12794 – Samba AD can be corrupted by importing the ISC DHCP LDAP Schema

Bug 12794 - Samba AD can be corrupted by importing the ISC DHCP LDAP Schema

Summary: Samba AD can be corrupted by importing the ISC DHCP LDAP Schema

Status:	RESOLVED INVALID

Alias:	None

Product:	Samba 4.1 and newer
Classification:	Unclassified
Component:	Other (show other bugs)
Version:	4.5.9
Hardware:	All All

Importance:	P5 normal (vote)
Target Milestone:	---
Assignee:	Andrew Bartlett
QA Contact:	Samba QA Contact

URL:
Keywords:

Depends on:
Blocks:

Reported:	2017-05-18 11:50 UTC by Zombie Ryushu
Modified:	2022-07-13 09:23 UTC (History)
CC List:	2 users (show)

See Also:

Attachments
dhcpd OpenLDAP Schema (20.98 KB, text/plain) 2017-05-18 14:22 UTC, Zombie Ryushu	no flags	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Zombie Ryushu 2017-05-18 11:50:12 UTC

Samba AD can be corrupted by importing the ISC DHCP LDAP Schema (dhcp.schema) for OpenLDAP into Samba 4.x by using oLschema2ldif and ldbadd. Samba 4 will start, but every user will appear to have object Class Violations.

Comment 1 Zombie Ryushu 2017-05-18 14:22:23 UTC

Created attachment 13223 [details]
dhcpd OpenLDAP Schema

Comment 2 Zombie Ryushu 2017-05-18 15:31:39 UTC

The command line used is:

 oLschema2ldif -b DC=pukey -I dhcp.schema -O dhcp-schema.ldif
This converts the schemas

followed by ldbadd /var/lib/samba/private/sam.ldb dhcp-schema.ldif

Comment 3 Rowland Penny 2022-07-13 09:23:11 UTC

(In reply to Zombie Ryushu from comment #2)
Closing this.
It isn't a Samba problem, it is that the isc-dhcp schema is incompatible with Active directory, duplicate objectclasses.