Impossible d'ouvrir une session (SAMBA-LDAP)
Impossible d'ouvrir une session (SAMBA-LDAP) - Installation - Linux et OS Alternatifs
Marsh Posté le 05-11-2012 à 11:31:12
nmbd tourne bien ?
tu as des erreurs dans smb.log dans le journal windows ?
Marsh Posté le 05-11-2012 à 12:08:44
Voici le contenu de mes logs smb quand je tente une ouverture de session:
[2012/11/05 10:08:45.095840, 3] smbd/server.c:259(remove_child_pid)
smbd/server.c:259 Unclean shutdown of pid 32060
[2012/11/05 10:08:45.095939, 1] smbd/server.c:267(remove_child_pid)
Scheduled cleanup of brl and lock database after unclean shutdown
Marsh Posté le 05-11-2012 à 12:32:09
essaye d'augmenter la verbosité des logs, et donne les logs complets.
$ ps aux | egrep '(smb|nmb)'
Marsh Posté le 05-11-2012 à 12:50:45
Voici l'état des process
p
etc# ps aux |egrep '(smb|nmb)'
root 460 0.0 0.0 3312 792 pts/0 S+ 10:42 0:00 egrep (smb|nmb)
root 3403 0.0 0.0 9224 1764 ? Ss Oct24 0:05 /usr/sbin/nmbd -D
root 3407 0.0 0.0 16580 3240 ? Ss Oct24 0:00 /usr/sbin/smbd -D
root 3419 0.0 0.0 16568 1292 ? S Oct24 0:00 /usr/sbin/smbd -D
root 16186 0.0 0.0 9660 1800 ? Ss Nov02 0:07 /usr/sbin/nmbd -D
root 16191 0.0 0.0 17244 3776 ? Ss Nov02 0:00 /usr/sbin/smbd -D
root 16197 0.0 0.0 17244 1736 ? S Nov02 0:00 /usr/sbin/smbd -D
root 16862 0.0 0.0 7292 1660 ? Ss Oct31 0:16 /usr/sbin/nmbd -D
root 16864 0.0 0.0 13304 3040 ? Ss Oct31 0:00 /usr/sbin/smbd -D
root 16870 0.0 0.0 13192 1016 ? S Oct31 0:00 /usr/sbin/smbd -D
root 17171 0.0 0.0 9660 1772 ? Ss Nov01 0:59 /usr/sbin/nmbd -D
root 17176 0.0 0.0 17188 3728 ? Ss Nov01 0:00 /usr/sbin/smbd -D
root 17182 0.0 0.0 17188 1516 ? S Nov01 0:00 /usr/sbin/smbd -D
root 26096 0.0 0.0 9196 1752 ? Ss Oct30 0:47 /usr/sbin/nmbd -D
root 26101 0.0 0.0 16472 3384 ? Ss Oct30 0:00 /usr/sbin/smbd -D
root 26107 0.0 0.0 16472 1240 ? S Oct30 0:00 /usr/sbin/smbd -D
root 26993 0.0 0.0 17268 3384 ? S 06:09 0:00 /usr/sbin/smbd -D
root 27475 0.0 0.1 17504 4228 ? S 06:38 0:01 /usr/sbin/smbd -D
root 27543 0.0 0.1 17280 4100 ? S 06:39 0:00 /usr/sbin/smbd -D
root 27578 0.0 0.0 17380 3964 ? S 06:40 0:00 /usr/sbin/smbd -D
1020 27858 0.0 0.1 17764 4572 ? S 06:56 0:01 /usr/sbin/smbd -D
root 28898 0.0 0.0 17380 3664 ? S 07:49 0:00 /usr/sbin/smbd -D
root 30341 0.0 0.0 16856 3192 ? S 08:55 0:00 /usr/sbin/smbd -D
root 30520 0.0 0.0 16856 3192 ? S 09:03 0:00 /usr/sbin/smbd -D
root 32455 0.0 0.0 16816 3196 ? S 10:21 0:00 /usr/sbin/smbd -D
root 32502 0.0 0.0 17512 3888 ? S 10:23 0:00 /usr/sbin/smbd -D
root 32564 0.0 0.1 17504 4148 ? S 10:26 0:00 /usr/sbin/smbd -D
1021 32734 0.0 0.0 17432 3236 ? S 10:35 0:00 /usr/sbin/smbd -D
après redemarrage de samba et slapd et retentative d'ouverture de session j'ai ceci:
petc# tail -f /var/log/samba/log.smbd
Error = Address already in use
[2012/11/05 10:47:57.827633, 0] smbd/server.c:500(smbd_open_one_socket)
smbd_open_once_socket: open_socket_in: Address already in use
[2012/11/05 10:47:57.827729, 2] lib/util_sock.c:880(open_socket_in)
bind failed on port 139 socket_addr = 0.0.0.0.
Error = Address already in use
[2012/11/05 10:47:57.827819, 0] smbd/server.c:500(smbd_open_one_socket)
smbd_open_once_socket: open_socket_in: Address already in use
[2012/11/05 10:47:57.828131, 2] smbd/server.c:721(smbd_parent_loop)
waiting for connections
[2012/11/05 10:50:09.015053, 3] smbd/server.c:259(remove_child_pid)
smbd/server.c:259 Unclean shutdown of pid 638
[2012/11/05 10:50:09.015127, 1] smbd/server.c:267(remove_child_pid)
Scheduled cleanup of brl and lock database after unclean shutdown
[2012/11/05 10:50:29.016377, 1] smbd/server.c:240(cleanup_timeout_fn)
Cleaning up brl and lock database after unclean shutdown
[2012/11/05 10:50:29.016647, 2] lib/messages_local.c:289(message_notify)
message to process 16197 failed - No such process
[2012/11/05 10:50:29.016726, 2] lib/messages_local.c:379(messaging_tdb_send)
pid 16197 doesn't exist - deleting messages record
[2012/11/05 10:50:29.016802, 2] lib/messages.c:127(traverse_fn)
pid 16197 doesn't exist - deleting connections -1 []
[2012/11/05 10:50:29.017037, 2] lib/messages_local.c:289(message_notify)
message to process 16186 failed - No such process
[2012/11/05 10:50:29.017088, 2] lib/messages_local.c:379(messaging_tdb_send)
pid 16186 doesn't exist - deleting messages record
[2012/11/05 10:50:29.017140, 2] lib/messages.c:127(traverse_fn)
pid 16186 doesn't exist - deleting connections -1 []
Marsh Posté le 05-11-2012 à 13:20:22
[2012/11/05 10:47:57.827729, 2] lib/util_sock.c:880(open_socket_in)
bind failed on port 139 socket_addr = 0.0.0.0.
Error = Address already in use
Essaye
# /etc/init.d/samba stop; killall -9 smbd; killall -9 nmbd
# /etc/init.d/samba start
Marsh Posté le 05-11-2012 à 13:29:09
j'ai toujours la même erreur:
petc# tail -f /var/log/samba/log.smbd
Error = Address already in use
[2012/11/05 11:28:52.666675, 0] smbd/server.c:500(smbd_open_one_socket)
smbd_open_once_socket: open_socket_in: Address already in use
[2012/11/05 11:28:52.666870, 2] lib/util_sock.c:880(open_socket_in)
bind failed on port 139 socket_addr = 0.0.0.0.
Error = Address already in use
[2012/11/05 11:28:52.667058, 0] smbd/server.c:500(smbd_open_one_socket)
smbd_open_once_socket: open_socket_in: Address already in use
[2012/11/05 11:28:52.667437, 2] smbd/server.c:721(smbd_parent_loop)
waiting for connections
Marsh Posté le 05-11-2012 à 16:01:21
petc# ps aux |egrep '(smb|nmb)'
root 1472 0.0 0.0 9660 1796 ? Ss 11:28 0:01 /usr/sbin/nmbd -D
root 1477 0.0 0.0 17244 3552 ? Ss 11:28 0:00 /usr/sbin/smbd -D
root 1483 0.0 0.0 17244 1756 ? S 11:28 0:00 /usr/sbin/smbd -D
root 3775 0.0 0.0 3316 828 pts/0 S+ 13:54 0:00 egrep (smb|nmb)
voici mon smb.conf:
[global]
display charset = ISO8859-1
unix charset = ISO8859-1
dos charset = 850
workgroup = domain-rictel
realm = domain-rictel
netbios name = svr01-anrmp
server string = Serveur de Domaine ANRMP PDC
security = USER
passdb backend = ldapsam:ldap://127.0.0.1/
passwd program = /usr/bin/smbpasswd %u
username map = /etc/samba/smbusers
unix password sync = Yes
log level = 3
syslog = 3
log file = /var/log/samba/log.%m
max log size = 1000
announce version = 5.0
name resolve order = wins lmhosts bcast
server signing = Yes
keepalive = 5
socket options = TCP_NODELAY SO_SNDBUF=819200 SO_RCVBUF=819200
ldap admin dn = cn=admin,dc=domain-rictel
ldap delete dn = Yes
ldap group suffix = ou=Groups
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=Computers
ldap suffix = dc=domain-rictel
ldap ssl = no
ldap user suffix = ou=Users
idmap backend = dc=domain-rictel
idmap uid = 500-10000000
idmap gid = 500-10000000
add user script = /usr/sbin/smbldap-useradd -a -m -G "Domain Users" "%u"
add group script = /usr/sbin/smbldap-groupadd -p "%g"
add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"
add machine script = /usr/sbin/smbldap-useradd -i "%u"
logon script = %u.bat
logon path = \\%L\profiles\%u
logon drive = H:
logon home = \\%L\homes\%u
domain logons = Yes
os level = 95
preferred master = Yes
domain master = Yes
eventlog list = Security, Application, Syslog, Apache
message command = /bin/sh -c '/usr/bin/linpopup
panic action = /usr/share/samba/panic-action %d
#winbind separator = \
winbind cache time = 300
hide unreadable = Yes
#interfaces = 192.168. 10.0 127.0.0.1
[homes]
comment = Home Directories
path = /home/%u
read only = No
locking = No
share modes = No
[netlogon]
comment = Network Logon Service
path = /home/netlogon
locking = No
share modes = No
[profiles]
comment = User Profiles
path = /home/profiles
read only = No
create mask = 0660
directory mask = 0770
profile acls = Yes
browseable = No
locking = No
[printers]
comment = All Printers
path = /var/spool/samba
printable = Yes
browseable = No
locking = No
share modes = No
[pdf-documents]
comment = Converted PDF Documents
path = /home/pdf-documents
read only = No
[pdf-printer]
comment = PDF Printer Service
path = /tmp
guest ok = Yes
printable = Yes
use client driver = Yes
[Group Policy Object gpo]
comment = Strategies de groupe
path = /home/gpo
invalid users = root
valid users = @"Domain Admins"
browseable = No
root preexec = /etc/samba/script/createGPO --win_user=%U --win_group=%G --ip=%I --os_type=%a --win_host=%m --share=/home/gpo
[Partage]
comment = Partage
path = /home/lolo/Partage
read only = No
guest ok = Yes
[Account Operators]
comment = Account Operators
path = /home/groups/Account-Operators
read only = No
locking = No
share modes = No
valid users = @"Account Operators"
[Administrators]
comment = Administrators
path = /home/groups/Administrators
read only = No
locking = No
share modes = No
valid users = @"Administrators"
[Domain Admins]
comment = Domain Admins
path = /home/groups/Domain-Admins
read only = No
locking = No
share modes = No
valid users = @"Domain Admins"
[Domain Users]
comment = Domain Users
path = /home/groups/Domain-Users
read only = No
locking = No
share modes = No
valid users = @"Domain Users"
[Domain Guests]
comment = Domain Guests
path = /home/groups/Domain-Guests
read only = No
locking = No
share modes = No
valid users = lolo
[Print Operators]
comment = Print Operators
path = /home/groups/Print-Operators
read only = No
locking = No
share modes = No
valid users = @"Print Operators"
[Backup Operators]
comment = Backup Operators
path = /home/groups/Backup-Operators
read only = No
locking = No
share modes = No
valid users = @"Backup Operators"
[Replicators]
comment = Replicators
path = /home/groups/Replicators
read only = No
locking = No
share modes = No
valid users = @"Replicators"
Marsh Posté le 05-11-2012 à 16:59:04
Aussi faut il signaler que mes logs slap me donne ceci:
slapd[1416]: <= bdb_equality_candidates: (sambaSIDList) not indexed
Nov 5 14:51:30 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSIDList) not indexed
Nov 5 14:51:30 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSIDList) not indexed
Nov 5 14:51:30 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSIDList) not indexed
Nov 5 14:51:30 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSID) not indexed
Nov 5 14:51:30 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSID) not indexed
Nov 5 14:51:30 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSID) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (gidNumber) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSID) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSID) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSID) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSID) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaGroupType) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSIDList) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSIDList) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSIDList) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSIDList) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSID) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSID) not indexed
Nov 5 14:51:31 svr01 slapd[1416]: <= bdb_equality_candidates: (sambaSID) not indexed
Marsh Posté le 05-11-2012 à 17:06:56
ton serveur est bien integré à ton domaine (entrée SERVEUR$) ?
Marsh Posté le 05-11-2012 à 17:22:36
Pouvez vous être un peu plus explicite ?
Je ne comprends pas très bien ?
Marsh Posté le 05-11-2012 à 18:01:43
le computer svr01-anrmp vient être créé dans le LDAP. Dans l'interface graphique il apparait bien. Mais mon problème demeure le même.
Les autres postes tests sont dans le ldap, j'ai 3 postes tests et les trois renvoie le même message d'erreur.
Marsh Posté le 05-11-2012 à 18:17:19
Tu as essayé un serveur samba sans ldap, puis ajouté le support LDAP ?
Tu as suivi une doc ?
Marsh Posté le 05-11-2012 à 19:21:59
voici le tuto que j'ai suivi
http://monblog.system-linux.net/bl [...] aire-ldap/
Marsh Posté le 06-11-2012 à 08:42:21
Mon slapcat est volumineux. Je vous le colle tout de même. Etant sous squeeze, j'ai pas de fichier slapd.conf.
dn:
objectClass: top
objectClass: dcObject
objectClass: organization
o: domain-rictel
dc: domain-rictel
structuralObjectClass: organization
entryUUID: 16abcfe6-b85c-1031-8c31-0fea7f518975
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101103859Z
entryCSN: 20121101103859.068260Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101103859Z
dn:
objectClass: simpleSecurityObject
objectClass: organizationalRole
cn: admin
description: LDAP administrator
userPassword:: e1NTSEF9WEc0YnVqcG1SMlBHbllrRCtPYWhNc2FUUUdlbEttVXk=
structuralObjectClass: organizationalRole
entryUUID: 16ac1672-b85c-1031-8c32-0fea7f518975
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101103859Z
entryCSN: 20121101103859.070076Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101103859Z
dn: dc=domain-rictel
objectClass: top
objectClass: dcObject
objectClass: organization
o: domain-rictel
dc: domain-rictel
structuralObjectClass: organization
entryUUID: 7947f9b8-b85c-1031-8f21-ff4acaa1b799
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101104144Z
entryCSN: 20121101104144.508410Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101104144Z
dn: cn=admin,dc=domain-rictel
objectClass: simpleSecurityObject
objectClass: organizationalRole
cn: admin
description: LDAP administrator
userPassword:: e1NTSEF9QUdIeU5TSWtWdExSb1VHU0xMWmxjS1BqWVhmSHFrUHo=
structuralObjectClass: organizationalRole
entryUUID: 79480e8a-b85c-1031-8f22-ff4acaa1b799
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101104144Z
entryCSN: 20121101104144.508954Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101104144Z
dn: sambaDomainName=domain-rictel,dc=domain-rictel
sambaAlgorithmicRidBase: 1000
sambaNextUserRid: 1000
structuralObjectClass: sambaDomain
entryUUID: 72cac6aa-b862-1031-80b2-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112430Z
sambaMinPwdLength: 5
sambaPwdHistoryLength: 0
sambaLogonToChgPwd: 0
sambaMaxPwdAge: -1
sambaMinPwdAge: 0
sambaLockoutDuration: 30
sambaLockoutObservationWindow: 30
sambaLockoutThreshold: 0
sambaForceLogoff: -1
sambaRefuseMachinePwdChange: 0
gidNumber: 1000
sambaDomainName: domain-rictel
sambaSID: S-1-5-21-759090094-1980646407-2271802389
objectClass: top
objectClass: sambaDomain
objectClass: sambaUnixIdPool
uidNumber: 1016
sambaNextRid: 1008
entryCSN: 20121105145750.833856Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121105145750Z
dn: ou=Users,dc=domain-rictel
objectClass: top
objectClass: organizationalUnit
ou: Users
structuralObjectClass: organizationalUnit
entryUUID: f137006c-b862-1031-80b3-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.704148Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: ou=Groups,dc=domain-rictel
objectClass: top
objectClass: organizationalUnit
ou: Groups
structuralObjectClass: organizationalUnit
entryUUID: f138ba92-b862-1031-80b4-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.715468Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: ou=Computers,dc=domain-rictel
objectClass: top
objectClass: organizationalUnit
ou: Computers
structuralObjectClass: organizationalUnit
entryUUID: f13903da-b862-1031-80b5-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.717344Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: ou=Idmap,dc=domain-rictel
objectClass: top
objectClass: organizationalUnit
ou: Idmap
structuralObjectClass: organizationalUnit
entryUUID: f139478c-b862-1031-80b6-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.719078Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: uid=root,ou=Users,dc=domain-rictel
cn: root
sn: root
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: sambaSamAccount
objectClass: posixAccount
objectClass: shadowAccount
gidNumber: 0
uid: root
uidNumber: 0
homeDirectory: /home/root
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaKickoffTime: 2147483647
sambaPwdCanChange: 0
sambaHomePath: \\%L\homes\%u
sambaHomeDrive: H:
sambaProfilePath: \\%L\profiles\%u
sambaPrimaryGroupSID: S-1-5-21-759090094-1980646407-2271802389-512
sambaSID: S-1-5-21-759090094-1980646407-2271802389-500
loginShell: /bin/false
gecos: Netbios Domain Administrator
structuralObjectClass: inetOrgPerson
entryUUID: f139c22a-b862-1031-80b7-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
sambaLMPassword: F0CA152EC73A973287EEB66D08E08770
sambaAcctFlags: [U]
sambaNTPassword: 46ED86D79F4E6FCA24EDA6FD0213A03B
sambaPwdLastSet: 1351769305
sambaPwdMustChange: 1355657305
userPassword:: e1NTSEF9U3UyUTBqSGxLTUdmMjBMQ3VzMGVZcUkwTUh4bGNtWko=
shadowLastChange: 15645
shadowMax: 45
entryCSN: 20121101112825.124949Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112825Z
dn: uid=nobody,ou=Users,dc=domain-rictel
cn: nobody
sn: nobody
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: sambaSamAccount
objectClass: posixAccount
objectClass: shadowAccount
gidNumber: 65534
uid: nobody
uidNumber: 65534
homeDirectory: /nonexistent
sambaPwdLastSet: 0
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaKickoffTime: 2147483647
sambaPwdCanChange: 0
sambaPwdMustChange: 2147483647
sambaHomePath: \\%L\homes\%u
sambaHomeDrive: H:
sambaProfilePath: \\%L\profiles\%u
sambaPrimaryGroupSID: S-1-5-21-759090094-1980646407-2271802389-514
sambaLMPassword: NO PASSWORDXXXXXXXXXXXXXXXXXXXXX
sambaNTPassword: NO PASSWORDXXXXXXXXXXXXXXXXXXXXX
sambaAcctFlags: [NUD ]
sambaSID: S-1-5-21-759090094-1980646407-2271802389-2998
loginShell: /bin/sh
structuralObjectClass: inetOrgPerson
entryUUID: f13a2d14-b862-1031-80b8-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.724953Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: cn=Domain Admins,ou=Groups,dc=domain-rictel
objectClass: top
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 512
cn: Domain Admins
memberUid: root
description: Netbios Domain Administrators
sambaSID: S-1-5-21-759090094-1980646407-2271802389-512
sambaGroupType: 2
displayName: Domain Admins
structuralObjectClass: posixGroup
entryUUID: f13a8a0c-b862-1031-80b9-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.727334Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: cn=Domain Users,ou=Groups,dc=domain-rictel
objectClass: top
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 513
cn: Domain Users
description: Netbios Domain Users
sambaSID: S-1-5-21-759090094-1980646407-2271802389-513
sambaGroupType: 2
displayName: Domain Users
structuralObjectClass: posixGroup
entryUUID: f13ae10a-b862-1031-80ba-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121102082208.067978Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121102082208Z
dn: cn=Domain Guests,ou=Groups,dc=domain-rictel
objectClass: top
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 514
cn: Domain Guests
description: Netbios Domain Guests Users
sambaSID: S-1-5-21-759090094-1980646407-2271802389-514
sambaGroupType: 2
displayName: Domain Guests
structuralObjectClass: posixGroup
entryUUID: f13b2868-b862-1031-80bb-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.731387Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: cn=Domain Computers,ou=Groups,dc=domain-rictel
objectClass: top
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 515
cn: Domain Computers
description: Netbios Domain Computers accounts
sambaSID: S-1-5-21-759090094-1980646407-2271802389-515
sambaGroupType: 2
displayName: Domain Computers
structuralObjectClass: posixGroup
entryUUID: f13b7b1a-b862-1031-80bc-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.733505Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: cn=Administrators,ou=Groups,dc=domain-rictel
objectClass: top
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 544
cn: Administrators
description: Netbios Domain Members can fully administer the computer/sambaDom
ainName
sambaSID: S-1-5-32-544
sambaGroupType: 5
displayName: Administrators
structuralObjectClass: posixGroup
entryUUID: f13bc7b4-b862-1031-80bd-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.735465Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: cn=Account Operators,ou=Groups,dc=domain-rictel
objectClass: top
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 548
cn: Account Operators
description: Netbios Domain Users to manipulate users accounts
sambaSID: S-1-5-32-548
sambaGroupType: 5
displayName: Account Operators
structuralObjectClass: posixGroup
entryUUID: f13c1de0-b862-1031-80be-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.737671Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: cn=Print Operators,ou=Groups,dc=domain-rictel
objectClass: top
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 550
cn: Print Operators
description: Netbios Domain Print Operators
sambaSID: S-1-5-32-550
sambaGroupType: 5
displayName: Print Operators
structuralObjectClass: posixGroup
entryUUID: f13c63cc-b862-1031-80bf-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.739462Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: cn=Backup Operators,ou=Groups,dc=domain-rictel
objectClass: top
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 551
cn: Backup Operators
description: Netbios Domain Members can bypass file security to back up files
sambaSID: S-1-5-32-551
sambaGroupType: 5
displayName: Backup Operators
structuralObjectClass: posixGroup
entryUUID: f13cb750-b862-1031-80c0-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.741600Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: cn=Replicators,ou=Groups,dc=domain-rictel
objectClass: top
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 552
cn: Replicators
description: Netbios Domain Supports file replication in a sambaDomainName
sambaSID: S-1-5-32-552
sambaGroupType: 5
displayName: Replicators
structuralObjectClass: posixGroup
entryUUID: f13cfd8c-b862-1031-80c1-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112802Z
entryCSN: 20121101112802.743397Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121101112802Z
dn: uid=Administrateur,ou=Users,dc=domain-rictel
cn: Administrateur
sn: Administrateur
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: sambaSamAccount
objectClass: posixAccount
objectClass: shadowAccount
gidNumber: 0
uid: Administrateur
uidNumber: 0
homeDirectory: /home/Administrateur
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaKickoffTime: 2147483647
sambaPwdCanChange: 0
sambaHomePath: \\%L\homes\%u
sambaHomeDrive: H:
sambaProfilePath: \\%L\profiles\%u
sambaPrimaryGroupSID: S-1-5-21-759090094-1980646407-2271802389-512
loginShell: /bin/false
gecos: Netbios Domain Administrator
structuralObjectClass: inetOrgPerson
entryUUID: 360b7c72-b863-1031-80c2-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101112958Z
sambaLMPassword: F0CA152EC73A973287EEB66D08E08770
sambaAcctFlags: [U]
sambaNTPassword: 46ED86D79F4E6FCA24EDA6FD0213A03B
sambaPwdLastSet: 1351769415
sambaPwdMustChange: 1355657415
userPassword:: e1NTSEF9aWJlSXF5MFBjTHZFWXpEU09GV2dMS2YxL0VOeFVHVkg=
shadowLastChange: 15645
shadowMax: 45
sambaSID: S-1-5-21-759090094-1980646407-2271802389-501
entryCSN: 20121102132437.670879Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121102132437Z
dn: uid=SERGE,ou=Users,dc=domain-rictel
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: shadowAccount
objectClass: sambaSamAccount
cn: SERGE
sn: SERGE
givenName: SERGE
uid: SERGE
uidNumber: 1003
gidNumber: 513
homeDirectory: /home/SERGE
loginShell: /bin/bash
gecos: Roger KONAN
structuralObjectClass: inetOrgPerson
entryUUID: 5d2185b8-b863-1031-80c3-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101113103Z
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaPwdCanChange: 0
displayName: SERGE
sambaLogonScript: %u.bat
sambaProfilePath: \\%L\profiles\%u
sambaHomePath: \\%L\homes\%u
sambaHomeDrive: H:
sambaNTPassword: 325E559956FC8AC5973F9028286D1C3B
sambaPwdLastSet: 1351769486
sambaPwdMustChange: 1355657486
shadowLastChange: 15645
shadowMax: 45
userPassword:: e1NTSEF9Q1E2aTN5Ti9SSDE4VzB6c1BhckZTM0t6bitUMnVpV1g=
sambaAcctFlags: [U ]
sambaDomainName: domain-rictel
sambaUserWorkstations: ANRMP-FLAKPO,ANRMP-XP
sambaKickoffTime: 1388880000
shadowExpire: 15710
sambaSID: S-1-5-21-759090094-1980646407-2271802389-516
sambaPrimaryGroupSID: S-1-5-21-759090094-1980646407-2271802389-516
entryCSN: 20121105055628.459996Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121105055628Z
dn: uid=lolo,ou=Users,dc=domain-rictel
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: shadowAccount
objectClass: sambaSamAccount
cn: lolo
sn: lolo
givenName: lolo
uid: lolo
uidNumber: 1004
gidNumber: 513
homeDirectory: /home/lolo
loginShell: /bin/bash
gecos: lolo
structuralObjectClass: inetOrgPerson
entryUUID: 0a624fe4-b866-1031-80c4-7fc45f080a2f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121101115013Z
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaKickoffTime: 2147483647
sambaPwdCanChange: 0
displayName: lolo
sambaSID: S-1-5-21-759090094-1980646407-2271802389-3008
sambaPrimaryGroupSID: S-1-5-21-759090094-1980646407-2271802389-513
sambaLogonScript: %u.bat
sambaProfilePath: \\%L\profiles\%u
sambaHomePath: \\%L\homes\%u
sambaHomeDrive: H:
sambaPwdMustChange: 1355658618
shadowMax: 45
sambaNTPassword: 55C001ECE9F7B1946C3B397D49B34D79
sambaPwdLastSet: 1351844516
sambaAcctFlags: [U ]
shadowLastChange: 15646
userPassword:: e1NTSEF9WCtnRHNDRUQ0WHZ5dFZNSGNhckpTbmVUT3pzaWJjNW0=
sambaDomainName: domain-rictel
entryCSN: 20121102082208.070603Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121102082208Z
dn: uid=ANRMP-LKOFFI$,ou=Computers,dc=domain-rictel
objectClass: top
objectClass: account
objectClass: posixAccount
objectClass: sambaSamAccount
cn: ANRMP-LKOFFI$
uid: ANRMP-LKOFFI$
uidNumber: 1006
gidNumber: 515
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer
gecos: Computer
structuralObjectClass: account
entryUUID: c583369a-b905-1031-94d2-f9f19c95ed9f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121102065337Z
sambaSID: S-1-5-21-759090094-1980646407-2271802389-1002
displayName: ANRMP-LKOFFI$
sambaAcctFlags: [W ]
sambaNTPassword: 45274BCD5321A65961F4876EADAECCF0
sambaPwdLastSet: 1352107079
entryCSN: 20121105091759.937782Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121105091759Z
dn: uid=ANRMP-XP$,ou=Computers,dc=domain-rictel
objectClass: top
objectClass: account
objectClass: posixAccount
objectClass: sambaSamAccount
cn: ANRMP-XP$
uid: ANRMP-XP$
uidNumber: 1007
gidNumber: 515
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer
gecos: Computer
structuralObjectClass: account
entryUUID: 19cd8ade-b90b-1031-94d3-f9f19c95ed9f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121102073146Z
sambaSID: S-1-5-21-759090094-1980646407-2271802389-1001
displayName: ANRMP-XP$
sambaAcctFlags: [W ]
sambaNTPassword: 14BE935D866AF2E9041B0BABB539F680
sambaPwdLastSet: 1351846981
entryCSN: 20121102090301.294088Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121102090301Z
dn: uid=ANRMP-FLAKPO$,ou=Computers,dc=domain-rictel
objectClass: top
objectClass: account
objectClass: posixAccount
objectClass: sambaSamAccount
cn: ANRMP-FLAKPO$
uid: ANRMP-FLAKPO$
uidNumber: 1012
gidNumber: 515
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer
gecos: Computer
structuralObjectClass: account
entryUUID: 709b5b5e-b918-1031-94d8-f9f19c95ed9f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121102090715Z
sambaSID: S-1-5-21-759090094-1980646407-2271802389-1005
displayName: ANRMP-FLAKPO$
sambaNTPassword: EB1E761A1A0B55545CDE95AEA135CCB6
sambaPwdLastSet: 1351847781
sambaAcctFlags: [W ]
entryCSN: 20121102091621.445910Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121102091621Z
dn: uid=svr01-anrmp$,ou=Computers,dc=domain-rictel
objectClass: top
objectClass: account
objectClass: posixAccount
cn: svr01-anrmp$
uid: svr01-anrmp$
uidNumber: 1013
gidNumber: 515
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer
gecos: Computer
structuralObjectClass: account
entryUUID: 61319330-bba3-1031-9647-b917e1645e8f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121105144651Z
entryCSN: 20121105144651.852431Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121105144651Z
dn: uid=domain-rictel$,ou=Computers,dc=domain-rictel
objectClass: top
objectClass: account
objectClass: posixAccount
objectClass: sambaSamAccount
cn: SERGE$
uid: SERGE$
uidNumber: 1015
gidNumber: 515
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer
gecos: Computer
structuralObjectClass: account
entryUUID: e122da44-bba4-1031-9649-b917e1645e8f
creatorsName: cn=admin,dc=domain-rictel
createTimestamp: 20121105145736Z
sambaSID: S-1-5-21-759090094-1980646407-2271802389-1008
displayName: SERGE$
sambaNTPassword: F8239E6EB8587C4B3701EF5447A73DEC
sambaPwdLastSet: 1352127470
sambaAcctFlags: [W ]
entryCSN: 20121105145750.847711Z#000000#000#000000
modifiersName: cn=admin,dc=domain-rictel
modifyTimestamp: 20121105145750Z
Marsh Posté le 06-11-2012 à 11:24:09
en regardant dans mes logs j'ai ceci dans auth.log
Nov 6 09:19:59 svr01-anrmp slapd[25058]: nss_ldap: could not connect to any LDAP server as cn=admin,dc=domain-rictel - Can't contact LDAP server
Nov 6 09:19:59 svr01-anrmp slapd[25058]: nss_ldap: failed to bind to LDAP server ldap://127.0.0.1: Can't contact LDAP server
Nov 6 09:19:59 svr01-anrmp slapd[25058]: nss_ldap: could not connect to any LDAP server as cn=admin,dc=domain-rictel - Can't contact LDAP server
Nov 6 09:19:59 svr01-anrmp slapd[25058]: nss_ldap: failed to bind to LDAP server ldap://127.0.0.1/: Can't contact LDAP server
Nov 6 09:19:59 svr01-anrmp slapd[25058]: nss_ldap: could not search LDAP server - Server is unavailable
Nov 6 09:19:59 svr01-anrmp slapd[25058]: nss_ldap: could not connect to any LDAP server as cn=admin,dc=domain-rictel - Can't contact LDAP server
Nov 6 09:19:59 svr01-anrmp slapd[25058]: nss_ldap: failed to bind to LDAP server ldap://127.0.0.1: Can't contact LDAP server
Nov 6 09:19:59 svr01-anrmp slapd[25058]: nss_ldap: could not connect to any LDAP server as cn=admin,dc=domain-rictel - Can't contact LDAP server
Nov 6 09:19:59 svr01-anrmp slapd[25058]: nss_ldap: failed to bind to LDAP server ldap://127.0.0.1/: Can't contact LDAP server
Nov 6 09:19:59 svr01-anrmp slapd[25058]: nss_ldap: could not search LDAP server - Server is unavailable
Marsh Posté le 06-11-2012 à 12:17:32
testparm me ramène des warning:
p:~# testparm
Load smb config files from /etc/samba/smb.conf
rlimit_max: rlimit_max (1024) below minimum Windows limit (16384)
Processing section "[homes]"
WARNING: The "share modes" option is deprecated
Processing section "[netlogon]"
WARNING: The "share modes" option is deprecated
Processing section "[profiles]"
Processing section "[printers]"
WARNING: The "share modes" option is deprecated
Processing section "[pdf-documents]"
Processing section "[pdf-printer]"
Processing section "[Group Policy Object gpo]"
Processing section "[Partage]"
Processing section "[Account Operators]"
WARNING: The "share modes" option is deprecated
Processing section "[Administrators]"
WARNING: The "share modes" option is deprecated
Processing section "[Domain Admins]"
WARNING: The "share modes" option is deprecated
Processing section "[Domain Users]"
WARNING: The "share modes" option is deprecated
Processing section "[Domain Guests]"
WARNING: The "share modes" option is deprecated
Processing section "[Print Operators]"
WARNING: The "share modes" option is deprecated
Processing section "[Backup Operators]"
WARNING: The "share modes" option is deprecated
Processing section "[Replicators]"
WARNING: The "share modes" option is deprecated
Loaded services file OK.
WARNING: You have some share names that are longer than 12 characters.
These may not be accessible to some older clients.
(Eg. Windows9x, WindowsMe, and smbclient prior to Samba 3.0.)
Server role: ROLE_DOMAIN_PDC
Press enter to see a dump of your service definitions
Sujets relatifs:
- [SAMBA] montage par user mais root prend le ownership
- Problème d'un Linux dans un Linux dans une session RDP
- Problème de résolution netbios avec Samba
- [Samba] Créer un serveur à auth pour client windows
- Impossible d'ajouter un disque sur OpenFiler V2
- [Samba] Empecher la modification d'un dossier en lecture écriture
- impossible d'instaler un OS!!
- Profil itinerant sous Linux : auth ldap, nfs, nis et autres joyeusetés
- Impossible de recevoir les notifications GLPI
- Ne pas suspendre session x2go
Marsh Posté le 02-11-2012 à 13:18:58
Bonjour à tous,
Je viens de mettre en place un serveur de domaine avec samba et ldap.
- samba 3.5.6
- slapd 2.4.23
J'arrive à joindre les postes au domaine mais à l'ouverture de session j'ai ce message sous windows 7
Aucun serveur d'accès n'est actuellement disponible pour traiter la demande d'ouverture de session.
Sous Windows XP j'ai ce message: le système n'a pas pu ouvrir une session car le domaine DOMAINE-SER n'est pas disponible.
Quelqu'un peut il me donner un coup de main?
Merci