From owner-freebsd-questions@FreeBSD.ORG  Mon Jul 20 09:34:35 2009
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id DA6D6106566C
	for <freebsd-questions@freebsd.org>;
	Mon, 20 Jul 2009 09:34:35 +0000 (UTC)
	(envelope-from ruel.freebsd@gmail.com)
Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.241])
	by mx1.freebsd.org (Postfix) with ESMTP id 862608FC12
	for <freebsd-questions@freebsd.org>;
	Mon, 20 Jul 2009 09:34:35 +0000 (UTC)
	(envelope-from ruel.freebsd@gmail.com)
Received: by an-out-0708.google.com with SMTP id d14so992502and.13
	for <freebsd-questions@freebsd.org>;
	Mon, 20 Jul 2009 02:34:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:received:in-reply-to:references
	:date:message-id:subject:from:to:cc:content-type;
	bh=nKx8XyEygn9rlgjS3BtbgmCTBBFGK4ee51uU5naX2CY=;
	b=uKiro0hMB+hXstuCLfChkg4xtrvZOACZap5U/5XAL6mT41Ve3lIig126hrsmkfyi2/
	NqQQj+Q6gCDjNYYXRZZ+HKRf4YJt2VMSmcbhGjbXAeiHu/pRxHisahxnH2fg4NHD7olo
	3hAP5gG8gdrX9Q8InpNXVkruUTKh+jguRSqb8=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:cc:content-type;
	b=WLo3wOg0owgAxTMlAXX/PtfNzHyJVntU7L9nAU3B1oEfRZ/CvoS5oUD56DxvPi9/m6
	5SMjRG9SJnGyE9UIIBe0Q5vS2ixjPudjT1VlirxabCOpOm/Xn9G/tp2B6XavYl69KErl
	bDUSKisDHOTPFmENtumuI4yZKYGFII6YCwPNA=
MIME-Version: 1.0
Received: by 10.100.107.17 with SMTP id f17mr5889156anc.82.1248082474838; Mon, 
	20 Jul 2009 02:34:34 -0700 (PDT)
In-Reply-To: <ee9dc2b40907200210v6ff60c84va89149072bcef8a4@mail.gmail.com>
References: <ee9dc2b40907171829r5afbc885u1f84b2054ff4f5e5@mail.gmail.com>
	<ee9dc2b40907172153h674fe2a9ua2a33be3d6054086@mail.gmail.com>
	<20090719112802.GA77843@ei.bzerk.org>
	<ee9dc2b40907192237x3c65b9cy11ce9ba5f8687891@mail.gmail.com>
	<57200BF94E69E54880C9BB1AF714BBCB5DEA71@w2003s01.double-l.local>
	<ee9dc2b40907200122v62cc58d2jea0e59e9263f23f5@mail.gmail.com>
	<200907200835.n6K8ZZ7D001753@banyan.cs.ait.ac.th>
	<ee9dc2b40907200150q3b27bf75g92ab559b20e3e56@mail.gmail.com>
	<20090720105553.a665479b.freebsd@edvax.de>
	<ee9dc2b40907200210v6ff60c84va89149072bcef8a4@mail.gmail.com>
Date: Mon, 20 Jul 2009 17:34:34 +0800
Message-ID: <ee9dc2b40907200234v450bc3e9w69b949420b653f29@mail.gmail.com>
From: Ruel Luchavez <ruel.freebsd@gmail.com>
To: Polytropon <freebsd@edvax.de>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: Olivier Nicole <on@cs.ait.ac.th>, Johan@double-l.nl,
	freebsd-questions@freebsd.org
Subject: Re: Samba PDC with LDAP backend
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Jul 2009 09:34:36 -0000

On Mon, Jul 20, 2009 at 5:10 PM, Ruel Luchavez <ruel.freebsd@gmail.com>wrote:

>
>
> On Mon, Jul 20, 2009 at 4:55 PM, Polytropon <freebsd@edvax.de> wrote:
>
>> On Mon, 20 Jul 2009 16:50:48 +0800, Ruel Luchavez <ruel.freebsd@gmail.com>
>> wrote:
>> > On Mon, Jul 20, 2009 at 4:35 PM, Olivier Nicole <on@cs.ait.ac.th>
>> wrote:
>> > > > I know this is running
>> > > >  >>slapd_flags='-h \"ldapi://%2fvar%2frun%2fopenldap%2fldapi/
>> > > > ldap://0.0.0.0/ ldap://127.0.0.1/\"'
>> > > >
>> > > > as is issue a command ps -aux | grep slap, hers whats the box give
>> to me
>> > > > #ps -aux | grep slap
>> > > > ldap   1273  0.0  6.6 341992  7816  ??  Is    4:17PM   0:00.14
>> > > > /usr/local/libexec/slapd -h ldapi://%2fvar%2frun%2fopenldap%2fldapi/
>> > > > ldaps://127.0.0.1/ ldap://192.168.5.200/ -u l
>> > >
>> > > I see no ldaps:// in the command, but one in the ps, that is strange!
>> > >
>> > > Olivier
>> > >
>> >
>> > Hey....
>> > What do you mean you dont see no ldaps://
>>
>>
>> slapd_flags:
>>        f1 = ldapi://%2fvar%2frun%2fopenldap%2fldapi/
>>        f2 = ldap://0.0.0.0/
>>        f3 = ldap://127.0.0.1/
>>
>> ps output:
>>        p1 = ldapi://%2fvar%2frun%2fopenldap%2fldapi/
>>        p2 = ldaps://127.0.0.1/
>>        p3 = ldap://192.168.5.200/
>>
>> Compage f3 to p2: ldap://127.0.0.1/ vs. ldaps://127.0.0.1/
>>
>>
>> --
>> Polytropon
>> From Magdeburg, Germany
>> Happy FreeBSD user since 4.0
>> Andra moi ennepe, Mousa, ...
>>
>
> Thanks Polytropon
>
> I get the point..
>
> Hmmmm...where did i mess up...
> I'll try to triple check all the config..
>
>
>
>
> --
> rHueL
> FreeBSD user since 6.0
> Happy BSD use...
> Country:Philippines
> Zip Code:8000
>

Hey guys...

There is an improvement...
this is my current /etc/rc.conf

slapd_enable=YES
slapd_flags='-h "ldapi://%2fvar%2frun%2fopenldap%2fldapi/
ldap://127.0.0.1/ldap://
192.168.5.200/"'
slapd_sockets="/var/run/openldap/ldapi"

samba_enable="YES"
winbindd_enable="YES"
cupsd_enable="YES"
################################################################################

and this is the output of ps -aux | grep slap

#ps -aux | grep slap
ldap   1667  0.0  6.7 345832  7936  ??  Ss    5:24PM   0:01.18
/usr/local/libexec/slapd -h ldapi://%2fvar%2frun%2fopenldap%2fldapi/ ldap://
127.0.0.1/ ldap://192.168.5.200/ -u ld

root   1794  0.0  0.2   388   268  p0  R+    5:32PM   0:00.00 grep slap

Well regarding what Oliver said "I see no ldaps:// in the command, but one
in the ps, that is strange!"
I think it is solve now! Am I right?

Then I populate the database, unfortunate there another error and I can't
understand the code in smbldap_tools.pm! Her's the output of the box

#smbldap-populate -u 10000 -g 10000 -r 10000
Populating LDAP directory for domain MYDOMAIN
(S-1-5-21-2772587264-3389604304-3649373591)
(using builtin directory structure)

adding new entry: dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <DATA> line 466.
adding new entry: ou=People,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 12.
adding new entry: ou=Groups,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 17.
adding new entry: ou=Computers,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 22.
adding new entry: ou=Idmap,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 27.
adding new entry: uid=root,ou=People,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 58.
adding new entry: uid=nobody,ou=People,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 89.
adding new entry: cn=Domain Admins,ou=Groups,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 101.
adding new entry: cn=Domain Users,ou=Groups,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 112.
adding new entry: cn=Domain Guests,ou=Groups,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 123.
adding new entry: cn=Domain Computers,ou=Groups,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 134.
adding new entry: cn=Administrators,ou=Groups,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 179.
adding new entry: cn=Account Operators,ou=Groups,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 201.
adding new entry: cn=Print Operators,ou=Groups,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 212.
adding new entry: cn=Backup Operators,ou=Groups,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 223.
adding new entry: cn=Replicators,ou=Groups,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 234.
adding new entry: sambaDomainName=MYDOMAIN,dc=mydomain,dc=local
failed to add entry: modifications require authentication at
/usr/local/sbin/smbldap-populate line 498, <GEN1> line 242.

Please provide a password for the domain root:
No such object at /usr/local/lib/perl5/site_perl/5.8.9/smbldap_tools.pm line
406, <DATA> line 466.

# return (success, dn ) <<------and this is the line at 466 of
smbldap_tools.pm

What does it mean??
I can't type the password for the domain root cause it ends up there...

You guys are great...FreeBSD Rock

Thanks...
-- 
rHueL
FreeBSD user since 6.0
Happy BSD use...
Country:Philippines
Zip Code:8000