Results 1 to 4 of 4

Thread: Problem creating Users

  1. #1
    Join Date
    Dec 2009
    Rep Power

    Default Problem creating Users

    Hi everybody,

    I have set up a Zimbra Environment on a Suse Linux Enterprise Server 10 with Samba and LDAP. I can create users through the Admin Console without problems. However, I cant connect a user to the Domain I created.

    I'M following

    Here Im stuck at "Creating Linux and Samba users using Zimbra Admin UI". When I run
     getent passwd
    , I get a list where at the end my user shows up:

    Now I already cant su to the user. When I try, I get

    su: user user2 does not exist
    When I try
    smbclient -U user2 //myserver/user2
    it prompts me for password; once I enter it, I get

    session setup failed: NT_STATUS_LOGON_FAILURE
    Theres a samba log file showing me
    [2010/02/22 23:56:06, 2] passdb/pdb_ldap.c:init_sam_from_ldap(640)
      init_sam_from_ldap: Entry found for user: user2
    [2010/02/22 23:56:06, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
      pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
    [2010/02/22 23:56:06, 1] auth/auth_util.c:make_server_info_sam(876)
      User user2 in passdb, but getpwnam() fails!
    [2010/02/22 23:56:06, 0] auth/auth_sam.c:check_sam_security(331)
      check_sam_security: make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER'
    Does anybody know what the problem is? Im wondering if the ":*:" entry in the passwd is somehow wrong?

    Last edited by Paulatia; 02-23-2010 at 02:43 AM.

  2. #2
    Join Date
    Feb 2010
    Rep Power


    well, I'm pretty sure your command "getent passwd" is supposed to return
    but then again, I don't think that's the problem...

    could you post your pam configuration files?
    Last edited by zyrill; 02-22-2010 at 11:56 PM.

  3. #3
    Join Date
    Dec 2009
    Rep Power


    Im still fighting on this issue.... I had it working, but it seems like after restarting the server, I am back with the problem.

    I now get
    smbclient -U user //
    Enter user's password:
    session setup failed: NT_STATUS_LOGON_FAILURE
    with the interesting part in the log:

    [2010/03/05 16:53:07,  2] lib/smbldap.c:890(smbldap_open_connection)
      smbldap_open_connection: connection opened
    [2010/03/05 16:53:07,  3] lib/smbldap.c:1101(smbldap_connect_system)
      ldap_connect_system: successful connection to the LDAP server
    [2010/03/05 16:53:07,  2] passdb/pdb_ldap.c:571(init_sam_from_ldap)
      init_sam_from_ldap: Entry found for user: user
    [2010/03/05 16:53:07,  3] smbd/sec_ctx.c:210(push_sec_ctx)
      push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
    [2010/03/05 16:53:07,  3] smbd/uid.c:428(push_conn_ctx)
      push_conn_ctx(0) : conn_ctx_stack_ndx = 1
    [2010/03/05 16:53:07,  3] smbd/sec_ctx.c:310(set_sec_ctx)
      setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
    [2010/03/05 16:53:07,  3] smbd/sec_ctx.c:418(pop_sec_ctx)
      pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
    [2010/03/05 16:53:07,  0] passdb/pdb_get_set.c:211(pdb_get_group_sid)
      pdb_get_group_sid: Failed to find Unix account for user
    [2010/03/05 16:53:07,  1] auth/auth_util.c:577(make_server_info_sam)
      User user in passdb, but getpwnam() fails!
    So I assume it finds the user in LDAP, but then checks GROUP somehow against passwd?

    My nssswitch.conf is:
    # Example:
    #passwd:    db files nisplus nis
    #shadow:    db files nisplus nis
    #group:     db files nisplus nis
    passwd:     ldap files
    shadow:     ldap files
    group:      ldap files
    #hosts:     db files nisplus nis dns
    hosts:      files dns
    # Example - obey only what nisplus tells us...
    #services:   nisplus [NOTFOUND=return] files
    #networks:   nisplus [NOTFOUND=return] files
    #protocols:  nisplus [NOTFOUND=return] files
    #rpc:        nisplus [NOTFOUND=return] files
    #ethers:     nisplus [NOTFOUND=return] files
    #netmasks:   nisplus [NOTFOUND=return] files
    bootparams: nisplus [NOTFOUND=return] files
    ethers:     files
    netmasks:   files
    networks:   files
    protocols:  files
    rpc:        files
    services:   files
    netgroup:   ldap files
    publickey:  nisplus
    automount:  files ldap
    aliases:    files nisplus

    Again, any help appreciated....
    Last edited by Paulatia; 03-10-2010 at 03:40 AM.

  4. #4
    Join Date
    Dec 2009
    Rep Power


    Anybody? My PAM-system-auth:

    # This file is auto-generated.
    # User changes will be destroyed the next time authconfig is run.
    auth        required
    auth        sufficient nullok try_first_pass
    auth        requisite uid >= 500 quiet
    auth        sufficient use_first_pass
    auth        required
    account     required broken_shadow
    account     sufficient uid < 500 quiet
    account     [default=bad success=ok user_unknown=ignore]
    account     required
    password    requisite try_first_pass retry=3
    password    sufficient md5 shadow nullok try_first_pass use_authtok
    password    sufficient use_authtok
    password    required
    session     optional revoke
    session     required
    session     optional
    session     [success=1 default=ignore] service in crond quiet use_uid
    session     required
    session     optional

Similar Threads

  1. Problem with some users, sharing documents.
    By a.ambrosio in forum Administrators
    Replies: 0
    Last Post: 11-25-2008, 11:40 PM
  2. [SOLVED] Upgraded to 5.0 OSS - Sendmail Problem
    By Chewie71 in forum Installation
    Replies: 11
    Last Post: 12-28-2007, 06:07 PM
  3. Problem creating distribution list
    By ost in forum Administrators
    Replies: 7
    Last Post: 03-24-2007, 05:02 PM
  4. Programmatically creating users
    By Umar in forum Developers
    Replies: 4
    Last Post: 01-23-2007, 09:31 AM
  5. Zimbra Installation Problem
    By AnilKumarYalla in forum Developers
    Replies: 0
    Last Post: 09-10-2006, 09:33 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts