|
ru.unix.bsd
- RU.UNIX.BSD ------------------------------------------------------------------
From : Ershov S.M. 2:5020/400 01 Oct 2004 17:45:41
To : Rashid N. Achilov
Subject : Re: samba 3.0.7 из портор и WITH_WINBIND_NSS=yes
--------------------------------------------------------------------------------
On Fri, 1 Oct 2004 12:20:18 +0000 (UTC), in fido7.ru.unix.bsd you wrote:
> One day, in Friday 01 October 2004 17:34, Ershov S.M. (newss@teleplus.ru)
> wrote: Этот сервер планируется как замена PDC на windowsNT, который работает с
> 98 года, пора бы уже и на пенсию, соответственно он должен
> обрабатывать доменные подключения. Hо в UserManager не выдается список групп,
> (только группы из домена BUILTIN). Хотя группы замапированы. В LDAP группы
> есть, мапы настроены, Тогда скорее всего баг самбы. Для авторизации
> используешь ntlm_auth ...--require-membership-of=<group>?
$ cat /etc/group | grep admin
...
AccessInet_ICQ:*:1020:admin
...
из командной строки (логи 1)
$ /usr/local/libexec/squid/wbinfo_group.pl
domain\\admin AccessInet_ICQ
ERR
$ /usr/local/bin/ntlm_auth
--require-membership-of='TELEPLUS\AccessInet_ICQ' --username=admin
--password=password
[2004/10/01 17:28:20, 0] utils/ntlm_auth.c:get_require_membership_sid(237)
Winbindd lookupname failed to resolve DOMAIN\AccessInet_ICQ into a SID!
Что вполне логично.
Логи 1
логи winbindd при этом (loglevel 255)
[2004/10/01 16:54:03, 6] nsswitch/winbindd.c:new_connection(354)
accepted socket 21
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn INTERFACE_VERSION
[2004/10/01 16:54:03, 3]
nsswitch/winbindd_misc.c:winbindd_interface_version(261)
[ 1569]: request interface version
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn WINBINDD_PRIV_PIPE_DIR
[2004/10/01 16:54:03, 3]
nsswitch/winbindd_misc.c:winbindd_priv_pipe_dir(297)
[ 1569]: request location of privileged pipe
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(568)
client_write: need to write 34 extra data bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 34 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(557)
client_write: client_write: complete response written.
[2004/10/01 16:54:03, 6] nsswitch/winbindd.c:new_connection(354)
accepted socket 25
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 0 bytes. Need 1824 more for a full request.
[2004/10/01 16:54:03, 5] nsswitch/winbindd.c:winbind_client_read(476)
read failed on sock 21, pid 1569: EOF
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn INFO
[2004/10/01 16:54:03, 3] nsswitch/winbindd_misc.c:winbindd_info(248)
[ 1569]: request misc info
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn DOMAIN_NAME
[2004/10/01 16:54:03, 3] nsswitch/winbindd_misc.c:winbindd_domain_name(273)
[ 1569]: request domain name
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn LOOKUPNAME
[2004/10/01 16:54:03, 3] nsswitch/winbindd_sid.c:winbindd_lookupname(96)
[ 1569]: lookupname TELEPLUS\AccessInet_ICQ
[2004/10/01 16:54:03, 10] nsswitch/winbindd_passdb.c:name_to_sid(238)
Finding name AccessInet_ICQ
[2004/10/01 16:54:03, 5] lib/smbldap.c:smbldap_search(963)
smbldap_search: base => [ou=Groups,dc=domain,dc=teleplus,dc=ru], filter
=>
[(&(objectClass=sambaGroupMapping)(|(displayName=AccessInet_ICQ)(cn=AccessInet_I
CQ)))],
scope => [2]
[2004/10/01 16:54:03, 2] passdb/pdb_ldap.c:init_group_from_ldap(1902)
init_group_from_ldap: Entry found for group: 1020
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 0 bytes. Need 1824 more for a full request.
[2004/10/01 16:54:03, 5] nsswitch/winbindd.c:winbind_client_read(476)
read failed on sock 25, pid 1569: EOF
[2004/10/01 16:54:03, 6] nsswitch/winbindd.c:new_connection(354)
accepted socket 21
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn INTERFACE_VERSION
[2004/10/01 16:54:03, 3]
nsswitch/winbindd_misc.c:winbindd_interface_version(261)
[ 1571]: request interface version
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn WINBINDD_PRIV_PIPE_DIR
[2004/10/01 16:54:03, 3]
nsswitch/winbindd_misc.c:winbindd_priv_pipe_dir(297)
[ 1571]: request location of privileged pipe
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(568)
client_write: need to write 34 extra data bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 34 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(557)
client_write: client_write: complete response written.
[2004/10/01 16:54:03, 6] nsswitch/winbindd.c:new_connection(354)
accepted socket 25
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 0 bytes. Need 1824 more for a full request.
[2004/10/01 16:54:03, 5] nsswitch/winbindd.c:winbind_client_read(476)
read failed on sock 21, pid 1571: EOF
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn LOOKUPSID
[2004/10/01 16:54:03, 3] nsswitch/winbindd_sid.c:winbindd_lookupsid(42)
[ 1571]: lookupsid Could not lookup name AccessInet_ICQ
[2004/10/01 16:54:03, 0] lib/util_sid.c:string_to_sid(301)
string_to_sid: Sid Could not lookup name AccessInet_ICQ does not start
with 'S-'.
[2004/10/01 16:54:03, 5] nsswitch/winbindd_sid.c:winbindd_lookupsid(47)
Could not lookup name AccessInet_ICQ not a SID
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 0 bytes. Need 1824 more for a full request.
[2004/10/01 16:54:03, 5] nsswitch/winbindd.c:winbind_client_read(476)
read failed on sock 25, pid 1571: EOF
[2004/10/01 16:54:03, 6] nsswitch/winbindd.c:new_connection(354)
accepted socket 21
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn INTERFACE_VERSION
[2004/10/01 16:54:03, 3]
nsswitch/winbindd_misc.c:winbindd_interface_version(261)
[ 1573]: request interface version
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn WINBINDD_PRIV_PIPE_DIR
[2004/10/01 16:54:03, 3]
nsswitch/winbindd_misc.c:winbindd_priv_pipe_dir(297)
[ 1573]: request location of privileged pipe
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(568)
client_write: need to write 34 extra data bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 34 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(557)
client_write: client_write: complete response written.
[2004/10/01 16:54:03, 6] nsswitch/winbindd.c:new_connection(354)
accepted socket 25
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 0 bytes. Need 1824 more for a full request.
[2004/10/01 16:54:03, 5] nsswitch/winbindd.c:winbind_client_read(476)
read failed on sock 21, pid 1573: EOF
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 1824 bytes. Need 0 more for a full request.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:process_request(319)
process_request: request fn GETGROUPS
[2004/10/01 16:54:03, 3] nsswitch/winbindd_group.c:winbindd_getgroups(1030)
[ 1573]: getgroups teleplus\admin
[2004/10/01 16:54:03, 10] nsswitch/winbindd_passdb.c:name_to_sid(238)
Finding name admin
[2004/10/01 16:54:03, 5] lib/smbldap.c:smbldap_search(963)
smbldap_search: base => [ou=Groups,dc=domain,dc=teleplus,dc=ru], filter
=> [(&(objectClass=sambaGroupMapping)(|(displayName=admin)(cn=admin)))],
scope => [2]
[2004/10/01 16:54:03, 4] passdb/pdb_ldap.c:ldapsam_getgroup(2008)
ldapsam_getgroup: Did not find group
[2004/10/01 16:54:03, 1] nsswitch/winbindd_group.c:winbindd_getgroups(1059)
user 'admin' does not exist
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:client_write(523)
client_write: wrote 1300 bytes.
[2004/10/01 16:54:03, 10] nsswitch/winbindd.c:winbind_client_read(469)
client_read: read 0 bytes. Need 1824 more for a full request.
[2004/10/01 16:54:03, 5] nsswitch/winbindd.c:winbind_client_read(476)
read failed on sock 25, pid 1573: EOF
--
Отправлено через сервер Форумы@mail.ru - http://talk.mail.ru
--- ifmail v.2.15dev5.3
* Origin: Talk.Mail.Ru (2:5020/400)
Вернуться к списку тем, сортированных по: возрастание даты уменьшение даты тема автор
|
