Function smbldap_get_single_attribute did not make request during joining workstation to domain
Environment: FreeBSD 6.2 Release, samba-3.0.26a, LDAP-backend LDAP server from Novell Netware 5.1 SP8.
When joining workstation to domain appear an error massage “The machine account for this computer does not exit or is unavailable”.
I looked both smbd.log and network traffic by Ethereal for this operation.
[2007/10/14 09:54:41, 3] groupdb/mapping.c:smb_set_primary_group(306)
smb_set_primary_group: Running the command `/usr/local/sbin/smbldap-usermod –g 'Domain Users' 'wnt$'' gave 0
273 and 274 packets in Ethereal dump for this request.
[2007/10/14 09:54:41, 10] lib/smbldap.c:smbldap_get_single_attribute(277)
smbldap_get_single_attribute: [sambaPrimaryGroupSID] = [<does not exist>]
There are not any packets for this request.
[2007/10/14 09:54:41, 5] lib/smbldap.c:smbldap_modify(1377)
smbldap_modify: dn => [uid=wnt$,ou=test4,o=TEST1]
[2007/10/14 09:54:41, 10] lib/smbldap.c:smbldap_modify(1397)
Failed to modify dn: uid=wnt$,ou=test4,o=TEST1, error: 20 (Type or value exists) ()
282 and 286 packets in Ethereal dump for this request.
Created attachment 2953 [details]
Ethereal dump file
Numbers of packets about those I wrote above.
In the same environment only samba was updated to 3.0.32.
When joining workstation to domain appear an error massage “The machine
account for this computer does not exit or is unavailable”.
I tacked down the joining process with wireshark.
In the attached dump I saw.
148 packet: top, person, organizationalPerson, inetOrgPerson, posixAccount,
cn, sn, uid,uidNumber, gidNumber, homeDirectory, loginShell, geos were added to LDAP server
150 packet: LDAP responded OK
180 packet: sambaSID, dispayName, sambaAcctFlags, sambaSamAccount were to LDAP server
181 packet: LDAP responded OK
228 packet: gidNumber, sambaPrimaryGroupSid were replaced to LDAP server
229 packet: LDAP responded OK
232 packet: added sambaPrimaryGroupSid, deleted displayName, description, added sambaKickofTime, sambaLMPassworkd
sambaNTPassword, sambaPwdLastSet, sambaLogonHours, deleted sambaAcctFlags, added sambaAcctFlags
sambaPrimaryGroupSid attribute was already present on LDAP server!
235 packet: LDAP responded attruteOrValueExists
May be need to first delete sambaPrimaryGroupSid then add one during joining workstation.
Created attachment 3825 [details]
Wireshark dump file of joining workstation