[Samba] samba PDC and BDC with ldap master and slave backend

FAQ

Profile

[Samba] samba PDC and BDC with ldap master and slave backend

Soft32 Home -> Linux -> Samba

Next: [Samba] Problems with virtual samba hosts

Author

Message

Jérôme Tournier

External

Since: Dec 08, 2003
Posts: 39

(Msg. 1) Posted: Sun Feb 08, 2004 3:40 pm Post subject: [Samba] samba PDC and BDC with ldap master and slave backend Archived from groups: linux>samba (more info?)

Hi all ! In the samba-Howto, i was looking on informations on how to set up both a samba PDC and a samba BDC controller with ldap backend. I can read: -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Do not install a Samba PDC on a OpenLDAP slave server... Possible PDC/BDC plus LDAP configurations include: .. PDC -> LDAP master server, BDC -> LDAP slave server. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= And now i am wondering this questions : .. if the samba DBC contain the following configuration => passdb backend = ldapsam:"ldap://slave.quenya.org ldap://master.quenya.org" will samba store informations in the master ldap server or will it fail ? Or is it necessary to put the master ldap server first like this : => passdb backend = ldapsam:"ldap://master.quenya.org ldap://slave.quenya.org" .. can i install a samba BDC with a ldap slave server ? Yes you will answer me but in the case where the master ldap server is unreachable, where does the samba BDC will store new informations (Machine Trust Account password for example wich are periodically changed) Thanks for any precision -- Jérôme -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba

rruegner

External

Since: Aug 25, 2003
Posts: 131

(Msg. 2) Posted: Sun Feb 08, 2004 5:50 pm Post subject: [Samba] 2 samba pdcs over vpn intertrust [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)

Hi @ll, i changed my vpn as recommended to ethertap ( tap0 ) now the trusts work as in the how to described. So i didd a view tests with usrmgr but the simple try to admin my vpn domain failed with domain was not found. ( After all the trust is established ) robowarp:/ # net rpc trustdom list MUSI S-1-5-21-3861108627-588665743-2869584934 Trusting domains list: MUSI S-1-5-21-3861108627-588665743-2869584934 this is vice versa files:/ # net rpc trustdom list ROBOWARP S-1-5-21-4039322326-1194518759-4008328055 Trusting domains list: ROBOWARP S-1-5-21-4039322326-1194518759-4008328055 the same occurs if i try to add some user from the advynced properties button of user permissons, there is no way to browse the users the vpn domain someone knows some tricks? Best Regards -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba

Beast

External

Since: Nov 21, 2003
Posts: 118

(Msg. 3) Posted: Mon Feb 09, 2004 7:40 am Post subject: Re: [Samba] samba PDC and BDC with ldap master and slave backend [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)

* Andrew Bartlett <abartlet.TakeThisOut@samba.org> nulis: > > Not quite. Even if the master is not mentioned in the smb.conf, Samba > will follow the 'referral', from the current LDAP server to find where > it should make the write. Problem if master ldap is over wan and link is down. nobody will be able to change any attributes on that site. I know its not samba fault, but any advise on that setup? --beast -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba

Jérôme Tournier

External

Since: Dec 08, 2003
Posts: 39

(Msg. 4) Posted: Mon Feb 09, 2004 9:10 am Post subject: Re: [Samba] samba PDC and BDC with ldap master and slave backend [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)

Le Mon, Feb 09, 2004 at 07:34:38PM +0700, Beast a ecrit: > Problem if master ldap is over wan and link is down. nobody will be able to change any attributes on that site. I know its not samba fault, but any advise on that setup? and if the link is down, as computers peridically changed their trust account password, what will happen if they can't do that ? They'll keep their current password, but can they keep it a long time without problem in user authentication or anything else ? -- Jérôme -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba

Beast

External

Since: Nov 21, 2003
Posts: 118

(Msg. 5) Posted: Tue Feb 10, 2004 12:10 am Post subject: Re: [Samba] samba PDC and BDC with ldap master and slave backend [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)

* Andrew Bartlett <abartlet.DeleteThis@samba.org> nulis: > > Not only will they just keep changing it, I have found that they keep > changing it to the same value. I'll commit a patch shortly that makes > avoid touching ldap if they 'change but don't change' their passwords... > Great!! sol. > Andrew Bartlett > > -- > Andrew Bartlett abartlet.DeleteThis@pcug.org.au > Manager, Authentication Subsystems, Samba Team abartlet.DeleteThis@samba.org > Student Network Administrator, Hawker College abartlet.DeleteThis@hawkerc.net > http://samba.org http://build.samba.org http://hawkerc.net > --beast -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba

Display posts from previous:

Related Topics:

[Samba] ldap master PDC / ldap slave bdc - Hi @ ll after i have fishing my tests with domain trusts from 2 samba 3 pdc, over vpn with good results, i plan to setu...

[Samba] Samba BDC doesn't talk to LDAP slave on same machine - Hello, I can't get my BDC to talk to the LDAP slave running on the same machine. Replication between slave and master..

[Samba] Hot-failover between a Samba 3.x.x PDC and BDC wit.. - I would like to know how to achieve a "hot-failover" setup between a Samba 3.x.x primary domain controller an...

[Samba] samba 3.0.1 and ldap backend problem - I can not a.. - Hi ! I cant add any user (person, and machine) to my domain made with samba-3.0.1, openldap-2.0.27, new samba.schema,...

[Samba] Multiple ldap backend on the same PDC - samba 3 rc.. - How can I have multiple backend on one samba pdc. Samba seems to accept this two lines in the smb.conf. passdb backend...

[Samba] can't add a user to Samba with Ldap passwd backend - Whem i want to add a user to samba, witch act as a PDC, with LDAP passwd backend i get the following error: Problem..

	Soft32 Home -> Linux -> Samba	All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum