olcRootDN у меня cn=admin,dc=bashpristav,dc=local Везде
Самбу удалил -поставил не помогло. Выкладываю конфиг. testparm проходит без ошибок
[global]
server string =
workgroup = BASHPRISTAV
netbios name = abaddon
#=========================================================
passdb backend = ldapsam:ldap://abaddon
obey pam restrictions = no
security = user
encrypt passwords = yes
unix extensions = no
#=========================================================
local master = yes
os level = 255
domain master = yes
preferred master = yes
time server = yes
admin users = sspadmin
#=========================================================
log level = 1
log file = /var/log/samba/workstations/%m.log
max log size = 50
#=========================================================
socket options = SO_KEEPALIVE IPTOS_LOWDELAY TCP_NODELAY SO_RCVBUF=16384 SO_SNDBUF=16384
getwd cache = yes
read raw = yes
write raw = yes
max xmit = 65536
wins support = yes
wins proxy = yes
dns proxy = no
name resolve order = wins hosts bcast lmhosts
wide links = yes
hosts allow = 10.2. 127.0.0.1 127.0.1.1
hosts deny = 0.0.0.0/0
idmap uid = 10000-20000
idmap gid = 10000-20000
#=========================================================
ldap suffix = dc=bashpristav,dc=local
ldap user suffix = ou=Users
ldap group suffix = ou=Groups
ldap machine suffix = ou=Computers
ldap idmap suffix = ou=Idmap
ldap admin dn = cn=admin,dc=bashpristav,dc=local
ldap ssl = start tls
ldap passwd sync = yes
ldap delete dn = no
add machine script = sudo /usr/sbin/smbldap-useradd -t 0 -w "%u"
passwd program = /usr/sbin/smbldap-passwd %u
passwd chat = *New*password* %n
*Retype*new*password* %n
*all*authentication*tokens*updated*
domain logons = yes
# invalid users =
load printers = no
#======================= Share Definitions =======================
Пользователь решил продолжить мысль 25 Января 2011, 08:19:13:
Переустановил самбу. прогнал по мануалу. начал отваливаться вот на каком моменте.
smbpasswd -a sspadmin
Failed to issue the StartTLS instruction: Connect error
Connection to LDAP server failed for the 1 try!
New SMB password:
Retype new SMB password:
Failed to issue the StartTLS instruction: Connect error
Connection to LDAP server failed for the 1 try!
Failed to issue the StartTLS instruction: Connect error
Connection to LDAP server failed for the 1 try!
Failed to modify entry for user sspadmin.
Пользователь решил продолжить мысль 25 Января 2011, 08:45:32:
Всетаки хорошо уметь гуглить. 3 день Гугления и вот оно:
You are right. In fact, I found out that if you provide the URI as "ldaps://..." then you need to explicitly tell Samba NOT to use TLS.
The incredibly obtuse way you do this is with the following configuration in smb.conf:
ldap ssl = off
The default for ldap ssl is "Start TLS". The values of yes, no, and on or no longer valid.
Все мои пункты прошли без ошибок.
Пользователь решил продолжить мысль 25 Января 2011, 08:54:12:
Продолжаем копать
если в smb.conf прописать
ldap ssl = off то:
root@abaddon:~# net rpc join -U sspadmin
Enter sspadmin's password:
Creation of workstation account failed
Unable to join domain BASHPRISTAV.
Если вернуть
ldap ssl = start tls
то
root@abaddon:~# net rpc join -U sspadmin
Enter sspadmin's password:
Could not connect to server ABADDON
The username or password was not correct.
Connection failed: NT_STATUS_LOGON_FAILURE
Пользователь решил продолжить мысль 25 Января 2011, 10:07:50:
http://abaddon/gosaFatal error: Class 'session' not found in /usr/share/gosa/include/php_setup.inc on line 91