Hottest Free Downloads - DownloadPipe.com Over 197,000 downloads! Bookmark Now!
DownloadPipe.com - New Downloads Every Minute
 SEARCH:
FAQFAQ    SearchSearch      ProfileProfile    Private MessagesPrivate Messages   Log inLog in

How to use samba using LDAP user authentication on RHEL5?

  
   Linux (Home) -> Red Hat General RSS
Next:  Red Hat Enterprise - Desktop  
Author Message
Jan Gerrit Kootstra

External


Since: Aug 02, 2005
Posts: 134



(Msg. 1) Posted: Tue Dec 30, 2008 11:09 am
Post subject: How to use samba using LDAP user authentication on RHEL5?
Archived from groups: linux>redhat (more info?)
Dear group members,


I am totally lost.

In the past I had it working, but wanted to test other LDAP software and
totally ruined my LDAP configuration.

I also could not find the Howto that I used before.

Can anyone of you point me to a "simple" howto?


Kind regards,


Jan Gerrit Kootstra
P.S. Also posted on linux.samba
Back to top
Login to vote
Mike Bleiweiss

External


Since: Aug 13, 2008
Posts: 10



(Msg. 2) Posted: Thu Jan 01, 2009 8:14 pm
Post subject: Re: How to use samba using LDAP user authentication on RHEL5? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Tue, 30 Dec 2008 11:09:52 +0100
Jan Gerrit Kootstra <jan.gerrit.RemoveThis@kootstra.org.uk> wrote:


> Can anyone of you point me to a "simple" howto?

Are you wanting to authenticate against LDAP hosted on RHEL, or authenticate against a Windows AD? If the former - here's a decent howto:

http://pbraun.nethence.com/doc/net/samba-ldap.html


--
Mike Bleiweiss
Devout Unixophile
Back to top
Login to vote
Jan Gerrit Kootstra

External


Since: Aug 02, 2005
Posts: 134



(Msg. 3) Posted: Fri Jan 02, 2009 11:15 am
Post subject: Re: How to use samba using LDAP user authentication on RHEL5? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Mike Bleiweiss schreef:
> On Tue, 30 Dec 2008 11:09:52 +0100
> Jan Gerrit Kootstra <jan.gerrit DeleteThis @kootstra.org.uk> wrote:
>
>
>> Can anyone of you point me to a "simple" howto?
>
> Are you wanting to authenticate against LDAP hosted on RHEL, or authenticate against a Windows AD? If the former - here's a decent howto:
>
> http://pbraun.nethence.com/doc/net/samba-ldap.html
>
>
Dear Mike,


I want to authenticate against LDAP hosted on RHEL.
I tried this howto already, but it fails.
I get errors like this:

[2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_administrators(792)
create_builtin_administrators: Failed to create Administrators
[2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_users(758)
create_builtin_users: Failed to create Users
[2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_administrators(792)
create_builtin_administrators: Failed to create Administrators
[2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_users(758)
create_builtin_users: Failed to create Users


Kind regards,


Jan Gerrit Kootstra
Back to top
Login to vote
Mike Bleiweiss

External


Since: Aug 13, 2008
Posts: 10



(Msg. 4) Posted: Fri Jan 02, 2009 11:44 am
Post subject: Re: How to use samba using LDAP user authentication on RHEL5? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Fri, 02 Jan 2009 11:15:54 +0100
Jan Gerrit Kootstra <jan.gerrit.RemoveThis@kootstra.org.uk> wrote:

> I get errors like this:
>
> [2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_administrators(792)
> create_builtin_administrators: Failed to create Administrators
> [2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_users(758)
> create_builtin_users: Failed to create Users
> [2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_administrators(792)
> create_builtin_administrators: Failed to create Administrators
> [2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_users(758)
> create_builtin_users: Failed to create Users

Check your smb.conf file - what value do you have for "idmap backend"? There is a problem with winbind with certain values for idmap backend that bork up "builtin" group creation. Save what you have for that value, set it back to "idmap backend = tdc", run "net sam createbuiltingroup", then go back into smb.conf and put idmap backend back to what it was before. After that, restart samba and winbind.

I hope that works out for you.

--
Mike Bleiweiss
Devout Unixophile
Back to top
Login to vote
Mike Bleiweiss

External


Since: Aug 13, 2008
Posts: 10



(Msg. 5) Posted: Fri Jan 02, 2009 8:32 pm
Post subject: Re: How to use samba using LDAP user authentication on RHEL5? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Fri, 02 Jan 2009 22:18:58 +0100
Jan Gerrit Kootstra <jan.gerrit DeleteThis @kootstra.org.uk> wrote:

> net sam createbuiltingroup Administrators
> Creating Administrators failed with NT_STATUS_ACCESS_DENIED

Can you post your smb.conf and the output of smbstatus and testparm?




--
Mike Bleiweiss
Devout Unixophile
Back to top
Login to vote
Jan Gerrit Kootstra

External


Since: Aug 02, 2005
Posts: 134



(Msg. 6) Posted: Fri Jan 02, 2009 10:18 pm
Post subject: Re: How to use samba using LDAP user authentication on RHEL5? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Mike Bleiweiss schreef:
> On Fri, 02 Jan 2009 11:15:54 +0100
> Jan Gerrit Kootstra <jan.gerrit.TakeThisOut@kootstra.org.uk> wrote:
>
>> I get errors like this:
>>
>> [2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_administrators(792)
>> create_builtin_administrators: Failed to create Administrators
>> [2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_users(758)
>> create_builtin_users: Failed to create Users
>> [2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_administrators(792)
>> create_builtin_administrators: Failed to create Administrators
>> [2009/01/01 17:48:47, 0] auth/auth_util.c:create_builtin_users(758)
>> create_builtin_users: Failed to create Users
>
> Check your smb.conf file - what value do you have for "idmap backend"? There is a problem with winbind with certain values for idmap backend that bork up "builtin" group creation. Save what you have for that value, set it back to "idmap backend = tdc", run "net sam createbuiltingroup", then go back into smb.conf and put idmap backend back to what it was before. After that, restart samba and winbind.
>
> I hope that works out for you.
>
Mike,


This is what I get:

net sam createbuiltingroup Administrators
Creating Administrators failed with NT_STATUS_ACCESS_DENIED


Kind regards,


Jan Gerrit Kootstra
Back to top
Login to vote
Mike Bleiweiss

External


Since: Aug 13, 2008
Posts: 10



(Msg. 7) Posted: Sat Jan 03, 2009 9:38 am
Post subject: Re: How to use samba using LDAP user authentication on RHEL5? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Sat, 03 Jan 2009 10:12:54 +0100
Jan Gerrit Kootstra <jan.gerrit.TakeThisOut@kootstra.org.uk> wrote:

> Here is the smbstatus output:

Hmmm... everything looks okay. I'm left scratching my head.

Question: when you had LDAP set up on this box before, did you use the same domain/workgroup name?

Also, how are your group mappings set up? What does "net groupmap list" give you?

If you need to redo your group mappings, there is a great web page at
http://www.mrp3.com/windows-to-unix-samba.html - it has tons of information on group
mappings and other related items, including a script to do the group associations for
you.


--
Mike Bleiweiss
Devout Unixophile
Back to top
Login to vote
Jan Gerrit Kootstra

External


Since: Aug 02, 2005
Posts: 134



(Msg. 8) Posted: Sat Jan 03, 2009 10:01 pm
Post subject: Re: How to use samba using LDAP user authentication on RHEL5? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Mike Bleiweiss schreef:
> On Sat, 03 Jan 2009 10:12:54 +0100
> Jan Gerrit Kootstra <jan.gerrit.DeleteThis@kootstra.org.uk> wrote:
>
>> Here is the smbstatus output:
>
> Hmmm... everything looks okay. I'm left scratching my head.
>
> Question: when you had LDAP set up on this box before, did you use the same domain/workgroup name?
>
> Also, how are your group mappings set up? What does "net groupmap list" give you?
>
> If you need to redo your group mappings, there is a great web page at
> http://www.mrp3.com/windows-to-unix-samba.html - it has tons of information on group
> mappings and other related items, including a script to do the group associations for
> you.
>
>
Mike,


Thank you so for.

net groupmap list


The mapgroup.sh fails:

adding entry for group Domain Admins failed!
adding entry for group Domain Users failed!
adding entry for group Domain Guests failed!
No rid or sid specified, choosing a RID
Got RID 1013
adding entry for group Administrators failed!
No rid or sid specified, choosing a RID
Got RID 1014
adding entry for group Users failed!
No rid or sid specified, choosing a RID
Got RID 1015
adding entry for group Guests failed!
No rid or sid specified, choosing a RID
Got RID 1016
adding entry for group Power Users failed!
No rid or sid specified, choosing a RID
Got RID 1017
adding entry for group Account Operators failed!
No rid or sid specified, choosing a RID
Got RID 1018
adding entry for group System Operators failed!
No rid or sid specified, choosing a RID
Got RID 1019
adding entry for group Print Operators failed!
No rid or sid specified, choosing a RID
Got RID 1020
adding entry for group Backup Operators failed!
No rid or sid specified, choosing a RID
Got RID 1021
adding entry for group Replicators failed!

So I am as puzzled as you are.

I use the same domain/workgroupname.


Kind regards,


Jan Gerrit Kootstra
Back to top
Login to vote
Display posts from previous:   
Related Topics:
Keeping RHEL5 up to date. - I am a paid subscriber to RHEL5, but there is a little problem, I think. Today I noticed other people had the vmlinuz-2.6.18-8.1.8.el5PAE kernel, but I had only the vmlinuz-2.6.18-8.1.6.el5PAE one. I logged into the Red Hat Network site and found there...

Anyone ready for ext4 on RHEL5.2 - Now? - Hello to all: I suppose I don't have the courage yet. But, if anyone is interested, Eric Sandeen, one of Red Hat's filesystem developers, has some ext4 software to help us on our way. I'm not sure if the present kernel gets patched in any way, but at....

HOW TO CREATE ADS STRUCTURE IN RHEL5 - Any how to or help for Directory services implementation on RHEL5

installing rhel5 kernel-devel packages - I need to install a kernel development package for RHEL5 running the 2.6.18-8.el5-xen kernel. I know of a few ways to do this manually, but I'm looking for the canonical 'right way' to do it (the type of thing that would be easy to explain to an enduser....

Authentication with kerberos - I set up a kerberos server with nis and using system-config-authentication I set NIS for user information and kerberos for authentication. I set up a principle user1 and was able to log in using the kerberos password. But user2 was set up with the..
       Linux (Home) -> Red Hat General All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Categories:
 Windows Forums
 Game Forums
  Linux Forums
 Mac Forums
 PDA Forums
 Mobile Forums
  Top  |  Store  |  RSS Feeds RSS  |  Data Feeds  |  Advertise  |  Submit  |  Bookmark  |  Newsletter  |  Contact