Web lists-archives.com

Re: [Samba] failed to bind the server




On Thu, 3 May 2018 18:14:16 +0000
Suman Koirala via samba <samba@xxxxxxxxxxxxxxx> wrote:

> I was trying to authenticate from AD and could not bind with the
> server.
> 
> I was able to do ldapsearch.
> 
> please suggest the possible cause for failed to bind server.
> 
> This is the log info from log.winbind-idmap
> 
> 
> dd_dual.c:60(child_read_request)
>   child_read_request: read_data failed: NT_STATUS_END_OF_FILE
> [2018/04/19 20:03:09.741686,
> 0] ../source3/lib/smbldap.c:1046(smbldap_connect_system) failed to
> bind to server ldap:/// with dn="cn=admin,dc=bean,dc=mydomain,dc=com"
> Error: Can't contact LDAP server (unknown)
> 
> 
> 
> this is idmap config for winbind in smb.conf file.
> 
> 
> idmap config * : backend = ldap
>    idmap config * : ldap_url = ldap:///
> 
> idmap config * : ldap_base_dn = ou=idmap,dc=bean,dc=mydomain,dc=com
>    idmap config * : ldap_user_dn = cn=admin,dc=bean,dc=mydomain,dc=com
> 
> 
> 
> the slapcat result
> 
> 
> dn: dc=bean,dc=mydomain,dc=com
> objectClass: top
> objectClass: dcObject
> objectClass: organization
> o: mydomain.com
> dc:bean
> structuralObjectClass: organization
> creatorsName: cn=admin,dc=bean,dc=mydomain,dc=com
> 
> 
> dn: cn=admin,dc=bean,dc=mydomain,dc=com
> objectClass: simpleSecurityObject
> objectClass: organizationalRole
> cn: admin
> description: LDAP administrator
> 
> modifiersName: cn=admin,dc=bean,dc=mydomain,dc=com
> 
> 
> 
> could you please hint us what can be the problem?

Do want to give us a big hint by posting your smb.conf ;-)

I could also ask why you are trying to authenticate from AD to an LDAP
server ???

Finally, have you set the secrets with:

smbpasswd -w ldapadminpassword
net idmap set secret 'DOMAIN' ldapadminpassword
 
Rowland


-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba