Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
[Samba] samba-tool domain provision no such option: --slapd-path
747 views
Skip to first unread message
basti via samba
Aug 22, 2016, 9:50:02 AM8/22/16
to
Hello,
because of the login problem with windows 10 and the required changes in
"server max protocol" i try to setup an AD.
The AD works fine, now I have an other problem.
In my Samba3 install i have the following config:
mailserver with standanlone openLDAP <- sync -> samba3 with openLDAP
so the mailserver can receive mails even if the pdc is down.
as i can see at
https://wiki.samba.org/index.php/Samba4/LDAP_Backend/OpenLDAP#Setup_OpenLDAP
but my samba-tool does not known --use-ntvfs and --slapd-path
samba-tool domain provision --use-rfc2307 --interactive
--ldap-backend-type=openldap
...
"Warning: LDAP-Backend must be setup with path to slapd, e.g. --slapd-
path=\"/usr/local/libexec/slapd\"!"
samba-tool domain provision --use-rfc2307 --interactive
--ldap-backend-type=openldap --slapd-path=\"/usr/sbin/slapd\"
Usage: samba-tool domain provision [options]
samba-tool domain provision: error: no such option: --slapd-path
samba -V
Version 4.4.5-Debian
slapd -V
@(#) $OpenLDAP: slapd (Jan 16 2016 23:00:08) $
root@chimera:/tmp/buildd/openldap-2.4.40+dfsg/debian/build/servers/slapd
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
because of the login problem with windows 10 and the required changes in
"server max protocol" i try to setup an AD.
The AD works fine, now I have an other problem.
In my Samba3 install i have the following config:
mailserver with standanlone openLDAP <- sync -> samba3 with openLDAP
so the mailserver can receive mails even if the pdc is down.
as i can see at
https://wiki.samba.org/index.php/Samba4/LDAP_Backend/OpenLDAP#Setup_OpenLDAP
but my samba-tool does not known --use-ntvfs and --slapd-path
samba-tool domain provision --use-rfc2307 --interactive
--ldap-backend-type=openldap
...
"Warning: LDAP-Backend must be setup with path to slapd, e.g. --slapd-
path=\"/usr/local/libexec/slapd\"!"
samba-tool domain provision --use-rfc2307 --interactive
--ldap-backend-type=openldap --slapd-path=\"/usr/sbin/slapd\"
Usage: samba-tool domain provision [options]
samba-tool domain provision: error: no such option: --slapd-path
samba -V
Version 4.4.5-Debian
slapd -V
@(#) $OpenLDAP: slapd (Jan 16 2016 23:00:08) $
root@chimera:/tmp/buildd/openldap-2.4.40+dfsg/debian/build/servers/slapd
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Marc Muehlfeld via samba
Aug 22, 2016, 10:20:02 AM8/22/16
to
Hello Basti,
Am 22.08.2016 um 15:46 schrieb basti via samba:
> as i can see at
> https://wiki.samba.org/index.php/Samba4/LDAP_Backend/OpenLDAP#Setup_OpenLDAP
>
> but my samba-tool does not known --use-ntvfs and --slapd-path
There is no openLDAP support for the Samba AD DC (yet). Nadezhda Ivanova
is working on that, but as far as I know, there's no plan when this will
be part of an official release.
Here's a presentation from Nadezhda:
http://ldapcon.org/2015/?page_id=143
> mailserver with standanlone openLDAP <- sync -> samba3 with openLDAP
> so the mailserver can receive mails even if the pdc is down.
* You can set up a second DC (recommended anyway) to have a failover.
Then you don't have to worry if one goes down. By the way, there is no
"PDC" in an AD. All are DCs.
* You can write a script that exports stuff from AD and pushes it to
your openLDAP on your mailserver.
Regards,
Marc
Am 22.08.2016 um 15:46 schrieb basti via samba:
> as i can see at
> https://wiki.samba.org/index.php/Samba4/LDAP_Backend/OpenLDAP#Setup_OpenLDAP
>
> but my samba-tool does not known --use-ntvfs and --slapd-path
is working on that, but as far as I know, there's no plan when this will
be part of an official release.
Here's a presentation from Nadezhda:
http://ldapcon.org/2015/?page_id=143
> mailserver with standanlone openLDAP <- sync -> samba3 with openLDAP
> so the mailserver can receive mails even if the pdc is down.
Then you don't have to worry if one goes down. By the way, there is no
"PDC" in an AD. All are DCs.
* You can write a script that exports stuff from AD and pushes it to
your openLDAP on your mailserver.
Regards,
Marc
basti via samba
Aug 22, 2016, 10:40:03 AM8/22/16
to
On 22.08.2016 16:07, Marc Muehlfeld via samba wrote:
> * You can set up a second DC (recommended anyway) to have a failover.
> Then you don't have to worry if one goes down. By the way, there is no
> "PDC" in an AD. All are DCs.
moment on my samba4 there is no user how is part of ad there
> * You can write a script that exports stuff from AD and pushes it to
> your openLDAP on your mailserver.
Rowland Penny via samba
Aug 22, 2016, 11:20:04 AM8/22/16
to
On Mon, 22 Aug 2016 16:33:38 +0200
basti via samba <sa...@lists.samba.org> wrote:
>
>
> On 22.08.2016 16:07, Marc Muehlfeld via samba wrote:
> > * You can set up a second DC (recommended anyway) to have a
> > failover. Then you don't have to worry if one goes down. By the
> > way, there is no "PDC" in an AD. All are DCs.
>
> i need the users on the linux box in a way like "getent passwd" at the
> moment on my samba4 there is no user how is part of ad there
I take it you mean that when 'getent passwd auser' is run on the DC, it
basti via samba <sa...@lists.samba.org> wrote:
>
>
> On 22.08.2016 16:07, Marc Muehlfeld via samba wrote:
> > * You can set up a second DC (recommended anyway) to have a
> > failover. Then you don't have to worry if one goes down. By the
> > way, there is no "PDC" in an AD. All are DCs.
>
> i need the users on the linux box in a way like "getent passwd" at the
> moment on my samba4 there is no user how is part of ad there
doesn't produce any output and there isn't anything on the DC wiki page
to tell me how to get it work.
Go and have another read of the DC wiki page:
https://wiki.samba.org/index.php/Setup_a_Samba_Active_Directory_Domain_Controller
The information was always there, there just wasn't anything linking
the DC page to it.
>
> > * You can write a script that exports stuff from AD and pushes it to
> > your openLDAP on your mailserver.
>
> how can i get data from samba/ldap
>
>
You can get the data in pretty much the same way.
Rowland
basti via samba
Aug 24, 2016, 9:50:03 AM8/24/16
to
I have done the nsswitch config
(https://wiki.samba.org/index.php/Setup_Samba_as_an_AD_Domain_Member#libnss_winbind)
wbinfo -u show the users
getent passwd doesn't
I also run pam-auth-update
(https://wiki.samba.org/index.php/Setup_Samba_as_an_AD_Domain_Member#libnss_winbind)
wbinfo -u show the users
getent passwd doesn't
I also run pam-auth-update
Rowland Penny via samba
Aug 24, 2016, 10:00:04 AM8/24/16
to
On Wed, 24 Aug 2016 15:41:01 +0200
basti via samba <sa...@lists.samba.org> wrote:
> I have done the nsswitch config
> (https://wiki.samba.org/index.php/Setup_Samba_as_an_AD_Domain_Member#libnss_winbind)
>
> wbinfo -u show the users
> getent passwd doesn't
>
> I also run pam-auth-update
>
Did you try 'getent passwd A_Username', just running 'getent passwd'
basti via samba <sa...@lists.samba.org> wrote:
> I have done the nsswitch config
> (https://wiki.samba.org/index.php/Setup_Samba_as_an_AD_Domain_Member#libnss_winbind)
>
> wbinfo -u show the users
> getent passwd doesn't
>
> I also run pam-auth-update
>
will not work unless you add:
winbind enum users = yes
winbind enum groups = yes
to smb.conf
basti via samba
Aug 24, 2016, 11:30:04 AM8/24/16
to
that's it thanks a lot
0 new messages