HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials

HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials (http://www.howtoforge.com/forums/index.php)
-   Server Operation (http://www.howtoforge.com/forums/forumdisplay.php?f=5)
-   -   SAMBA LDAP issue after completing CentOS 5.x Samba Domain Controller With LDAP (http://www.howtoforge.com/forums/showthread.php?t=52943)

tygerlilyjp 3rd June 2011 18:38

SAMBA LDAP issue after completing CentOS 5.x Samba Domain Controller With LDAP
 
Hello,

I'm setting up an SMB server for my company for the first time in Linux using ldap as a passwd back end. I can log into the samba share using root, but I cannot log in as a normal user nor anonymous. I used the CentOS 5.x Samba Domain Controller With LDAP backend tutorial

When I type in: smbclient //servername/in-depth -U gilligan. It asks me for my password and then replies with: Domain=[INDEPTH] OS=[Unix] Server=[Samba 3.5.4-0.70.el5_6.1]
tree connect failed: NT_STATUS_BAD_NETWORK_NAME

I'm not sure where to go from here since I have the firewall and SElinux turned off and the documentation on the error is minimal outside of those parameters.

/samba/log.gilligan shows:


[2011/06/03 10:24:13.353093, 0] smbd/service.c:988(make_connection_snum)
canonicalize_connect_path failed for service in-depth, path /storage/in-depth

My smb.conf file is:

# Global parameters
[global]
ldap ssl = off
passwd chat = "Changing *\nNew password*" %n\n "*Retype new password*" %n\n"
preserve case = yes
enable privileges = yes
delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
show add printer wizard = yes
time server = Yes
passwd program = /usr/sbin/smbldap-passwd -u "%u"
nt acl support = Yes
netbios name = SAMBATEST
printing = cups
ldap passwd sync = yes
logon script = logon.bat
dos charset = 850
workgroup = indepth
os level = 65
ldap admin dn = cn=root,dc=indepth,dc=com
printcap name = cups
security = user
short preserve case = yes
dont descend = /proc,/dev,/etc,/lib,/lost+found,/initrd
add machine script = /usr/sbin/smbldap-useradd -t 0 -w "%u"
delete user script = /usr/sbin/smbldap-userdel "%u"
max log size = 100000
log level = 0
log file = /var/log/samba/log.%U
guest account = nobody
load printers = Yes
ldap user suffix = ou=Users
add group script = /usr/sbin/smbldap-groupadd -p "%g"
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 SO_KEEPALIVE
add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
mangling method = hash2
logon drive = H:
deadtime = 10
create mask = 0640
map to guest = Bad User
# domain master = Yes
encrypt passwords = Yes
# logon home =
passdb backend = ldapsam:ldap://10.10.11.101:389
case sensitive = no
ldap machine suffix = ou=Computers
ldap group suffix = ou=Group
server string = Samba Server %v
ldap suffix = dc=indepth,dc=com
unix password sync = no
logon path =
directory mask = 0750
add user script = /usr/sbin/smbldap-useradd -m "%u"
set primary group script = /usr/sbin/smbldap-usermod -g '%g' '%u'
syslog = 0
unix charset = ISO8859-1
domain logons = Yes
#interfaces = 192.168.5.11
username map = /etc/samba/smbusers
#security = ads
# min passwd length = 3
#pam password change = no
#obey pam restrictions = NO

# method 1:
#unix password sync = no
#ldap passwd sync = yes

# method 2:



# passdb backend = ldapsam:"ldap://ldap1.company.com ldap://ldap2.company.com"
#ldap admin dn = cn=samba,ou=DSA,dc=company,dc=com
ldap idmap suffix = ou=Idmap
ldap delete dn = Yes
delete group script = /usr/sbin/smbldap-groupdel "%g"

# printers configuration
#printer admin = @"Print Operators"
#force create mode = 0640
#force directory mode = 0750
; to maintain capital letters in shortcuts in any of the profile folders:

[netlogon]
path = /home/netlogon/
browseable = No
read only = yes

[profiles]
path = /home/profiles
read only = no
create mask = 0600
directory mask = 0700
browseable = No
guest ok = Yes
profile acls = yes
csc policy = disable
# next line is a great way to secure the profiles
force user = %U
# next line allows administrator to access all profiles
#valid users = %U "Domain Admins"

[printers]
comment = Network Printers
#printer admin = @"Print Operators"
guest ok = yes
printable = yes
path = /home/spool/
browseable = No
read only = Yes
printable = Yes
print command = /usr/bin/lpr -P%p -r %s
lpq command = /usr/bin/lpq -P%p
lprm command = /usr/bin/lprm -P%p %j
# print command = /usr/bin/lpr -U%U@%M -P%p -r %s
# lpq command = /usr/bin/lpq -U%U@%M -P%p
# lprm command = /usr/bin/lprm -U%U@%M -P%p %j
# lppause command = /usr/sbin/lpc -U%U@%M hold %p %j
# lpresume command = /usr/sbin/lpc -U%U@%M release %p %j
# queuepause command = /usr/sbin/lpc -U%U@%M stop %p
# queueresume command = /usr/sbin/lpc -U%U@%M start %p

[print$]
path = /home/printers
guest ok = No
browseable = Yes
read only = Yes
valid users = @"Print Operators"
write list = @"Print Operators"
create mask = 0664
directory mask = 0775

[public]
path = /tmp
guest ok = yes
browseable = Yes
writable = yes
[in-depth]
inherit owner = yes
writeable = yes
path = /storage/in-depth
force directory mode = 770
create mask = 0777
comment = Top-Level Fulton SMB Share
valid users = @Shared
directory mode = 3770
guest ok = no

My user in ldap is apart of the Shared group as is root. Any suggestions on where I should be looking to resolve this issue?

Thanks in advance.


All times are GMT +2. The time now is 05:51.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.