Hallo SirTux,
ja die Ausgabe wurde gekürzt. Jedoch ist der Samba Account aktiviert, habe nochmal die “fast” vollständige Auagabe angefügt:
[code]root@DC01:/home/Administrator# univention-ldapsearch uid=steffen
extended LDIF
LDAPv3
base <dc=corp,dc=xxxxx,dc=yyyyy> (default) with scope subtree
filter: uid=steffen
requesting: ALL
steffen, users, corp.xxxxx.yyyyy
dn: uid=steffen,cn=users,dc=corp,dc=xxxxx,dc=yyyyy
uid: steffen
krb5PrincipalName: steffen@CORP.xxxxx.yyyyy
objectClass: krb5KDCEntry
objectClass: person
objectClass: automount
objectClass: top
objectClass: inetOrgPerson
objectClass: sambaSamAccount
objectClass: organizationalPerson
objectClass: univentionPWHistory
objectClass: univentionMail
objectClass: univentionSAMLEnabled
objectClass: shadowAccount
objectClass: krb5Principal
objectClass: posixAccount
objectClass: univentionObject
uidNumber: 2026
sambaAcctFlags: [U ]
krb5MaxLife: 86400
shadowLastChange: 17204
cn: steffen
sambaMungedDial: bQAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIABkA
AEAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAUAAFABoACA
ABAEMAdAB4AEMAZgBnAFAAcgBlAHMAZQBuAHQANTUxZTBiYjAYAAgAAQBDAHQAeABDAGYAZwBGAGw
AYQBnAHMAMQAwMDAwMDEwMA==
krb5MaxRenew: 604800
mail: steffen@xxxxx.yyyyy
description: steffen
loginShell: /bin/bash
univentionObjectType: users/user
displayName: steffen
mailPrimaryAddress: steffen@xxxxx.yyyyy
sambaSID: S-1-4-2026
gecos: steffen
sn: steffen
pwhistory: $……
homeDirectory: /home/steffen
gidNumber: 5001
sambaPrimaryGroupSID: S-1-5-21-2679543563-3726997285-661520206-513
krb5KDCFlags: 126
krb5KeyVersionNumber: 8
sambaPwdLastSet: 1487063465
search result
search: 3
result: 0 Success
numResponses: 2
numEntries: 1[/code]
root@DC01:/home/Administrator# univention-s4connector-list-rejected
Traceback (most recent call last):
File "/usr/sbin/univention-s4connector-list-rejected", line 161, in <module>
main()
File "/usr/sbin/univention-s4connector-list-rejected", line 123, in main
False
File "/usr/lib/pymodules/python2.7/univention/s4connector/s4/__init__.py", line 790, in __init__
univention.s4connector.ucs.__init__(self, CONFIGBASENAME, property, baseConfig, listener_dir)
File "/usr/lib/pymodules/python2.7/univention/s4connector/__init__.py", line 482, in __init__
self.open_ucs()
File "/usr/lib/pymodules/python2.7/univention/s4connector/__init__.py", line 515, in open_ucs
self.lo = univention.admin.uldap.access(host=host, port=port, base=self.baseConfig['ldap/base'], binddn=binddn, bindpw=bindpw, start_tls=2, follow_referral=True)
File "/usr/lib/pymodules/python2.7/univention/admin/uldap.py", line 238, in __init__
self.lo = univention.uldap.access(host, port, base, binddn, bindpw, start_tls, follow_referral=follow_referral)
File "/usr/lib/pymodules/python2.7/univention/uldap.py", line 150, in __init__
self.__open(ca_certfile)
File "/usr/lib/pymodules/python2.7/univention/uldap.py", line 189, in __open
self.lo.simple_bind_s(self.binddn, self.__encode_pwd(self.bindpw))
File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 879, in simple_bind_s
res = self._apply_method_s(SimpleLDAPObject.simple_bind_s,*args,**kwargs)
File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 860, in _apply_method_s
return func(self,*args,**kwargs)
File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 215, in simple_bind_s
resp_type, resp_data, resp_msgid, resp_ctrls = self.result3(msgid,all=1,timeout=self.timeout)
File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 476, in result3
resp_ctrl_classes=resp_ctrl_classes
File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 483, in result4
ldap_result = self._ldap_call(self._l.result4,msgid,all,timeout,add_ctrls,add_intermediates,add_extop)
File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 106, in _ldap_call
result = func(*args,**kwargs)
ldap.INVALID_DN_SYNTAX: {'info': 'invalid DN', 'desc': 'Invalid DN syntax'}