Files
apps Disk Application Files
netlogon Disk Network Logon Service
profiles Disk Profile Share
profdata Disk Profile Data Share
print$ Disk Printer Drivers
IPC$ IPC IPC Service (Samba 3.0.2a-SUSE)
ADMIN$ IPC IPC Service (Samba 3.0.2a-SUSE)
bruno Disk Home Directories
Domain=[SAMBA_HOMOLOG] OS=[Unix] Server=[Samba 3.0.2a-SUSE]
Server Comment
--------- -------
GP-WORK
GPTESTE
SAMBA_SERVER Samba 3.0.2a-SUSE
Workgroup Master
--------- -------
GPCARD GPCARD01
SAMBA_HOMOLOG SAMBA_SERVER
SAO M0102
WORKGROUP 5N1P3R
getent passwd | grep bruno
bruno:x:1000:513:System User:/home/bruno:/bin/bash
os logs me mostraram que a maquina que eu estava tentando colocar no dominio não nao tinha conta no LDAP..entáo eu adicionei na mão..pois com o DAVEDAP da ERRO..eu nao sei pq
eu adicionei a maquina...ela apareceu no DAVEDAP
mas continua nao logando
cat /etc/nsswitch.conf
passwd: compat
shadow: files ldap
group: compat
hosts: files dns wins
passwd_compat: ldap
group_compat: ldap
Seria algum problema com o Winbind ??
-
21-09-2004, 09:42 #1chrootVisitante
Win2k nao loga no dominio Samba+LDAP! HELP
Citação