[Date Prev][Date Next]
Re: samba ldap
Kaushal Shriyan wrote:
> On Wed, Oct 28, 2009 at 5:17 AM, Brett Maxfield
> <email@example.com> wrote:
>> The log from samba says ldap: where's your test command says ldaps: maybe
>> try ldap: from test command in case you only listen for ssl?
>> On 27/10/2009, at 7:28 PM, Kaushal Shriyan <firstname.lastname@example.org> wrote:
>>> I am following https://help.ubuntu.com/8.10/serverguide/C/samba-ldap.html
>>> and ldap works perfectly fine.
>>> I have issues with connecting to ldap from samba.
>>> I get
>>> [2009/10/27 12:37:28, 1] lib/smbldap.c:another_ldap_try(1153)
>>> Connection to LDAP server failed for the 9 try!
>>> [2009/10/27 12:37:29, 2] lib/smbldap.c:smbldap_open_connection(786)
>>> smbldap_open_connection: connection opened
>>> [2009/10/27 12:37:29, 2] lib/smbldap.c:smbldap_connect_system(982)
>>> failed to bind to server ldap://localhost/ with
>>> dn="cn=admin,dc=mt,dc=webaroo,dc=com" Error: Can't contact LDAP server
>>> I have ldapserver running on the same server as samba server is
>>> running. when i run ldapsearch -x -H ldaps://localhost. I am able to
>>> see the user details.
>>> Please let me know if anyone needs configs and additional information.
>>> Also when i run smbldap-populate, i get
> Below are my configs.
> http://pastebin.com/dcb24c87 ---> ldap.conf
> http://pastebin.com/d721f0d4d ---> slapd.conf
> http://pastebin.com/d102cbfc5 --->samba.conf
> http://pastebin.com/d4a02b874 --> smbldap.conf
> http://pastebin.com/d716fddc0 ---> smbldap_bind.conf
> I am running both ldap and samba server on the same host running on
> ubuntu 8.04 Hardy server. I am following
> https://help.ubuntu.com/8.10/serverguide/C/samba-ldap.html. I get the
> below issue when i run smbldap-populate I get
> Please let me know if anyone needs more information.
As three of already pointed out, the error is probably in ldap X ldaps.
I recommend you to read smbldap.conf carefully.
--- snip ---
# Use TLS for LDAP
# If set to 1, this option will use start_tls for connection
# (you should also used the port 636)
# If not defined, parameter is set to "1"
It should be obvious (yes, set ldapSSL=0; set ldapTLS=1).
btw your configs don't show whether is LDAP listening - is it port 389,
or 636? Or better, it would be great to show parameters passed to # slapd;
--- snip slapd.conf ---
That one got away :)
Please, no offense, but if this is for production, hire somebody skilled
with setting up GNU/Linux servers and applications, or better
how-to+time to read documentation. I'm sorry for being a jerk, couldn't
This time, not off the list with best regards,