URL: https://www.opennet.me/cgi-bin/openforum/vsluhboard.cgi
Форум: vsluhforumID14
Нить номер: 2061
[ Назад ]

Исходное сообщение
"Samba+ldap: smbd dead but pid file exists"
Отправлено tudimon , 14-Апр-09 16:15

Сервер CentOS 5.2 (openldap-2.3.43-3.el5 + samba-3.0.33-3.7.el5)
Сервер PDC на самбе. Хотим перевести авторизацию на ldap.
Настроил лдап (вроде :[)
/etc/openldap/slapd.conf
------------------------------
include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/inetorgperson.schema
include         /etc/openldap/schema/nis.schema
include         /etc/openldap/schema/samba.schema
include         /etc/openldap/schema/misc.schema
include         /etc/openldap/schema/openldap.schema
allow bind_v2
pidfile         /var/run/openldap/slapd.pid
argsfile        /var/run/openldap/slapd.args
database        bdb
suffix          "dc=sclad,dc=lan"
directory       /var/lib/ldap
rootdn          "cn=root,dc=sclad,dc=lan"
rootpw          {SSHA}Tg....9xl
access to attrs=userPassword
     by self write
     by anonymous auth
     by * none
access to *
     by self write
     by anonymous auth
     by * none
index objectClass               eq
index cn                        eq,pres,sub
index mail                      eq,pres,sub
index uid                       eq,pres,sub
index displayName               eq,pres,sub
index surname                   eq,pres,sub
index givenname                 eq,pres,sub
index uidNumber                 eq
index gidNumber                 eq
index memberUid                 eq
index sambaSID                  eq
index sambaPrimaryGroupSID      eq
index sambaDomainName           eq
------------------------------
/etc/openldap/ldap.conf  и   /etc/ldap.conf
------------------------------
host 127.0.0.1
#uri ldap://127.0.0.1/
base dc=sclad,dc=lan
#ldap_version 3
rootbinddn cn=root,dc=sclad,dc=lan
port 389
scope one
timelimit 30
bind_timelimit 10
bind_policy soft
idle_timelimit 3600
nss_initgroups_ignoreusers root,ldap,named,avahi,haldaemon,dbus,radvd,tomcat,radiusd,news,mailman
nss_base_passwd         ou=Users,dc=sclad,dc=lan?one
nss_base_passwd         ou=Computers,dc=sclad,dc=lan?one
nss_base_shadow         ou=Users,dc=sclad,dc=lan?one
nss_base_group          ou=Group,dc=sclad,dc=lan?one
------------------------------
Начинаю настраивать самбу:
/etc/samba/smb.conf
------------------------------
[global]
        workgroup = SCLAD.LAN
        netbios name = DSRV
        server string = Domain Controller Samba Server
        security = user
        encrypt passwords = yes
        hosts allow = 192. 127.
        interfaces = 192.168.1.1
        smb ports = 139
        log file = /var/log/samba/%m.log
        max log size = 1000
        load printers = no
        wins support = Yes
#        time server = yes
        dns proxy = Yes
        socket options = TCP_NODELAY IPTOS_LOWDELAY SO_SNDBUF=4096 SO_RCVBUF=4096
        logon script = logon.bat
        logon path =
        logon drive = Z:
        local master = Yes
        domain master = Yes
        preferred master = Yes
        domain logons = Yes
        os level = 255
        passdb backend = ldapsam:ldap://127.0.0.1/
        ldap admin dn = cn=root,dc=sclad,dc=lan
        ldap suffix = dc=spec,dc=lan
        ldap group suffix = ou=Groups
        ldap user suffix = ou=Users
        ldap machine suffix = ou=Computers
        ldap idmap suffix = ou=Idmap
        ldap delete dn = No
        # скрипты для добавления юзеров и групп (юзается в usermgr от nt4)
        add user script = /etc/smbldap-tools/smbldap-useradd -m "%u"
        add machine script = /etc/smbldap-tools/smbldap-useradd -t 0 -w "%u"
        add group script = /etc/smbldap-tools/smbldap-groupadd -p "%g"
        add user to group script = /etc/smbldap-tools/smbldap-groupmod -m "%u" "%g"
        delete user script = /etc/smbldap-tools/smbldap-userdel "%u"
        delete user from group script = /etc/smbldap-tools/smbldap-groupmod -x "%u" "%g"
        delete group script = /etc/smbldap-tools/smbldap-groupdel "%g"
        set primary group script = /etc/smbldap-tools/smbldap-usermod -g '%g' '%u'
[homes]
        comment = Home Directories
        path = /home/%S
        read only = No
        create mask = 0600
        force create mode = 0600
        directory mask = 0700
        force directory mode = 0700
        browseable = No
[netlogon]
        comment = Network Logon Service
        path = /docs/netlogon/logon.bat
        read only = No
        guest ok = Yes
        browseable = No
        share modes = No
------------------------------
Стартуем:
[root@dsrv samba]# service iptables status
Firewall is stopped.
[root@dsrv samba]# service ldap status
slapd (pid 5596) is running...
[root@dsrv samba]# service winbind status
winbindd (pid 7741 7740 7709 7708) is running...
[root@dsrv samba]# service smb start
Starting SMB services:                                     [  OK  ]
Starting NMB services:                                     [  OK  ]
[root@dsrv samba]# service smb status
smbd dead but pid file exists
nmbd (pid 8161 8160) is running...
В логах:
/var/log/samba/smbd.log
------------------------------
[2009/04/14 16:07:36, 0] smbd/server.c:main(944)
  smbd version 3.0.33-3.7.el5 started.
  Copyright Andrew Tridgell and the Samba Team 1992-2008
[2009/04/14 16:07:36, 0] auth/auth_util.c:create_builtin_administrators(844)
  create_builtin_administrators: Failed to create Administrators
[2009/04/14 16:07:36, 0] auth/auth_util.c:create_builtin_users(810)
  create_builtin_users: Failed to create Users
[2009/04/14 16:07:36, 0] auth/auth_util.c:create_builtin_administrators(844)
  create_builtin_administrators: Failed to create Administrators
[2009/04/14 16:07:36, 0] auth/auth_util.c:create_builtin_users(810)
  create_builtin_users: Failed to create Users
[2009/04/14 16:07:36, 0] services/services_db.c:svcctl_init_keys(420)
  svcctl_init_keys: key lookup failed! (WERR_ACCESS_DENIED)
[2009/04/14 16:07:36, 0] auth/auth_util.c:create_builtin_administrators(844)
  create_builtin_administrators: Failed to create Administrators
[2009/04/14 16:07:36, 0] auth/auth_util.c:create_builtin_users(810)
  create_builtin_users: Failed to create Users
[2009/04/14 16:07:36, 0] smbd/server.c:main(1059)
  ERROR: failed to setup guest info.
------------------------------
/var/log/samba/nmbd.log
------------------------------
  *****
  Samba name server DSRV is now a local master browser for workgroup SCLAD.LAN on subnet 192.168.1.1
  *****
------------------------------

Подскажите куда копать.
Вожусь уже неделю, в результате в голове уже полная каша. :(

Содержание

Samba+ldap: smbd dead but pid file exists,JohnProfic, 00:44 , 15-Апр-09
- Samba+ldap: smbd dead but pid file exists,tudimon, 16:52 , 15-Апр-09
  - Samba+ldap: smbd dead but pid file exists,JohnProfic, 23:26 , 15-Апр-09
    - Samba+ldap: smbd dead but pid file exists,tudimon, 12:16 , 16-Апр-09
      - Samba+ldap: smbd dead but pid file exists,JohnProfic, 12:40 , 16-Апр-09
        
        Samba+ldap: smbd dead but pid file exists,tudimon, 13:52 , 16-Апр-09
        
        Samba+ldap: smbd dead but pid file exists,JohnProfic, 15:42 , 16-Апр-09
        
        Samba+ldap: smbd dead but pid file exists,tudimon, 16:14 , 16-Апр-09
        
        Samba+ldap: smbd dead but pid file exists,JohnProfic, 16:53 , 16-Апр-09
        
        Samba+ldap: smbd dead but pid file exists,tudimon, 11:31 , 17-Апр-09

Сообщения в этом обсуждении

"Samba+ldap: smbd dead but pid file exists"
Отправлено JohnProfic , 15-Апр-09 00:44

Логи лдапа покажите
smbpasswd -w делали?

"Samba+ldap: smbd dead but pid file exists"
Отправлено tudimon , 15-Апр-09 16:52

>smbpasswd -w делали?
делал
>Логи лдапа покажите
при loglevel=256
Apr 15 16:50:26 dsrv slapd[12261]: @(#) $OpenLDAP: slapd 2.3.43 (Jan 21 2009 03:53:11) $ mockbuild@builder16.centos.org:/builddir/build/BUILD/openldap
-2.3.43/openldap-2.3.43/build-servers/servers/slapd
Apr 15 16:50:26 dsrv slapd[12262]: slapd starting
Теперь стартуем самбу:
Apr 15 16:51:20 dsrv slapd[12262]: conn=0 fd=15 ACCEPT from IP=127.0.0.1:42444 (IP=0.0.0.0:389)
Apr 15 16:51:20 dsrv slapd[12262]: conn=0 op=0 BIND dn="cn=root,dc=sclad,dc=lan" method=128
Apr 15 16:51:20 dsrv slapd[12262]: conn=0 op=0 BIND dn="cn=root,dc=sclad,dc=lan" mech=SIMPLE ssf=0
Apr 15 16:51:20 dsrv slapd[12262]: conn=0 op=0 RESULT tag=97 err=0 text=
Apr 15 16:51:20 dsrv slapd[12262]: conn=0 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
Apr 15 16:51:20 dsrv slapd[12262]: conn=0 op=1 SRCH attr=supportedControl
Apr 15 16:51:20 dsrv slapd[12262]: conn=0 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Apr 15 16:51:20 dsrv slapd[12262]: conn=0 op=2 SRCH base="dc=spec,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaDomain)(sambaDomainName=sclad.lan))"
Apr 15 16:51:20 dsrv slapd[12262]: conn=0 op=2 SRCH attr=sambaDomainName sambaNextRid sambaNextUserRid sambaNextGroupRid sambaSID sambaAlgorithmicRidBase objectClass
Apr 15 16:51:20 dsrv slapd[12262]: conn=0 op=2 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 fd=16 ACCEPT from IP=127.0.0.1:42445 (IP=0.0.0.0:389)
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=0 BIND dn="cn=root,dc=sclad,dc=lan" method=128
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=0 BIND dn="cn=root,dc=sclad,dc=lan" mech=SIMPLE ssf=0
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=0 RESULT tag=97 err=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=1 SRCH attr=supportedControl
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=2 SRCH base="dc=spec,dc=lan" scope=2 deref=0 filter="(&(uid=root)(objectClass=sambaSamAccount))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=2 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive sambaHomePath sambaLogonScript sambaProfilePath description sambaUserWorkstations sambaSID sambaPrimaryGroupSID sambaLMPassword sambaNTPassword sambaDomainName objectClass sambaAcctFlags sambaMungedDial sambaBadPasswordCount sambaBadPasswordTime sambaPasswordHistory modifyTimestamp sambaLogonHours modifyTimestamp uidNumber
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=2 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=3 SRCH base="ou=Groups,dc=spec,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=0))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=3 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=3 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=4 SRCH base="ou=Groups,dc=spec,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-32-544))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=4 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=4 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=5 SRCH base="ou=Groups,dc=spec,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-32-545))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=5 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=5 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=0 op=3 SRCH base="ou=Groups,dc=spec,dc=lan" scope=2 deref=0 filter="(&(|(objectClass=sambaGroupMapping)(sambaGroupType=4))(|(sambaSIDList=s-1-22-1-0)(sambaSIDList=s-1-5-32-544)(sambaSIDList=s-1-1-0)(sambaSIDList=s-1-5-2)(sambaSIDList=s-1-5-11)))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=0 op=3 SRCH attr=sambaSID
Apr 15 16:51:21 dsrv slapd[12262]: conn=0 op=3 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=6 SRCH base="dc=spec,dc=lan" scope=2 deref=0 filter="(&(uid=root)(objectClass=sambaSamAccount))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=6 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive sambaHomePath sambaLogonScript sambaProfilePath description sambaUserWorkstations sambaSID sambaPrimaryGroupSID sambaLMPassword sambaNTPassword sambaDomainName objectClass sambaAcctFlags sambaMungedDial sambaBadPasswordCount sambaBadPasswordTime sambaPasswordHistory modifyTimestamp sambaLogonHours modifyTimestamp uidNumber
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=7 SRCH base="ou=Groups,dc=spec,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=0))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=7 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=7 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=0 op=4 SRCH base="ou=Groups,dc=spec,dc=lan" scope=2 deref=0 filter="(&(|(objectClass=sambaGroupMapping)(sambaGroupType=4))(|(sambaSIDList=s-1-22-1-0)(sambaSIDList=s-1-5-32-544)(sambaSIDList=s-1-1-0)(sambaSIDList=s-1-5-2)(sambaSIDList=s-1-5-11)))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=0 op=4 SRCH attr=sambaSID
Apr 15 16:51:21 dsrv slapd[12262]: conn=0 op=4 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=6 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 fd=17 ACCEPT from IP=127.0.0.1:42446 (IP=0.0.0.0:389)
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 op=0 BIND dn="cn=root,dc=sclad,dc=lan" method=128
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 op=0 BIND dn="cn=root,dc=sclad,dc=lan" mech=SIMPLE ssf=0
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 op=0 RESULT tag=97 err=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 op=1 SRCH base="ou=Users,dc=sclad,dc=lan" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=nobody))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 op=2 SRCH base="ou=Computers,dc=sclad,dc=lan" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=nobody))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 op=2 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 op=3 SRCH base="ou=Group,dc=sclad,dc=lan" scope=1 deref=0 filter="(&(objectClass=posixGroup)(memberUid=nobody))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 op=3 SRCH attr=gidNumber
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 op=3 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=8 SRCH base="ou=Groups,dc=spec,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=99))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=8 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=8 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=0 op=5 SRCH base="ou=Groups,dc=spec,dc=lan" scope=2 deref=0 filter="(&(|(objectClass=sambaGroupMapping)(sambaGroupType=4))(|(sambaSIDList=s-1-5-21-93199991-951995455-3406427012-501)(sambaSIDList=s-1-22-2-99)(sambaSIDList=s-1-1-0)(sambaSIDList=s-1-5-2)(sambaSIDList=s-1-5-32-546)))"
Apr 15 16:51:21 dsrv slapd[12262]: conn=0 op=5 SRCH attr=sambaSID
Apr 15 16:51:21 dsrv slapd[12262]: conn=0 op=5 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 op=1 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 15 16:51:21 dsrv slapd[12262]: conn=0 fd=15 closed (connection lost)
Apr 15 16:51:21 dsrv slapd[12262]: conn=2 fd=17 closed (connection lost)
пробовал с разными loglevel - никакого криминала не заметил :(

"Samba+ldap: smbd dead but pid file exists"
Отправлено JohnProfic , 15-Апр-09 23:26

>
>пробовал с разными loglevel - никакого криминала не заметил :(
А я заметил:
>Apr 15 16:51:21 dsrv slapd[12262]: conn=1 op=2 SRCH base="dc=spec,dc=lan" scope=2 deref=0 filter="(&(uid=root)(objectClass=sambaSamAccount))"
Этого суффикса нет в лдапе. Как минимум, самба может пытаться создать в этом суффиксе свои служебные данные, обламываться и "падать".

"Samba+ldap: smbd dead but pid file exists"
Отправлено tudimon , 16-Апр-09 12:16

>Этого суффикса нет в лдапе. Как минимум, самба может пытаться создать в
>этом суффиксе свои служебные данные, обламываться и "падать".
JohnProfic, соррь, стормозил - несколько раз правил конфиг, потом с другого сервера взял и видимо не доредактировал.
Но исправление этого суффикса не помогло:
Apr 16 12:10:14 dsrv slapd[5255]: @(#) $OpenLDAP: slapd 2.3.43 (Jan 21 2009 03:53:11) $ mockbuild@builder16.centos.org:/builddir/build/BUILD/openldap-2.3.43/openldap-2.3.43/build-servers/servers/slapd
Apr 16 12:10:14 dsrv slapd[5256]: slapd starting
Apr 16 12:10:34 dsrv slapd[5256]: conn=0 fd=15 ACCEPT from IP=127.0.0.1:51724 (IP=0.0.0.0:389)
Apr 16 12:10:34 dsrv slapd[5256]: conn=0 op=0 BIND dn="cn=root,dc=sclad,dc=lan" method=128
Apr 16 12:10:34 dsrv slapd[5256]: conn=0 op=0 BIND dn="cn=root,dc=sclad,dc=lan" mech=SIMPLE ssf=0
Apr 16 12:10:34 dsrv slapd[5256]: conn=0 op=0 RESULT tag=97 err=0 text=
Apr 16 12:10:34 dsrv slapd[5256]: conn=0 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
Apr 16 12:10:34 dsrv slapd[5256]: conn=0 op=1 SRCH attr=supportedControl
Apr 16 12:10:34 dsrv slapd[5256]: conn=0 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Apr 16 12:10:34 dsrv slapd[5256]: conn=0 op=2 SRCH base="dc=sclad,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaDomain)(sambaDomainName=sclad.lan))"
Apr 16 12:10:34 dsrv slapd[5256]: conn=0 op=2 SRCH attr=sambaDomainName sambaNextRid sambaNextUserRid sambaNextGroupRid sambaSID sambaAlgorithmicRidBase objectClass
Apr 16 12:10:34 dsrv slapd[5256]: conn=0 op=2 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 fd=16 ACCEPT from IP=127.0.0.1:51725 (IP=0.0.0.0:389)
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=0 BIND dn="cn=root,dc=sclad,dc=lan" method=128
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=0 BIND dn="cn=root,dc=sclad,dc=lan" mech=SIMPLE ssf=0
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=0 RESULT tag=97 err=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=1 SRCH attr=supportedControl
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=2 SRCH base="dc=sclad,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaDomain)(sambaDomainName=sclad.lan))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=2 SRCH attr=sambaDomainName sambaNextRid sambaNextUserRid sambaNextGroupRid sambaSID sambaAlgorithmicRidBase objectClass
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=2 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=3 SRCH base="ou=Groups,dc=sclad,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=0))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=3 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=3 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=4 SRCH base="ou=Groups,dc=sclad,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-32-544))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=4 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=4 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=5 SRCH base="ou=Groups,dc=sclad,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(sambaSID=s-1-5-32-545))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=5 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=5 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=0 op=3 SRCH base="ou=Groups,dc=sclad,dc=lan" scope=2 deref=0 filter="(&(|(objectClass=sambaGroupMapping)(sambaGroupType=4))(|(sambaSIDList=s-1-0-0)(sambaSIDList=s-1-5-32-544)(sambaSIDList=s-1-1-0)(sambaSIDList=s-1-5-2)(sambaSIDList=s-1-5-11)))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=0 op=3 SRCH attr=sambaSID
Apr 16 12:10:35 dsrv slapd[5256]: conn=0 op=3 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=6 SRCH base="dc=sclad,dc=lan" scope=2 deref=0 filter="(&(uid=root)(objectClass=sambaSamAccount))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=6 SRCH attr=uid uidNumber gidNumber homeDirectory sambaPwdLastSet sambaPwdCanChange sambaPwdMustChange sambaLogonTime sambaLogoffTime sambaKickoffTime cn sn displayName sambaHomeDrive sambaHomePath sambaLogonScript sambaProfilePath description sambaUserWorkstations sambaSID sambaPrimaryGroupSID sambaLMPassword sambaNTPassword sambaDomainName objectClass sambaAcctFlags sambaMungedDial sambaBadPasswordCount sambaBadPasswordTime sambaPasswordHistory modifyTimestamp sambaLogonHours modifyTimestamp uidNumber
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=6 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=7 SRCH base="ou=Groups,dc=sclad,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=0))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=7 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=7 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=0 op=4 SRCH base="ou=Groups,dc=sclad,dc=lan" scope=2 deref=0 filter="(&(|(objectClass=sambaGroupMapping)(sambaGroupType=4))(|(sambaSIDList=s-1-22-1-0)(sambaSIDList=s-1-5-32-544)(sambaSIDList=s-1-1-0)(sambaSIDList=s-1-5-2)(sambaSIDList=s-1-5-11)))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=0 op=4 SRCH attr=sambaSID
Apr 16 12:10:35 dsrv slapd[5256]: conn=0 op=4 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 fd=17 ACCEPT from IP=127.0.0.1:51726 (IP=0.0.0.0:389)
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 op=0 BIND dn="cn=root,dc=sclad,dc=lan" method=128
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 op=0 BIND dn="cn=root,dc=sclad,dc=lan" mech=SIMPLE ssf=0
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 op=0 RESULT tag=97 err=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 op=1 SRCH base="ou=Users,dc=sclad,dc=lan" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=nobody))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 op=1 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 op=2 SRCH base="ou=Computers,dc=sclad,dc=lan" scope=1 deref=0 filter="(&(objectClass=posixAccount)(uid=nobody))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 op=2 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 op=3 SRCH base="ou=Group,dc=sclad,dc=lan" scope=1 deref=0 filter="(&(objectClass=posixGroup)(memberUid=nobody))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 op=3 SRCH attr=gidNumber
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 op=3 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=8 SRCH base="ou=Groups,dc=sclad,dc=lan" scope=2 deref=0 filter="(&(objectClass=sambaGroupMapping)(gidNumber=99))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=8 SRCH attr=gidNumber sambaSID sambaGroupType sambaSIDList description displayName cn objectClass
Apr 16 12:10:35 dsrv slapd[5256]: conn=1 op=8 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=0 op=5 SRCH base="ou=Groups,dc=sclad,dc=lan" scope=2 deref=0 filter="(&(|(objectClass=sambaGroupMapping)(sambaGroupType=4))(|(sambaSIDList=s-1-5-21-93199991-951995455-3406427012-501)(sambaSIDList=s-1-22-2-99)(sambaSIDList=s-1-1-0)(sambaSIDList=s-1-5-2)(sambaSIDList=s-1-5-32-546)))"
Apr 16 12:10:35 dsrv slapd[5256]: conn=0 op=5 SRCH attr=sambaSID
Apr 16 12:10:35 dsrv slapd[5256]: conn=0 op=5 SEARCH RESULT tag=101 err=32 nentries=0 text=
Apr 16 12:10:35 dsrv slapd[5256]: conn=0 fd=15 closed (connection lost)
Apr 16 12:10:35 dsrv slapd[5256]: conn=2 fd=17 closed (connection lost)

"Samba+ldap: smbd dead but pid file exists"
Отправлено JohnProfic , 16-Апр-09 12:40

В этом логе я ничего плохого не увидел. Вернее только сейчас до меня дошло что собственно попыток создать объектов в базе в логе нет, однако и самих объектов там тоже нет. Странно.
Теперь нужно смотреть на логи самбы при log level хотя бы 3, а если не поможет, то 10, но 10 уровень генерит довольно большой лог.

"Samba+ldap: smbd dead but pid file exists"
Отправлено tudimon , 16-Апр-09 13:52

>Теперь нужно смотреть на логи самбы при log level хотя бы 3,
>а если не поможет, то 10, но 10 уровень генерит довольно
>большой лог.
JohnProfiс, ведь не нужно сервер загонять в свой же домен?
log level = 3 passdb:5 auth:10 winbind:2
/var/log/samba/smbd.log:
[2009/04/16 13:39:27, 0] smbd/server.c:main(944)
  smbd version 3.0.33-3.7.el5 started.
  Copyright Andrew Tridgell and the Samba Team 1992-2008
[2009/04/16 13:39:27, 2] param/loadparm.c:do_section(3820)
  Processing section "[homes]"
[2009/04/16 13:39:27, 2] param/loadparm.c:do_section(3820)
  Processing section "[netlogon]"
[2009/04/16 13:39:27, 3] param/loadparm.c:lp_add_ipc(2728)
  adding IPC service
[2009/04/16 13:39:27, 3] printing/pcap.c:pcap_cache_reload(117)
  reloading printcap cache
[2009/04/16 13:39:27, 3] printing/pcap.c:pcap_cache_reload(223)
  reload status: ok
[2009/04/16 13:39:27, 3] printing/pcap.c:pcap_cache_reload(117)
  reloading printcap cache
[2009/04/16 13:39:27, 3] printing/pcap.c:pcap_cache_reload(223)
  reload status: ok
[2009/04/16 13:39:27, 2] lib/interface.c:add_interface(81)
  added interface ip=192.168.1.1 bcast=192.168.1.255 nmask=255.255.255.0
[2009/04/16 13:39:27, 3] smbd/server.c:main(982)
  loaded services
[2009/04/16 13:39:27, 3] smbd/server.c:main(997)
  Becoming a daemon.
[2009/04/16 13:39:27, 2] lib/tallocmsg.c:register_msg_pool_usage(105)
  Registered MSG_REQ_POOL_USAGE
[2009/04/16 13:39:27, 2] lib/dmallocmsg.c:register_dmalloc_msgs(75)
  Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(68)
  Attempting to register passdb backend ldapsam
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(81)
  Successfully added passdb backend 'ldapsam'
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(68)
  Attempting to register passdb backend ldapsam_compat
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(81)
  Successfully added passdb backend 'ldapsam_compat'
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(68)
  Attempting to register passdb backend NDS_ldapsam
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(81)
  Successfully added passdb backend 'NDS_ldapsam'
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(68)
  Attempting to register passdb backend NDS_ldapsam_compat
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(81)
  Successfully added passdb backend 'NDS_ldapsam_compat'
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(68)
  Attempting to register passdb backend smbpasswd
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(81)
  Successfully added passdb backend 'smbpasswd'
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(68)
  Attempting to register passdb backend tdbsam
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:smb_register_passdb(81)
  Successfully added passdb backend 'tdbsam'
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:make_pdb_method_name(121)
  Attempting to find an passdb backend to match ldapsam:ldap://127.0.0.1/ (ldapsam)
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:make_pdb_method_name(142)
  Found pdb backend ldapsam
[2009/04/16 13:39:27, 2] lib/smbldap_util.c:smbldap_search_domain_info(256)
  smbldap_search_domain_info: Searching for:[(&(objectClass=sambaDomain)(sambaDomainName=SCLAD.LAN))]
[2009/04/16 13:39:27, 2] lib/smbldap.c:smbldap_open_connection(786)
  smbldap_open_connection: connection opened
[2009/04/16 13:39:27, 3] lib/smbldap.c:smbldap_connect_system(997)
  ldap_connect_system: successful connection to the LDAP server
[2009/04/16 13:39:27, 2] lib/smbldap_util.c:smbldap_search_domain_info(263)
  smbldap_search_domain_info: Problem during LDAPsearch: No such object
[2009/04/16 13:39:27, 2] lib/smbldap_util.c:smbldap_search_domain_info(264)
  smbldap_search_domain_info: Query was: dc=sclad,dc=lan, (&(objectClass=sambaDomain)(sambaDomainName=SCLAD.LAN))
[2009/04/16 13:39:27, 2] passdb/pdb_ldap.c:pdb_init_ldapsam(5667)
  pdb_init_ldapsam: WARNING: Could not get domain info, nor add one to the domain
  pdb_init_ldapsam: Continuing on regardless, will be unable to allocate new users/groups, and will risk BDCs having inconsistant SIDs
[2009/04/16 13:39:27, 5] passdb/pdb_interface.c:make_pdb_method_name(153)
  pdb backend ldapsam:ldap://127.0.0.1/ has a valid init
[2009/04/16 13:39:27, 10] auth/auth_util.c:create_local_nt_token(896)
  Create local NT token for S-1-22-1-0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:push_sec_ctx(208)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/uid.c:push_conn_ctx(358)
  push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] groupdb/mapping.c:pdb_create_builtin_alias(723)
  pdb_create_builtin_alias: Could not get a gid out of winbind
[2009/04/16 13:39:27, 0] auth/auth_util.c:create_builtin_administrators(844)
  create_builtin_administrators: Failed to create Administrators
[2009/04/16 13:39:27, 2] auth/auth_util.c:create_local_nt_token(966)
  create_local_nt_token: Failed to create BUILTIN\Administrators group!
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:push_sec_ctx(208)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/uid.c:push_conn_ctx(358)
  push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] groupdb/mapping.c:pdb_create_builtin_alias(723)
  pdb_create_builtin_alias: Could not get a gid out of winbind
[2009/04/16 13:39:27, 0] auth/auth_util.c:create_builtin_users(810)
  create_builtin_users: Failed to create Users
[2009/04/16 13:39:27, 2] auth/auth_util.c:create_local_nt_token(993)
  create_local_nt_token: Failed to create BUILTIN\Users group!
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:push_sec_ctx(208)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/uid.c:push_conn_ctx(358)
  push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 10] auth/auth_util.c:add_aliases(708)
  pdb_enum_alias_memberships failed: NT_STATUS_UNSUCCESSFUL
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 10] auth/auth_util.c:create_local_nt_token(896)
  Create local NT token for S-1-22-1-0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:push_sec_ctx(208)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/uid.c:push_conn_ctx(358)
  push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] groupdb/mapping.c:pdb_create_builtin_alias(723)
  pdb_create_builtin_alias: Could not get a gid out of winbind
[2009/04/16 13:39:27, 0] auth/auth_util.c:create_builtin_administrators(844)
  create_builtin_administrators: Failed to create Administrators
[2009/04/16 13:39:27, 2] auth/auth_util.c:create_local_nt_token(966)
  create_local_nt_token: Failed to create BUILTIN\Administrators group!
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:push_sec_ctx(208)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/uid.c:push_conn_ctx(358)
  push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] groupdb/mapping.c:pdb_create_builtin_alias(723)
  pdb_create_builtin_alias: Could not get a gid out of winbind
[2009/04/16 13:39:27, 0] auth/auth_util.c:create_builtin_users(810)
  create_builtin_users: Failed to create Users
[2009/04/16 13:39:27, 2] auth/auth_util.c:create_local_nt_token(993)
  create_local_nt_token: Failed to create BUILTIN\Users group!
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:push_sec_ctx(208)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/uid.c:push_conn_ctx(358)
  push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 10] auth/auth_util.c:add_aliases(708)
  pdb_enum_alias_memberships failed: NT_STATUS_UNSUCCESSFUL
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] lib/util_seaccess.c:se_access_check(250)
[2009/04/16 13:39:27, 3] lib/util_seaccess.c:se_access_check(251)
  se_access_check: user sid is S-1-1-0
  se_access_check: also S-1-5-2
  se_access_check: also S-1-5-7
[2009/04/16 13:39:27, 0] services/services_db.c:svcctl_init_keys(420)
  svcctl_init_keys: key lookup failed! (WERR_ACCESS_DENIED)
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:push_sec_ctx(208)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/uid.c:push_conn_ctx(358)
  push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 5] auth/auth_util.c:make_server_info_sam(675)
  make_server_info_sam: made server info for user nobody -> nobody
[2009/04/16 13:39:27, 10] auth/auth_util.c:create_local_nt_token(896)
  Create local NT token for S-1-5-21-93199991-951995455-3406427012-501
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:push_sec_ctx(208)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/uid.c:push_conn_ctx(358)
  push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] groupdb/mapping.c:pdb_create_builtin_alias(723)
  pdb_create_builtin_alias: Could not get a gid out of winbind
[2009/04/16 13:39:27, 0] auth/auth_util.c:create_builtin_administrators(844)
  create_builtin_administrators: Failed to create Administrators
[2009/04/16 13:39:27, 2] auth/auth_util.c:create_local_nt_token(966)
  create_local_nt_token: Failed to create BUILTIN\Administrators group!
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:push_sec_ctx(208)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/uid.c:push_conn_ctx(358)
  push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] groupdb/mapping.c:pdb_create_builtin_alias(723)
  pdb_create_builtin_alias: Could not get a gid out of winbind
[2009/04/16 13:39:27, 0] auth/auth_util.c:create_builtin_users(810)
  create_builtin_users: Failed to create Users
[2009/04/16 13:39:27, 2] auth/auth_util.c:create_local_nt_token(993)
  create_local_nt_token: Failed to create BUILTIN\Users group!
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:push_sec_ctx(208)
  push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 3] smbd/uid.c:push_conn_ctx(358)
  push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2009/04/16 13:39:27, 10] auth/auth_util.c:add_aliases(708)
  pdb_enum_alias_memberships failed: NT_STATUS_UNSUCCESSFUL
[2009/04/16 13:39:27, 3] smbd/sec_ctx.c:pop_sec_ctx(356)
  pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/04/16 13:39:27, 10] auth/auth_util.c:make_new_server_info_guest(1560)
  create_local_token failed: NT_STATUS_NO_SUCH_USER
[2009/04/16 13:39:27, 0] smbd/server.c:main(1059)
  ERROR: failed to setup guest info.

"Samba+ldap: smbd dead but pid file exists"
Отправлено JohnProfic , 16-Апр-09 15:42

Э-э-э, простите, а вы заполняли лдап хоть какими-то изначальными данными, например, есть в лдапе записи для
dc=sklad,dc=lan
ou=Users,dc=sklad,dc=lan
ou=Groups,dc=sklad,dc=lan
ou=Computers,dc=sklad,dc=lan
и т.д.?
Смотреть тут http://www.openldap.org/faq/data/cache/157.html или тут http://us1.samba.org/samba/docs/man/Samba-Guide/happy.html#i...

"Samba+ldap: smbd dead but pid file exists"
Отправлено tudimon , 16-Апр-09 16:14

>Э-э-э, простите, а вы заполняли лдап хоть какими-то изначальными данными, например, есть
>в лдапе записи для
>dc=sklad,dc=lan
>ou=Users,dc=sklad,dc=lan
>ou=Groups,dc=sklad,dc=lan
>ou=Computers,dc=sklad,dc=lan
>и т.д.?
>Смотреть тут http://www.openldap.org/faq/data/cache/157.html или тут http://us1.samba.org/samba/docs/man/Samba-Guide/happy.html#i...
пока нет - т.к. база должна заполняться из существующего домена на самбе
определим последовательность действий:
1. установка лдап и настройка без внесения каких либо данных в базу
2. установка и на стройка самбы
3. создание и заполнение базы
п.3 будем выполнять путем импорт учеток из самбы в лдап базу с помощью smb-tools
но для того чтобы воспользоваться smb-tools самба должна быть запущена
Вот тут сначала запускают самбу а потом заполняют базу лдап:
http://www.opennet.me/base/net/samba_ldap.txt.html
http://www.opennet.me/base/net/ldap_spama_pdc.txt.html
я напутал чтото в последовательности действий?

"Samba+ldap: smbd dead but pid file exists"
Отправлено JohnProfic , 16-Апр-09 16:53

>[оверквотинг удален]
>
>п.3 будем выполнять путем импорт учеток из самбы в лдап базу с
>помощью smb-tools
>но для того чтобы воспользоваться smb-tools самба должна быть запущена
>
>Вот тут сначала запускают самбу а потом заполняют базу лдап:
>http://www.opennet.me/base/net/samba_ldap.txt.html
>http://www.opennet.me/base/net/ldap_spama_pdc.txt.html
>
>я напутал чтото в последовательности действий?
Угу. Первая ссылка вообще для 2-й самбы, которая отличается от 3-й самбы.
Последовательность действий должна быть примерно такой:
1. установка лдап и настройка без внесения каких либо данных в базу
2. создание каркаса базы, т.е. всех контейнеров
2. установка и на стройка самбы
3. заполнение базы
Повторю еще раз, для того, чтобы самба смогла инициализировать свои данные в лдапе, там уже должны быть начальные минимальные записи, необходимые самому лдапу и никак не связанные с самбой (как минимум для dc=sklad,dc=lan). В противном случае лдап отвечает ошибкой, что такого объекта нет (ошибка 32) и все идет лесом.
Читать http://www.lissyara.su/?id=1277 начиная со слов "Теперь нужно создать корневой объект нашего дерева".
Кстати, насчет добавления самбы в свой же домен - я на 3.2.3 добавляю.

"Samba+ldap: smbd dead but pid file exists"
Отправлено tudimon , 17-Апр-09 11:31

JohnProfic, огромное спасибо
самба перестала падать после того как создал дерево
буду дальше ковырять ее