openSUSE Forums > Archives > SLS Archives > ARCHIVES - SuSE Linux > ARCHIVES - Network & Security » Don't Work Winbind-ad

Go Back   openSUSE Forums > Archives > SLS Archives > ARCHIVES - SuSE Linux > ARCHIVES - Network & Security
Reload this Page Don't Work Winbind-ad
Forums FAQ Members List Search Today's Posts Mark Forums Read


ARCHIVES - Network & Security Any network and / or security related questions should be posted in here.

 
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 06-May-2008, 11:58
kamaleon50
Guest
  
Posts: n/a
Default
Hi. I'm running opensuse 10.3 and samba-3.0.26a-3.5. I'm trying to make Windbind and Active Directory work together.When I run smb -b |grep LDAP I don't get HAVE_LDAP_DOMAIN2HOSTLIST

host:/etc/samba # smbd -b | grep LDAP
HAVE_LDAP_H
HAVE_LDAP
HAVE_LDAP_ADD_RESULT_ENTRY
HAVE_LDAP_INIT
HAVE_LDAP_INITIALIZE
HAVE_LDAP_SET_REBIND_PROC
HAVE_LIBLDAP
LDAP_SET_REBIND_PROC_ARGS

Should I necessarily have it listed?.


However trying:
host:/etc/samba # kinit -V admin@PRUEBA
Password for admin@PRUEBA:
Authenticated to Kerberos v5

host:/etc/samba # net ads join -U admin
admin's password:
Using short domain name -- MAIN
Joined 'HOST' to realm 'PRUEBA'

host:/etc/samba # net ads testjoin
Join is OK


When I run wbinfo -u

host:/etc/samba # wbinfo -u
Error looking up domain users

And I see the message in the log file and when I run
2008/05/02 13:32:30, 1] libads/cldap.c:recv_cldap_netlogon(247) Failed to parse cldap reply


It seems it's working, but I just keep getting those errors in the log files and of course it won't work. Can anybody help me?

Thank you in advance.
  #2 (permalink)  
Old 06-May-2008, 12:31
broch
Guest
  
Posts: n/a
Default
this
Quote:
libads/cldap.c:recv_cldap_netlogon(247) Failed to parse cldap reply[/b]
looks like samba bug
not sure if only suse samba implementation or samba sources.
see if you can upgrade to the latest 3.0.28
  #3 (permalink)  
Old 06-May-2008, 14:04
kamaleon50
Guest
  
Posts: n/a
Default
Quote:
this

looks like samba bug
not sure if only suse samba implementation or samba sources.
see if you can upgrade to the latest 3.0.28
[/b]

thank you! I upgraded as suggested.

host:/etc# rpm -qa|grep samba
samba-client-3.0.28a-0.1.104
samba-3.0.28a-0.1.104
samba-winbind-3.0.28a-0.1.104

I get the following in the log.

[2008/05/06 14:01:22, 6] libads/ldap.c:ads_find_dc(309)
ads_find_dc: looking for domain 'MAIN.PRUEBA'
[2008/05/06 14:01:22, 8] libsmb/namequery.c:get_sorted_dc_list(1626)
get_sorted_dc_list: attempting lookup for name MAIN.PRUEBA (sitename NULL) using [lmhosts wins host bcast]
[2008/05/06 14:01:22, 5] libsmb/namequery.c:saf_fetch(133)
saf_fetch: failed to find server for "MAIN.PRUEBA" domain
[2008/05/06 14:01:22, 3] libsmb/namequery.c:get_dc_list(1489)
get_dc_list: preferred server list: ", 172.16.40.110,172.16.40.111"
[2008/05/06 14:01:22, 5] libads/dns.c:sitename_fetch(677)
sitename_fetch: Returning sitename for PRUEBA: "Default-First-Site-Name"

And
host:~ #wbinfo -t
checking the trust secret via RPC calls failed
error code was (0x0)
Could not check secret

After that
host:~ # wbinfo -t
checking the trust secret via RPC calls failed
error code was NT_STATUS_DOMAIN_CONTROLLER_NOT_FOUND (0xc0000233)
Could not check secret


Any other Idea? Thank you in advance.
  #4 (permalink)  
Old 06-May-2008, 17:48
kamaleon50
Guest
  
Posts: n/a
Default
Quote:
Hi. I'm running opensuse 10.3 and samba-3.0.26a-3.5. I'm trying to make Windbind and Active Directory work together.When I run smb -b |grep LDAP I don't get HAVE_LDAP_DOMAIN2HOSTLIST

host:/etc/samba # smbd -b | grep LDAP
HAVE_LDAP_H
HAVE_LDAP
HAVE_LDAP_ADD_RESULT_ENTRY
HAVE_LDAP_INIT
HAVE_LDAP_INITIALIZE
HAVE_LDAP_SET_REBIND_PROC
HAVE_LIBLDAP
LDAP_SET_REBIND_PROC_ARGS

Should I necessarily have it listed?.
However trying:
host:/etc/samba # kinit -V admin@PRUEBA
Password for admin@PRUEBA:
Authenticated to Kerberos v5

host:/etc/samba # net ads join -U admin
admin's password:
Using short domain name -- MAIN
Joined 'HOST' to realm 'PRUEBA'

host:/etc/samba # net ads testjoin
Join is OK
When I run wbinfo -u

host:/etc/samba # wbinfo -u
Error looking up domain users

And I see the message in the log file and when I run
2008/05/02 13:32:30, 1] libads/cldap.c:recv_cldap_netlogon(247) Failed to parse cldap reply
It seems it's working, but I just keep getting those errors in the log files and of course it won't work. Can anybody help me?

Thank you in advance.
[/b]

while trying "wbinfo -u" it produces the outcome "Error looking up domain users". But if I try "net ads user" or "net ads group", it actually shows them! How's it possible? Is it a bug? Thank you.
  #5 (permalink)  
Old 06-May-2008, 22:31
broch
Guest
  
Posts: n/a
Default
is
wbinfo -p

working?

it looks like winbind has some regression issues. It is not much of suse fault but samba.

Now if (in spite of the error) winbind works (?), then great, but be cautious as it may not be really stable.
  #6 (permalink)  
Old 08-May-2008, 16:31
kamaleon50
Guest
  
Posts: n/a
Default
Quote:
is
wbinfo -p

working?

it looks like winbind has some regression issues. It is not much of suse fault but samba.

Now if (in spite of the error) winbind works (?), then great, but be cautious as it may not be really stable.
[/b]

The only solution that I found was downgrading samba version from 3.0.26 or 3.0.28 to 3.0.22 made the trick. Thank you.
 

Bookmarks

Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



Contact Us - openSUSE Forums - Archive - Privacy Statement - Top
© 2007 Novell, Inc. All Rights Reserved. This site uses the YAML CSS framework. All times are GMT -6. The time now is 11:11.
About openSUSE | Disclaimers | Feedback

Founded by Novell
 

Search Engine Friendly URLs by vBSEO 3.3.0 RC2