RFC on new network
Tim Fletcher
tim at night-shade.demon.co.uk
Mon Aug 14 20:08:45 GMT 2000
I am setting up a network for the school I work for and I wondered if I
could pick this lists collective brain for some ideas / comments:
Some background:
Aims:
2000 users with home dirs
NT logins
linux clients running citrix on top to give NT desktop
Some (<100) win9x machines, can be NT but I find win9x easier to clone
Thoughts:
My ideal solution is to have a bdc/filestore machine and a pdc both
running samba, I can swollow my pride and use NT on the pdc if people
think it is a better plan.
The reason I would like to see a mostly samba/linux solution is that I
need usernames visable to linux for mail / web serving via NIS.
The advantages I see to NT pdc is that the $%^%$^%$^ exchange box we got
"requimended" for staff use by our consultents uses the domain list for
management (I think not tried it)
Current state:
I have various flavours of samba working:
2.0.x is fine for fileserving / printing
Head has compiled / started, not played with thou
TNG has compiled and runs, I can get domain logins to work and create
machine accounts fine.
I have a few problems with passwords and the bdc thou, which I have as I
was writting this have had an idea on.
Does anyone use RedHat 6.2 with tng, and have they tinked with the nobody
account?
(hazel is the pdc / walnut the bdc)
I am getting messages like this when I try to login the domain:
hazel lsarpcd[8119]: WARNING: _lsa_open_secret: couldn't open secret_db. Possible attack?
hazel lsarpcd[8119]: uid=0, gid=0, euid=99, egid=99
hazel lsarpcd[8119]: _lsa_open_secret failed with 0xc0000022
and when I try to mount a share from the bdc:
walnut smbd[7273]: domain_client_validate: credentials failed (\\PDC)
walnut smbd[7273]: SMB LM/NT Password did not match!
but the pdc let my login?
--
Tim Fletcher .~.
/V\ L I N U X
nightshade at solanum.net // \\ >Don't fear the penguin<
tim at night-shade.demon.co.uk /( )\
^^-^^
Do not meddle in the affairs of dragons,
for you are crunchy and taste good with ketchup.
More information about the samba-ntdom
mailing list