вот такие права access to attrs userPassword shadowLastChange by dn cn

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
вот такие права
access to attrs=userPassword,shadowLastChange
by dn="cn=admin,dc=test,dc=lan" write
by dn="cn=idmap-ldap,ou=idmap,dc=test,dc=lan" write
by anonymous auth
by self write
by * none
access to dn.base="" by * read
access to *
by dn="cn=admin,dc=test,dc=lan" write
by dn="cn=idmap-ldap,ou=idmap,dc=test,dc=lan" write
by * read
делаю net sam provision:
Jul 21 16:21:12 ldap slapd[3906]: conn=0 fd=14 ACCEPT from IP=192.168.1.26:51182 (IP=192.168.1.25:389)
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=0 BIND dn="cn=idmap-ldap,ou=idmap,dc=tssec,dc=lan" method=128
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=0 BIND dn="cn=idmap-ldap,ou=idmap,dc=tssec,dc=lan" mech=SIMPLE ssf=0
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=0 RESULT tag=97 err=0 text=
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=1 SRCH base="" scope=0 deref=0 filter="(objectClass=*)"
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=1 SRCH attr=supportedControl
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=2 SRCH base="ou=idmap,dc=tssec,dc=lan" scope=2 deref=0 filter="(objectClass=sambaUnixIdPool)"
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=2 SRCH attr=uidNumber gidNumber objectClass
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=2 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=3 SRCH base="ou=idmap,dc=tssec,dc=lan" scope=2 deref=0 filter="(objectClass=sambaUnixIdPool)"
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=3 SRCH attr=uidNumber gidNumber objectClass
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=3 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=4 MOD dn="ou=idmap,dc=tssec,dc=lan"
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=4 MOD attr=gidNumber gidNumber
Jul 21 16:21:12 ldap slapd[3906]: conn=0 op=4 RESULT tag=103 err=0 text=
Jul 21 16:21:42 ldap slapd[3906]: conn=0 op=5 SRCH base="ou=idmap,dc=tssec,dc=lan" scope=2 deref=0 filter="(objectClass=sambaUnixIdPool)"
Jul 21 16:21:42 ldap slapd[3906]: conn=0 op=5 SRCH attr=uidNumber gidNumber objectClass
Jul 21 16:21:42 ldap slapd[3906]: conn=0 op=5 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jul 21 16:21:42 ldap slapd[3906]: conn=0 op=6 MOD dn="ou=idmap,dc=tssec,dc=lan"
Jul 21 16:21:42 ldap slapd[3906]: conn=0 op=6 MOD attr=gidNumber gidNumber
Jul 21 16:21:42 ldap slapd[3906]: conn=0 op=6 RESULT tag=103 err=0 text=
Jul 21 16:22:12 ldap slapd[3906]: conn=0 op=7 SRCH base="ou=idmap,dc=tssec,dc=lan" scope=2 deref=0 filter="(objectClass=sambaUnixIdPool)"
Jul 21 16:22:12 ldap slapd[3906]: conn=0 op=7 SRCH attr=uidNumber gidNumber objectClass
Jul 21 16:22:12 ldap slapd[3906]: conn=0 op=7 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jul 21 16:22:12 ldap slapd[3906]: conn=0 op=8 MOD dn="ou=idmap,dc=tssec,dc=lan"
Jul 21 16:22:12 ldap slapd[3906]: conn=0 op=8 MOD attr=uidNumber uidNumber
Jul 21 16:22:12 ldap slapd[3906]: conn=0 op=8 RESULT tag=103 err=0 text=
Jul 21 16:26:12 ldap slapd[3906]: conn=0 op=9 UNBIND
Jul 21 16:26:12 ldap slapd[3906]: conn=0 fd=14 closed
и так же в std такое:
fetch_ldap_pw: neither ldap secret retrieved!
[2009/07/21 16:33:31, 0] lib/smbldap.c:smbldap_connect_system(952)
ldap_connect_system: Failed to retrieve password from secrets.tdb
[2009/07/21 16:33:32, 0] passdb/secrets.c:fetch_ldap_pw(888)
fetch_ldap_pw: neither ldap secret retrieved!
[2009/07/21 16:33:32, 0] lib/smbldap.c:smbldap_connect_system(952)
ldap_connect_system: Failed to retrieve password from secrets.tdb
[2009/07/21 16:33:33, 0] passdb/secrets.c:fetch_ldap_pw(888)
fetch_ldap_pw: neither ldap secret retrieved!
[2009/07/21 16:33:33, 0] lib/smbldap.c:smbldap_connect_system(952)
ldap_connect_system: Failed to retrieve password from secrets.tdb
[2009/07/21 16:33:34, 0] passdb/secrets.c:fetch_ldap_pw(888)
fetch_ldap_pw: neither ldap secret retrieved!
[2009/07/21 16:33:34, 0] lib/smbldap.c:smbldap_connect_system(952)