Hi, I've migrated to SAMBA 3.2.0pre1 with OpenLDAP from stable version (previously with Mysql pdb backend). Now, when I try to logon some Windows host do domain, it does nothing, with error message "Domain is not available at the moment...". However, when I log as local Win. user, then I can remove, and add computers to domain, browse shares, print, etc. normally as before (using Samba/Domain accounts). I'm running samba daemons from xinetd (user is set to root). PS: I don't know if it is a bug or some misconfiguration or broken import of old data. # here's part of samba/smbd log for logon try: [2008/05/27 17:09:16, 2] smbd/sesssetup.c:setup_new_vc_session(1363) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2008/05/27 17:09:16, 2] smbd/sesssetup.c:setup_new_vc_session(1363) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2008/05/27 17:09:16, 2] passdb/pdb_ldap.c:init_sam_from_ldap(570) init_sam_from_ldap: Entry found for user: pc09vm$ [2008/05/27 17:09:16, 2] passdb/pdb_ldap.c:init_group_from_ldap(2343) init_group_from_ldap: Entry found for group: 5010 [2008/05/27 17:09:17, 2] passdb/pdb_ldap.c:init_group_from_ldap(2343) init_group_from_ldap: Entry found for group: 5010 [2008/05/27 17:09:17, 0] lib/smbldap.c:smbldap_open(1005) smbldap_open: cannot access LDAP when not root..
This needs to be investigated before 3.2 final ship. Jeremy.
Can you please upload your smb.conf together with a debug level 10 log of smbd leading to this error? Thanks, Volker
Created attachment 3321 [details] samba config and log files w/debug level 10 this are my config file, and logs for smbd and machine, from which i try to log onto domain
There is no message "cannot access LDAP when not root" in your log file. Maybe that is because you redirected the log file via log file = /var/log/samba/samba.%m to a different location. Please upload the correct log file. Thanks, Volker
Created attachment 3343 [details] correct log file w/ log leve = 10 vl.: yes, maybe it's because this... so, i've set logs to single file, and here is new log (i've checked, that message is here), sorry for inconvenience.
Created attachment 3344 [details] patch Can you try the attached patch? Thanks, Volker
I've aplied the attached patch and it look like it worked for me, and the problem is now gone. There is no sign of "cannot access LDAP when not root" in log, and users can log on now. Thanks.
Pushed upstream -- thanks! Volker
*** Bug 5660 has been marked as a duplicate of this bug. ***