So should I expect the same problems with SLOX? Or does it have a different base than SLES9? Dean -----Original Message----- From: Cody, Adam [mailto:Adam.Cody@ricardo.com] Sent: Thursday, October 07, 2004 2:58 PM To: Dean Landry; suse-linux-e@suse.com Subject: RE: [SLE] Samba + LDAP on SLES 9? Dean asked: Has anyone successfully setup Samba with LDAP on SLES 9? No, and I've become very disappointed in SuSE in how they've arranged LDAP,SAMBA, and the smbldap tools. I'm debating going back to Mandrake or Redhat, even though I just fought for SuSE to become one of the company standards. What I can do so far is this: samba3+winbind trusting other NT domains using ACL's/EA on filesystem. What I need is to use LDAP for the backend, for winbind sharing of uid/gid from the trusted windows domain users. The two problems that appear to be screwing things up are the schema files SLES9 uses... include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/rfc2307bis.schema include /etc/openldap/schema/yast.schema include /etc/openldap/schema/samba3.schema The rfc2307bis.schema seems to break things apart. You can't include the NIS schema with it and the smbldap tools don't work with it or any form of "default" Suse settings in regards to ldap+samba. The second issue is the smbldap stuff. Without it, I can't get Administrator to do what I'd like it to do from a windows 2000 machine using the usrmgr.exe . Another possible issue is what Yast wants to do to the ldap directory in regards to the user/group default configuration settings. I've decided to rest a week after beating myself up with this for 2 weeks. Adam - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the sender immediately and delete this e-mail from your system. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ricardo (save for reports and other documentation formally approved and signed for release to the intended recipient). Only Directors or Duly Authorised Officers are authorised to enter into legally binding obligations on behalf of Ricardo unless the obligation is contained within a Ricardo Purchase Order. Ricardo may monitor outgoing and incoming e-mails and other telecommunications on its e-mail and telecommunications systems. By replying to this e-mail you give your consent to such monitoring. The recipient should check this email and any attachments for the presence of viruses. Ricardo accepts no liability for any damage caused by any virus transmitted by this email. 'Ricardo' means Ricardo Plc and its subsidiary companies. Ricardo plc is a public limited company registered in England with registered number 00222915. The registered office of Ricardo plc is Bridge Works, Shoreham-by-Sea, West Sussex, BN43 5FG. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -