ldap+samba problem on FreeBSD 5.5

From: Nik <nikruzhan_at_gmail.com>
Date: Sun, 3 Sep 2006 21:42:11 +0800
Hi all,

I already can see the test id that I add from test.ldif file. But when I try
to su to that username it give me this message:

> id testuser
uid=15000(testuser) gid=15000(testgroup) groups=15000(testgroup)

> su testuser
[I have no name!_at_haniey /usr/local/etc/openldap]$

> finger testuser
finger: testuser: no such user

It's suppose to create one directory folder for testuser at
/usr/home/testuser but there is no folder at all. It's also giving me this
error log message upon slapd start.

slapd[1028]: nss_ldap: could not search LDAP server - Server is unavailable

FYI, I've edit the /etc/pam.d and /etc/nsswitch.conf to the need. At the
moment I haven't setup samba yet just try to manage ldap working fiest.

Here is my config's file:

## ------------------------ldap.conf

host hay.ath.cx
base dc=hay,dc=ath,dc=cx
rootbinddn cn=Manager,dc=hay,dc=ath,dc=cx

ssl no
pam_passwd md5
bind_timelimit 10
bind_policy soft
pam_filter objectclass=posixaccount
pam_login_attribute uid

scope one
pam_password exop

nss_base_passwd       ou=Users,dc=hay,dc=ath,dc=cx?one
nss_base_passwd       ou=Computers,dc=hay,dc=ath,dc=cx?one
nss_base_shadow       ou=Users,dc=hay,dc=ath,dc=cx?one
nss_base_group        ou=Groups,dc=hay,dc=ath,dc=cx?one


## ------------------------slapd.conf

include     /usr/local/etc/openldap/schema/core.schema
include     /usr/local/etc/openldap/schema/corba.schema
include     /usr/local/etc/openldap/schema/cosine.schema
include     /usr/local/etc/openldap/schema/inetorgperson.schema
include     /usr/local/etc/openldap/schema/nis.schema
include     /usr/local/etc/openldap/schema/misc.schema
include     /usr/local/etc/openldap/schema/openldap.schema
include     /usr/local/etc/openldap/schema/samba.schema

pidfile     /var/run/openldap/slapd.pid
argsfile    /var/run/openldap/slapd.args

# Load dynamic backend modules:
modulepath  /usr/local/libexec/openldap
moduleload  back_bdb
#moduleload back_ldap
#moduleload back_ldbm
#moduleload back_passwd
#moduleload back_shell

# Allow LDAPv2 client connections.  This is NOT the default.
allow bind_v2

sasl-realm              HAY.ATH.CX
sasl-host                ldap.hay.ath.cx
sasl-secprops         none

loglevel -1

database    bdb
suffix      "dc=haniey,dc=ath,dc=cx"
rootdn      "cn=Manager,dc=haniey,dc=ath,dc=cx"
rootpw      {MD5}mbb7z3WFoj0R807QFJlmDw==
directory   /var/db/openldap-data

# Indices to maintain for this database
index objectClass                       eq,pres
index ou,cn,mail,surname,givenname      eq,pres,sub
index uidNumber,gidNumber,loginShell    eq,pres
index uid,memberUid                     eq,pres,sub
index nisMapName,nisMapEntry            eq,pres,sub
index sambaSID              eq
index sambaPrimaryGroupSID      eq
index sambaDomainName           eq
index default               sub

schemacheck     on
lastmod         on


## ---------------------------------test.ldif

dn: dc=hay,dc=ath,dc=cx
dc: hay
objectClass: top
objectClass: domain
objectClass: domainRelatedObject
associatedDomain: haniey.ath.cx

dn: ou=Users,dc=hay,dc=ath,dc=cx
ou: Users
objectClass: top
objectClass: organizationalUnit

dn: ou=Computers,dc=hay,dc=ath,dc=cx
ou: Computers
objectClass: top
objectClass: organizationalUnit

dn: ou=Groups,dc=hay,dc=ath,dc=cx
ou: Groups
objectClass: top
objectClass: organizationalUnit

dn: uid=testuser,ou=Users,dc=hay,dc=ath,dc=cx
cn: testuser
sn: Dummy
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
uid: testuser
userpassword:
uidnumber: 15000
gidnumber: 15000
gecos: Test User Dummy
loginShell: /usr/local/bin/bash
homeDirectory: /usr/home/testuser
description: A simple test user.
Received on Sun Sep 03 2006 - 11:42:13 UTC

This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:59 UTC