用smbldap-useradd -m -a -P user 添加的??只有?存在LDAP上,??包括了系???及samba??。
用useradd username 添加的??只?存在 /etc/passwd 和 /etc/group上。
用smbpasswd -a username 添加的??只?存在 /etc/samba/smbpasswd上。
?另一台linux?器上用smbldap-useradd 添加的??可以ssh到samba伺服器,如: it01 ,但?不能?XP上登?到samba域,?在xp的日志?看到提示:
Windows 找不到您的漫??定?伺服器?本,而且正在???您用本??定?登入。?可能是因??案系??限不正?,或?路?生??。?您登出後,?定?的?更?不???到伺服器上。?可能是因??路?生??,或安全性?限不足。如果????持?存在,???您的?路系?管理?。
???料 - 找不到?路路?。
Linux的 /var/log/samba/log.smbd ?看到:
[2007/08/14 16:24:09, 0] auth/auth_util.c:create_builtin_users(758)
create_builtin_users: Failed to create Users
[2007/08/14 16:24:10, 0] auth/auth_util.c:create_builtin_users(758)
create_builtin_users: Failed to create Users
[2007/08/14 17:02:44, 0] auth/auth_util.c:create_builtin_users(758)
create_builtin_users: Failed to create Users
[2007/08/14 17:02:44, 0] auth/auth_util.c:create_builtin_users(758)
create_builtin_users: Failed to create Users
[2007/08/14 18:12:08, 0] lib/util_sock.c:get_peer_addr(1232)
getpeername failed. Error was Transport endpoint is not connected
[2007/08/14 18:12:08, 0] lib/util_sock.c:get_peer_addr(1232)
getpeername failed. Error was Transport endpoint is not connected
profiles的?限如下:
[root@smbldap ~]# ll /usr/local/samba
total 36
drwxr-xr-x 2 root root 4096 Aug 6 18:38 bin
drwxr-xr-x 2 root root 4096 Aug 6 18:38 include
drwxr-xr-x 11 root root 4096 Aug 14 18:40 lib
drwxr-xr-x 2 root root 4096 Aug 13 18:22 private
drwxrwxrwt 9 root Domain Users 4096 Aug 14 17:17 profiles
drwxr-xr-x 2 root root 4096 Aug 6 18:38 sbin
drwxr-xr-x 3 root root 4096 Aug 6 18:38 share
drwxr-xr-x 8 root root 4096 Aug 6 18:38 swat
drwxr-xr-x 4 root root 4096 Aug 13 17:48 var
[root@smbldap ~]# ll /usr/local/samba/profiles/
total 28
drwxrwxr-T 4 it01 Domain Users 4096 Aug 14 16:36 it01
drwxrwxr-T 2 it02 Domain Users 4096 Aug 14 15:01 it02
drwxr-xr-x 2 it03 Domain Users 4096 Aug 14 17:08 it03
drwxrwxr-T 2 it04 it04 4096 Aug 13 19:00 it04
drwxrwxr-T 13 it05 it05 4096 Aug 14 16:35 it05
drwxrwxr-x 2 it06 it06 4096 Aug 14 17:08 it06
而用win98登?到samba域?一切正常,不?有出?的提示。
?另一台linux?器上用useradd 和 smbpasswd -a 添加的??不可以ssh到samba伺服器,但能?XP上登?到samba域,不?有出?的提示,如: it04 , ?有提示:
Aug 15 10:52:04 smbldap sshd(pam_unix)[4939]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.168.16.73 user=it04
如果用 it01 ssh 到samba域,那?messages?有如下提示:
Ssh it01@192.168.16.25
Aug 15 10:52:55 smbldap sshd(pam_unix)[4941]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.168.16.73 user=it01
Aug 15 10:52:55 smbldap sshd(pam_unix)[4943]: session opened for user it01 by (uid=0)
但?算是ssh成功的
在 /var/log/messages??不?的看到有??的提示:
Aug 14 18:48:59 smbldap nscd: nss_ldap: failed to bind to LDAP server ldap://localhost: Can't contact LDAP server
Aug 14 18:48:59 smbldap nscd: nss_ldap: failed to bind to LDAP server ldap://127.0.0.1/: Can't contact LDAP server
Aug 14 18:48:59 smbldap nscd: nss_ldap: could not search LDAP server - Server is unavailable
Aug 14 18:48:59 smbldap nscd: nss_ldap: failed to bind to LDAP server ldap://localhost: Can't contact LDAP server
Aug 14 18:48:59 smbldap nscd: nss_ldap: failed to bind to LDAP server ldap://127.0.0.1/: Can't contact LDAP server
Aug 14 18:48:59 smbldap nscd: nss_ldap: could not search LDAP server - Server is unavailable
?是什?原因?是openldap?有整合到系??
openldap?是整合了samba,??法整合到系??
Pam_ldap?置有???
[ 本帖最后由 lg8080 于 2007-8-15 16:00 编辑 ]
lg8080 于 2007-08-15 16:00:56发表:
用 phpldapadmin 查看了一下 it01 的?情。
回想了在win98下,it01能正常登?,但是?偏偏在XP上出了??,而xp提示的是:?路路?
?果,??了 sambaProfilePath: \\%L\Profiles\it01 ??\\%L 。心想可能是xp?不了\\%L 是什?意思,於是把它改成\\smbldap後,xp不能正常登?samba域的??就解?了。
看?,在 /configure .pl ?,就??把??配置?稍微改?一下的。就因????我走了不少?路,?我想了好?天,把?料看了又看。
另外,?於
[2007/08/14 18:12:08, 0] lib/util_sock.c:get_peer_addr(1232)
getpeername failed. Error was Transport endpoint is not connected
[2007/08/14 18:12:08, 0] lib/util_sock.c:get_peer_addr(1232)
getpeername failed. Error was Transport endpoint is not connected
????,在?上也找到了答案,在 smb.conf ?添加下面的?句就可以解?
smb ports = 139