Bug 5693 - Accounts remain locked in BDC
Summary: Accounts remain locked in BDC
Status: NEW
Alias: None
Product: Samba 3.0
Classification: Unclassified
Component: Domain Control (show other bugs)
Version: 3.0.31
Hardware: x64 Linux
: P3 major
Target Milestone: none
Assignee: Samba Bugzilla Account
QA Contact: Samba QA Contact
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2008-08-14 09:15 UTC by Diego Woitasen
Modified: 2010-01-15 02:34 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Diego Woitasen 2008-08-14 09:15:36 UTC
I have two Samba/LDAP servers as Domain Controlers in a PDC/BDC
configuration. My problem is when an account is locked and I unlock it
in LDAP (using GOSA), the "L" flag is removed and replicated to the
slave LDAP, but the account remains locked in Samba BDC. I'll explain
it with commands:

[root@PDC samba]# pdbedit -L user -v | grep -i flags
Account Flags:        [UX         ]

[root@BDC samba]# pdbedit -L user -v | grep -i flag
Account Flags:        [ULX        ]

[root@PDC samba]#  /usr/local/openldap/bin/ldapsearch -D
'cn=manager,dc=foo,dc=com,dc=ar' -w xxxx uid=user -x sambaAcctFlags
sambaAcctFlags: [U X        ]

[root@BDC samba]#  /usr/local/openldap/bin/ldapsearch -D
'cn=manager,dc=foo,dc=com,dc=ar' -w xxxx uid=user -x sambaAcctFlags
sambaAcctFlags: [U X        ]

[root@PDC samba]# smbd -V
Version 3.0.31

[root@BDC samba]# smbd -V
Version 3.0.31
Comment 1 Thomas Liebetanz 2010-01-15 02:34:24 UTC
> I have two Samba/LDAP servers as Domain Controlers in a PDC/BDC
> configuration. My problem is when an account is locked and I unlock it
> in LDAP (using GOSA), the "L" flag is removed and replicated to the
> slave LDAP, but the account remains locked in Samba BDC. ...

same with Samba 3.2.15 in 3.2.3 it worked fine.