forum.opennet.ru

Составление сообщения

Исходное сообщение

"грабли с установкой samba pdc +лдап "
Отправлено 0m3r, 08-Фев-07 13:28

привет всем
поднимаю значит сабж по сему руководству
http://argo-uln.blogspot.com/2006/08/samba-3-pdc-ldap-freebs...
===
uname
FreeBSD 6.1-RELEASE
pkg_info | grep samba
samba-3.0.23d,1     A free SMB and CIFS client and server for UNIX
pkg_info | grep ldap
nss_ldap-1.251_1    RFC 2307 NSS module
openldap-client-2.3.33 Open source LDAP client implementation
openldap-server-2.3.33 Open source LDAP server implementation
p5-perl-ldap-0.33   A Client interface to LDAP servers
pam_ldap-1.8.2      A pam module for authenticating with LDAP
smbldap-tools-0.9.2a Useful package for managing users and groups in a LDAP dire
===
конфиги почти такиеже как в примере (ну у мну cn=root,dc=pm,dc=edu )
===
slaptest -u
/usr/local/etc/openldap/slapd.conf: line 104: warning: no by clause(s) specified in access line (ignored).
/usr/local/etc/openldap/slapd.conf: line 110: warning: no by clause(s) specified in access line (ignored).
/usr/local/etc/openldap/slapd.conf: line 113: warning: no by clause(s) specified in access line (ignored).
config file testing succeeded
===
#testparm
Load smb config files from /usr/local/etc/smb.conf
Processing section "[homes]"
Processing section "[netlogon]"
Processing section "[Profiles]"
Processing section "[public]"
Loaded services file OK.
Server role: ROLE_DOMAIN_PDC
Press enter to see a dump of your service definitions
[global]
        dos charset = cp866
        unix charset = koi8-r
        display charset = koi8-r
        workgroup = AUD-683
        server string = SAMBA_LDAP PDC Server
        interfaces = 10.6.83.30/24
        passdb backend = ldapsam:ldap://127.0.0.1/
        syslog = 0
        log file = /var/log/samba/log.%m
        max log size = 100000
        name resolve order = lmhosts wins dns host bcast
        time server = Yes
        load printers = No
        add user script = /usr/local/sbin/smbldap-useradd -m "%u"
        delete user script = /usr/local/sbin/smbldap-userdel "%u"
        add group script = /usr/local/sbin/smbldap-groupadd -p "%g"
        delete group script = /usr/local/sbin/smbldap-groupdel "%g"
        add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g"
        delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g"
        set primary group script = /usr/local/sbin/smbldap-usermod -g "%g" "%u"
        add machine script = /usr/local/sbin/smbldap-useradd -w "%u"
        logon script = logon.bat
        logon path =
        logon drive = H:
        domain logons = Yes
        os level = 255
        preferred master = Yes
        domain master = Yes
        dns proxy = No
        wins proxy = Yes
        wins support = Yes
        ldap admin dn = cn=root,dc=pm,dc=edu
        ldap delete dn = Yes
        ldap group suffix = ou=Groups
        ldap idmap suffix = ou=Users
        ldap machine suffix = ou=Computers
        ldap passwd sync = Yes
        ldap suffix = dc=pm,dc=edu
        ldap ssl = no
        ldap user suffix = ou=Users
[homes]
        comment = Home directories
        valid users = %S
        read only = No
        browseable = No
        vfs objects = recycle
        recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~??
        recycle:maxsize = 0
        recycle:version = Yes
        recycle:touch = Yes
        recycle:keeptree = Yes
        recycle:repository = .Корзина
[netlogon]
        comment = Network Logon Service
        path = /home/samba/netlogon/
        browseable = No
[Profiles]
        path = /home/samba/profiles
        valid users = %U, "@Domain Admins"
        force user = %U
        read only = No
        create mask = 0600
        directory mask = 0700
        guest ok = Yes
        profile acls = Yes
        browseable = No
        csc policy = disable
[public]
        comment = Общий ресурс
        path = /home/samba/public
        valid users = "@Domain Admins", "@Domain Users"
        read only = No
        create mask = 0666
        directory mask = 0777
        guest ok = Yes
=========
лдап значит поднял
====
# netstat -a |grep LISTEN |grep ldap
tcp4       0      0  683-ad2.ldaps          *.*                    LISTEN
tcp4       0      0  683-ad2.ldap           *.*                    LISTEN
tcp4       0      0  *.ldaps                *.*                    LISTEN
tcp4       0      0  *.ldap                 *.*                    LISTEN
====
а самба падает значит стаким вот логами
===
log.nmbd (nmbd работает но если в interfaces = находит уже сущ Ір то падает тоже )
[2007/02/08 12:14:58, 0] nmbd/nmbd.c:main(699)
  Netbios nameserver version 3.0.23d started.
  Copyright Andrew Tridgell and the Samba Team 1992-2006
[2007/02/08 12:14:58, 0] lib/util_sock.c:open_socket_in(830)
  bind failed on port 137 socket_addr = 10.6.83.30.
  Error = Can't assign requested address
[2007/02/08 12:14:58, 0] nmbd/nmbd_subnetdb.c:make_subnet(97)
nmbd_subnetdb:make_subnet()
  Failed to open nmb socket on interface 10.6.83.30 for port 137.  Error was Can
[2007/02/08 12:14:58, 0] nmbd/nmbd.c:main(773)
  ERROR: Failed when creating subnet lists. Exiting.
===
ну и сама ошибка
====
[2007/02/08 12:14:58, 0] smbd/server.c:main(847)
  smbd version 3.0.23d started.
  Copyright Andrew Tridgell and the Samba Team 1992-2006
[2007/02/08 12:14:58, 0] printing/print_cups.c:cups_cache_reload(85)
  Unable to connect to CUPS server localhost - Connection refused
[2007/02/08 12:14:58, 0] printing/print_cups.c:cups_cache_reload(85)
  Unable to connect to CUPS server localhost - Connection refused
[2007/02/08 12:14:59, 0] services/services_db.c:svcctl_init_keys(420)
  init_services_keys: key lookup failed! (WERR_ACCESS_DENIED)
[2007/02/08 12:14:59, 0] smbd/server.c:main(960)
  ERROR: failed to setup guest info.
====
где грабли то ???
ЗЫ
еще есть вот такой вот прикол при старте
Starting slapd.
!!!!!!slapd[356]: nss_ldap:could not search LDAP server- Server is unavaible

Исходное сообщение
"грабли с установкой samba pdc +лдап " Отправлено 0m3r, 08-Фев-07 13:28
привет всем поднимаю значит сабж по сему руководству http://argo-uln.blogspot.com/2006/08/samba-3-pdc-ldap-freebs... === uname FreeBSD 6.1-RELEASE pkg_info \| grep samba samba-3.0.23d,1 A free SMB and CIFS client and server for UNIX pkg_info \| grep ldap nss_ldap-1.251_1 RFC 2307 NSS module openldap-client-2.3.33 Open source LDAP client implementation openldap-server-2.3.33 Open source LDAP server implementation p5-perl-ldap-0.33 A Client interface to LDAP servers pam_ldap-1.8.2 A pam module for authenticating with LDAP smbldap-tools-0.9.2a Useful package for managing users and groups in a LDAP dire === конфиги почти такиеже как в примере (ну у мну cn=root,dc=pm,dc=edu ) === slaptest -u /usr/local/etc/openldap/slapd.conf: line 104: warning: no by clause(s) specified in access line (ignored). /usr/local/etc/openldap/slapd.conf: line 110: warning: no by clause(s) specified in access line (ignored). /usr/local/etc/openldap/slapd.conf: line 113: warning: no by clause(s) specified in access line (ignored). config file testing succeeded === #testparm Load smb config files from /usr/local/etc/smb.conf Processing section "[homes]" Processing section "[netlogon]" Processing section "[Profiles]" Processing section "[public]" Loaded services file OK. Server role: ROLE_DOMAIN_PDC Press enter to see a dump of your service definitions [global] dos charset = cp866 unix charset = koi8-r display charset = koi8-r workgroup = AUD-683 server string = SAMBA_LDAP PDC Server interfaces = 10.6.83.30/24 passdb backend = ldapsam:ldap://127.0.0.1/ syslog = 0 log file = /var/log/samba/log.%m max log size = 100000 name resolve order = lmhosts wins dns host bcast time server = Yes load printers = No add user script = /usr/local/sbin/smbldap-useradd -m "%u" delete user script = /usr/local/sbin/smbldap-userdel "%u" add group script = /usr/local/sbin/smbldap-groupadd -p "%g" delete group script = /usr/local/sbin/smbldap-groupdel "%g" add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g" delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g" set primary group script = /usr/local/sbin/smbldap-usermod -g "%g" "%u" add machine script = /usr/local/sbin/smbldap-useradd -w "%u" logon script = logon.bat logon path = logon drive = H: domain logons = Yes os level = 255 preferred master = Yes domain master = Yes dns proxy = No wins proxy = Yes wins support = Yes ldap admin dn = cn=root,dc=pm,dc=edu ldap delete dn = Yes ldap group suffix = ou=Groups ldap idmap suffix = ou=Users ldap machine suffix = ou=Computers ldap passwd sync = Yes ldap suffix = dc=pm,dc=edu ldap ssl = no ldap user suffix = ou=Users [homes] comment = Home directories valid users = %S read only = No browseable = No vfs objects = recycle recycle:exclude = .tmp\|.tbi\|.temp\|~$\|.~?? recycle:maxsize = 0 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = .Корзина [netlogon] comment = Network Logon Service path = /home/samba/netlogon/ browseable = No [Profiles] path = /home/samba/profiles valid users = %U, "@Domain Admins" force user = %U read only = No create mask = 0600 directory mask = 0700 guest ok = Yes profile acls = Yes browseable = No csc policy = disable [public] comment = Общий ресурс path = /home/samba/public valid users = "@Domain Admins", "@Domain Users" read only = No create mask = 0666 directory mask = 0777 guest ok = Yes ========= лдап значит поднял ==== # netstat -a \|grep LISTEN \|grep ldap tcp4 0 0 683-ad2.ldaps .* LISTEN tcp4 0 0 683-ad2.ldap . LISTEN tcp4 0 0 .ldaps .* LISTEN tcp4 0 0 .ldap .* LISTEN ==== а самба падает значит стаким вот логами === log.nmbd (nmbd работает но если в interfaces = находит уже сущ Ір то падает тоже ) [2007/02/08 12:14:58, 0] nmbd/nmbd.c:main(699) Netbios nameserver version 3.0.23d started. Copyright Andrew Tridgell and the Samba Team 1992-2006 [2007/02/08 12:14:58, 0] lib/util_sock.c:open_socket_in(830) bind failed on port 137 socket_addr = 10.6.83.30. Error = Can't assign requested address [2007/02/08 12:14:58, 0] nmbd/nmbd_subnetdb.c:make_subnet(97) nmbd_subnetdb:make_subnet() Failed to open nmb socket on interface 10.6.83.30 for port 137. Error was Can [2007/02/08 12:14:58, 0] nmbd/nmbd.c:main(773) ERROR: Failed when creating subnet lists. Exiting. === ну и сама ошибка ==== [2007/02/08 12:14:58, 0] smbd/server.c:main(847) smbd version 3.0.23d started. Copyright Andrew Tridgell and the Samba Team 1992-2006 [2007/02/08 12:14:58, 0] printing/print_cups.c:cups_cache_reload(85) Unable to connect to CUPS server localhost - Connection refused [2007/02/08 12:14:58, 0] printing/print_cups.c:cups_cache_reload(85) Unable to connect to CUPS server localhost - Connection refused [2007/02/08 12:14:59, 0] services/services_db.c:svcctl_init_keys(420) init_services_keys: key lookup failed! (WERR_ACCESS_DENIED) [2007/02/08 12:14:59, 0] smbd/server.c:main(960) ERROR: failed to setup guest info. ==== где грабли то ??? ЗЫ еще есть вот такой вот прикол при старте Starting slapd. !!!!!!slapd[356]: nss_ldap:could not search LDAP server- Server is unavaible

Ваше сообщение

Имя*:

EMail:

Для отправки новых сообщений в текущей нити на email укажите знак ! перед адресом, например, [email protected] (!! - не показывать email).
Более тонкая настройка отправки ответов производится в профиле зарегистрированного участника форума.

Заголовок*:

Сообщение*:

При общении не допускается: неуважительное отношение к собеседнику, хамство, унизительное обращение, ненормативная лексика, переход на личности, агрессивное поведение, обесценивание собеседника, провоцирование флейма голословными и заведомо ложными заявлениями. Не отвечайте на сообщения, явно нарушающие правила - удаляются не только сами нарушения, но и все ответы на них. Лог модерирования.

На сайте действует частичное премодерирование - после публикации некоторые сообщения от анонимов могут автоматически скрываться ботом. После проверки модератором ошибочно скрытые сообщения раскрываются. Для ускорения раскрытия можно воспользоваться ссылкой "Сообщить модератору", указав в качестве причины обращения "скрыто по ошибке".

Партнёры:

Хостинг:

Закладки на сайте
Проследить за страницей

Created 1996-2024 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру