[KLUG Members] Help for upgrade to Samba
3.0.1 (LDAPSAM) fm 2.2.8a anybody?
Adam Williams
members@kalamazoolinux.org
Fri, 23 Jan 2004 06:42:45 -0500
> |>| It might not be bad to walk away and do something else for a day and go
> ...
> |>~ No such user Administrator [J9STARR] - using guest account
> | What does "id Administrator" return if you run it on the PDC?
> [root@enigma root]# id Administrator
> uid=998(Administrator) gid=512(Domain Admins) groups=512(Domain Admins)
Ok, but you won't be able to join the domain with this account. The
account used to join the domain must have uidNumber of 0 (gidNumber
doesn't matter). Thats because you need root authority on the Samba
box.
> |>and also there was this in another window:
> |>[root@enigma samba3]# tail -f /var/log/samba3/log.kaliklak | grep root
> ...
> |>Huh? "(uid=root)(objectclass=sambaSamAccount))"? Why is it looking for
> that?
> | Well, you mapped Administrator to root, yes?
> Right but that was a root group not a root user. I assume that
> sambaSamAccount means that it is looking for an actual user named root.
Yes.
> I do have this setting:
> [root@enigma samba3]# cat smbusers
> # Unix_name = SMB_name1 SMB_name2 ...
> root = Administrator admin
> nobody = guest pcguest smbguest
It might work, I've never used user mapping so I don't know at what
stage or for what contexts it happens.
> Yup. Suppose I don't actually need the include line mentioned eariler,
> except for the debug level. Thing is that I can't seem to get the
> log/debug level to back off at all from 10 anyway. Hmmm, perhaps if it
> encounters a loglevel or debug level that is higher it defaults to the
> high one. I'll try a global reduction in level and see if I can't get
> something more manageable. Still seems like I am getting bloody well
> everything.
The last debug level the config file parser encounters is the only one
that matters - it is always a global setting.
> | I just don't specify a max size, it seems to work.
> | And you have something like -
> | logon script = %G.bat
> | logon path = \\BARBEL\PROFILES\%U
> | logon drive = f:
> | logon home = \\SARDINE\HOMEDIR
> | - in smb.conf to cover for the possibility that an attribute isn't
> | specified in LDAP?
> No specs for this. Wanted the defaults, i.e. profiles that live in
> users /home directories etc. I have no use for a logon script that I
> know of either and users are added with logon path, drive and home set
> to a default value.
Ok.