We are unable to rename the system after logging in as Local Admin as well as
domain admin.We are prompted for the Domain Admin user name & password.Upon
giving them correctly also, its throwing an "Access Denied" Message for
This is highly critical.Pls look into this.
Could you please provide a debug level 10 log of the smbd that your XP workstation is trying to rename its workstation account against? Thanks, Volker
I'm afraid this is not the right log file. You seem to have set 'log file = /var/log/samba/log.%m' or something similar. Please attach the log file specific to the connecting client machine. Please also add your smb.conf. Volker
*** Bug 2332 has been marked as a duplicate of this bug. ***
Ok, got your correct logfile. What we need to do is if a user is renamed with the setuserinfo2 issue a ldap modrdn operation. Either that or have a 'rename user script'. I would probably go for another case of 'ldapsam:trusted = yes', only support renaming users properly for the case that posixaccounts and samba accounts are on the same dn. Jerry, what do you think? Volker
There is a patch in bugzilla somewhere to support exactly this rename.
I really wish I had just got it in when I first saw it...
Created attachment 1666 [details]
allow account rename in samrsetuserinfo level 21
This patch is diffed against trunk but should work against SAMBA_3_0 as well.
We need to find a better way to workaround the $/_ substitution though.
Created attachment 1735 [details]
New version of the patch; applies to 3_0 and trunk.
Fixed in Subversion.