problème urgent: samba+openldap

sisina · 14/05/2008, 17h15

bonjour,
j'ai un problème conçernant openldap et samba,
le problème c'est tout est bien configuré, mais pour le démarrage de ldap il me donne le message suivant:
Vérification des fichiers de configuration pour :config file testing succeeded
Démarrage de slapd : [ÉCHOUÉ]
mes fichiers de configuration sont:
slapd.conf:

# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/inetorgperson.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/samba.schema
# Allow LDAPv2 client connections. This is NOT the default.
allow bind_v2

pidfile /var/run/openldap/slapd.pid
argsfile /var/run/openldap/slapd.args

TLSCACertificateFile /usr/share/ssl/certs/ca-bundle.crt
TLSCertificateFile /usr/share/ssl/certs/slapd.pem
TLSCertificateKeyFile /usr/share/ssl/certs/slapd.pem
#access to dn.children="ou=Users,dc=test,dc=com" \
# attrs=userPassword,shadowLastChange,sambaLMPassword,sambaNTPassword,sambaPwdLastSet
# by anonymous auth
# by * none

#access to dn.children="ou=Admins,dc=test,dc=com" \
# attrs=userPassword,shadowLastChange,sambaLMPassword,sambaNTPassword,sambaPwdLastSet
# by anonymous auth
# by * none

#access to dn.children="ou=Computers,dc=test,dc=com" \
# attrs=userPassword,shadowLastChange,sambaLMPassword,sambaNTPassword,sambaPwdLastSet
# by anonymous auth
# by * none

#access to *
# by self write
# by * read
#######################################################################
# ldbm and/or bdb database definitions
#######################################################################

database bdb
suffix "dc=test,dc=com"
rootdn "cn=Manager,dc=test,dc=com"
rootpw {SSHA}EwkcncLmgPahKfzQiD3Swx6HPhZ9utQp
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory /var/lib/ldap

# Indices to maintain for this database
index objectClass eq,pres
index ou,cn,mail,surname,givenname eq,pres,sub
index uidNumber,gidNumber,loginShell eq,pres
index uid,memberUid eq,pres,sub

smb.conf:

[global]

workgroup = test-com
netbios name = SRV
hosts allow = 192.168. 127.0.0
log file = /var/log/samba/access.log
log level = 1
max log size = 10
security = user
encrypt passwords = true
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
dns proxy = no
domain logons = Yes
domain master = Yes
preferred master = Yes
os level = 66
local master = Yes
wins support = Yes
guest account = nobody
printing = cups
printcap name = cups

oplocks = No
level2 oplocks = No
kernel oplocks = No

template shell = /bin/false
winbind use default domain = no

;option LDAP
passdb backend = ldapsam:ldap://127.0.0.1
ldap suffix = dc=test,dc=com
ldap machine suffix = ou=Machines
ldap user suffix = ou=Users
ldap group suffix = ou=Group
ldap admin dn = "cn=Manager,dc=test,dc=com"

ldap passwd sync = Yes
enable privileges = Yes

logon path = \\%L\profiles\%U

# Table d'encodage des caractères (je fixe sur celui-là pour avoir le même que sous windows)
Unix Charset = ISO8859-15

#SMBLDAP-TOOLS

add user script = /usr/sbin/smbldap-useradd -m "%u"
add machine script = /usr/sbin/smbldap-useradd -w "%u"
add group script = /usr/sbin/smbldap-groupadd -p "%g"
add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
delete user script = /usr/sbin/smbldap-userdel "%u"
delete group script = /usr/sbin/smbldap-groupdel "%g"
delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"
passwd program = /usr/sbin/smbldap-passwd -u %u

admin users = @Administrators

[netlogon]
comment = Network Logon Service
path = /home/netlogon
guest ok = yes
writable = no
share modes = no
browseable = no

[profiles]
path = /srv/profiles
browseable = no
guest ok = yes

smbldap.conf:
############################
# Credential Configuration #
############################
# Notes: you can specify two differents configuration if you use a
# master ldap for writing access and a slave ldap server for reading access
# By default, we will use the same DN (so it will work for standard Samba
# release)
slaveDN="cn=Manager,dc=test,dc=com"
slavePw="test"
masterDN="cn=Manager,dc=test,dc=com"
masterPw="test"

et merci à l'avance pour votre réponse

14/05/2008, 17h15	#1
sisina Invité de passage Inscription : janvier 2008 Messages : 50 Détails du profil Informations forums : Inscription : janvier 2008 Messages : 50 Points : 2 Points : 2	problème urgent: samba+openldap bonjour, j'ai un problème conçernant openldap et samba, le problème c'est tout est bien configuré, mais pour le démarrage de ldap il me donne le message suivant: Vérification des fichiers de configuration pour :config file testing succeeded Démarrage de slapd : [ÉCHOUÉ] mes fichiers de configuration sont: slapd.conf: # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. # include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/nis.schema include /etc/openldap/schema/samba.schema # Allow LDAPv2 client connections. This is NOT the default. allow bind_v2 pidfile /var/run/openldap/slapd.pid argsfile /var/run/openldap/slapd.args TLSCACertificateFile /usr/share/ssl/certs/ca-bundle.crt TLSCertificateFile /usr/share/ssl/certs/slapd.pem TLSCertificateKeyFile /usr/share/ssl/certs/slapd.pem #access to dn.children="ou=Users,dc=test,dc=com" \ # attrs=userPassword,shadowLastChange,sambaLMPassword,sambaNTPassword,sambaPwdLastSet # by anonymous auth # by * none #access to dn.children="ou=Admins,dc=test,dc=com" \ # attrs=userPassword,shadowLastChange,sambaLMPassword,sambaNTPassword,sambaPwdLastSet # by anonymous auth # by * none #access to dn.children="ou=Computers,dc=test,dc=com" \ # attrs=userPassword,shadowLastChange,sambaLMPassword,sambaNTPassword,sambaPwdLastSet # by anonymous auth # by * none #access to * # by self write # by * read ####################################################################### # ldbm and/or bdb database definitions ####################################################################### database bdb suffix "dc=test,dc=com" rootdn "cn=Manager,dc=test,dc=com" rootpw {SSHA}EwkcncLmgPahKfzQiD3Swx6HPhZ9utQp # The database directory MUST exist prior to running slapd AND # should only be accessible by the slapd and slap tools. # Mode 700 recommended. directory /var/lib/ldap # Indices to maintain for this database index objectClass eq,pres index ou,cn,mail,surname,givenname eq,pres,sub index uidNumber,gidNumber,loginShell eq,pres index uid,memberUid eq,pres,sub smb.conf: [global] workgroup = test-com netbios name = SRV hosts allow = 192.168. 127.0.0 log file = /var/log/samba/access.log log level = 1 max log size = 10 security = user encrypt passwords = true socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 dns proxy = no domain logons = Yes domain master = Yes preferred master = Yes os level = 66 local master = Yes wins support = Yes guest account = nobody printing = cups printcap name = cups oplocks = No level2 oplocks = No kernel oplocks = No template shell = /bin/false winbind use default domain = no ;option LDAP passdb backend = ldapsam:ldap://127.0.0.1 ldap suffix = dc=test,dc=com ldap machine suffix = ou=Machines ldap user suffix = ou=Users ldap group suffix = ou=Group ldap admin dn = "cn=Manager,dc=test,dc=com" ldap passwd sync = Yes enable privileges = Yes logon path = \\%L\profiles\%U # Table d'encodage des caractères (je fixe sur celui-là pour avoir le même que sous windows) Unix Charset = ISO8859-15 #SMBLDAP-TOOLS add user script = /usr/sbin/smbldap-useradd -m "%u" add machine script = /usr/sbin/smbldap-useradd -w "%u" add group script = /usr/sbin/smbldap-groupadd -p "%g" add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g" delete user script = /usr/sbin/smbldap-userdel "%u" delete group script = /usr/sbin/smbldap-groupdel "%g" delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g" set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u" passwd program = /usr/sbin/smbldap-passwd -u %u admin users = @Administrators [netlogon] comment = Network Logon Service path = /home/netlogon guest ok = yes writable = no share modes = no browseable = no [profiles] path = /srv/profiles browseable = no guest ok = yes smbldap.conf: ############################ # Credential Configuration # ############################ # Notes: you can specify two differents configuration if you use a # master ldap for writing access and a slave ldap server for reading access # By default, we will use the same DN (so it will work for standard Samba # release) slaveDN="cn=Manager,dc=test,dc=com" slavePw="test" masterDN="cn=Manager,dc=test,dc=com" masterPw="test" et merci à l'avance pour votre réponse
	00

Outils de la discussion
Afficher une version imprimable Envoyer un lien vers cette page par email