we use a external LDAP Server without samba for users and groups.
But we are not able to connect to our shares from our Win 7 clients.
To solve this we need the sambaSID of the storage to set the correct user sambaSID.
How can we check the sambaSID?
I know this paper, but it does not really help or I do not understand the step in section 2.
I have a structure similar to the discribed structure.
But it is not possible to put a entry like
dn: sambaDomainName=xxx,dc=server,dc=com
in LDAP.
Because is not a LDAP conformal map.
When I do that I got
warning: no attributes to add (entry="sambaDomainName=xxx,dc=xxx,dc=xx")
adding new entry "sambaDomainName=xxx,dc=xxx,dc=xx"
ldapadd: Protocol error (2)
additional info: no attributes provided
try out with objectclass sambaGroupMapping.
Get
adding new entry "uid=test,ou=people,dc=xxx,dc=xx"
ldapadd: Object class violation (65)
additional info: object class 'sambaGroupMapping' requires attribute 'sambaSID'
and that´s what I searching for!
try out with objectclass sambaAccount
Get
adding new entry "uid=test,ou=people,dc=xxx,dc=xx"
ldapadd: Invalid syntax (21)
additional info: objectClass: value #2 invalid per syntax
value #2 is the objectclass sambaAccount
This should normally work.
Do not know why getting a Invalid syntax error.
Objectclass sambaAccount have only uid and rid as MUST attribute and is AUXILARY.
I have post it to openldap-technical list.
Hope they know what´s going wrong.
Also try out remote console access and api configuration.
But both terminals have a limited command set.
Nothing like net getlocalsid / getdomainsid.
Access from outside with the commands also want work.
Member
How can I check the sambaSID of the storage
Posting Permissions
Reply With Quote