[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: samba ldap

To: Kaushal Shriyan <kaushalshriyan@gmail.com>
Subject: Re: samba ldap
From: Zdenek Styblik <stybla@turnovfree.net>
Date: Wed, 28 Oct 2009 19:07:25 +0100
Cc: Brett Maxfield <brett.maxfield@gmail.com>, "openldap-technical@openldap.org" <openldap-technical@openldap.org>
In-reply-to: <6b16fb4c0910280836ib53819bo79409c327ca184e6@mail.gmail.com>
Openpgp: url=http://stinkfoot.org:11371/pks/lookup?op=index&search=Styblik
Organization: OS TurnovFree.net
References: <57E4E4D6-F795-489B-A110-C3B48B509A60@gmail.com> <6b16fb4c0910280836ib53819bo79409c327ca184e6@mail.gmail.com>
User-agent: Thunderbird 2.0.0.23 (X11/20090820)

Kaushal Shriyan wrote:
> On Wed, Oct 28, 2009 at 5:17 AM, Brett Maxfield
> <brett.maxfield@gmail.com> wrote:
>> The log from samba says ldap: where's your test command says ldaps: maybe
>> try ldap: from test command in case you only listen for ssl?
>>
>> On 27/10/2009, at 7:28 PM, Kaushal Shriyan <kaushalshriyan@gmail.com> wrote:
>>
>>> Hi,
>>>
>>> I am following https://help.ubuntu.com/8.10/serverguide/C/samba-ldap.html
>>> and ldap works perfectly fine.
>>> I have issues with connecting to ldap from samba.
>>>
>>> I get
>>>
>>> [2009/10/27 12:37:28, 1] lib/smbldap.c:another_ldap_try(1153)
>>> Connection to LDAP server failed for the 9 try!
>>> [2009/10/27 12:37:29, 2] lib/smbldap.c:smbldap_open_connection(786)
>>> smbldap_open_connection: connection opened
>>> [2009/10/27 12:37:29, 2] lib/smbldap.c:smbldap_connect_system(982)
>>> failed to bind to server ldap://localhost/ with
>>> dn="cn=admin,dc=mt,dc=webaroo,dc=com" Error: Can't contact LDAP server
>>>     (unknown)
>>>
>>> I have ldapserver running on the same server as samba server is
>>> running. when i run ldapsearch -x -H ldaps://localhost. I am able to
>>> see the user details.
>>> Please let me know if anyone needs configs and additional information.
>>> Also when i run smbldap-populate, i get
>>> http://paste.ubuntu.com/302630/
>>>
>>> Thanks,
>>>
>>> Kaushal
>>
> 
> Hi,
> 
> Below are my configs.
> 
> http://pastebin.com/dcb24c87 ---> ldap.conf
> http://pastebin.com/d721f0d4d ---> slapd.conf
> http://pastebin.com/d102cbfc5 --->samba.conf
> http://pastebin.com/d4a02b874 --> smbldap.conf
> http://pastebin.com/d716fddc0 ---> smbldap_bind.conf
> 
> I am running both ldap and samba server on the same host running on
> ubuntu 8.04 Hardy server. I am following
> https://help.ubuntu.com/8.10/serverguide/C/samba-ldap.html. I get the
> below issue when i run smbldap-populate I get
> http://pastebin.com/d30ed0db6.
> 
> Please let me know if anyone needs more information.
> 
> Thanks,
> 
> Kaushal


As three of already pointed out, the error is probably in ldap X ldaps.
I recommend you to read smbldap.conf carefully.

--- snip ---
masterLDAP="127.0.0.1"

#
# Use TLS for LDAP
#
# If set to 1, this option will use start_tls for connection
#
# (you should also used the port 636)
#
# If not defined, parameter is set to "1"
#
ldapTLS="0"
#
ldapSSL="1"
------------

It should be obvious (yes, set ldapSSL=0; set ldapTLS=1).

btw your configs don't show whether is LDAP listening - is it port 389,
or 636? Or better, it would be great to show parameters passed to # slapd;

Also:
--- snip slapd.conf ---
rootpw          {MD5}EkbtplLF/NpuX8tdbxDZdA=
-----------------------

That one got away :)

Please, no offense, but if this is for production, hire somebody skilled
with setting up GNU/Linux servers and applications, or better
how-to+time to read documentation. I'm sorry for being a jerk, couldn't
help it.

This time, not off the list with best regards,
Zdenek

-- 
Zdenek Styblik
Net/Linux admin
OS TurnovFree.net
email: stybla@turnovfree.net
jabber: stybla@jabber.turnovfree.net

Follow-Ups:
- Re: samba ldap
  - From: Kaushal Shriyan <kaushalshriyan@gmail.com>

References:
- Re: samba ldap
  - From: Brett Maxfield <brett.maxfield@gmail.com>
- Re: samba ldap
  - From: Kaushal Shriyan <kaushalshriyan@gmail.com>

Prev by Date: Re: samba ldap
Next by Date: Re: samba ldap
Index(es):
- Chronological
- Thread