[Samba] net ads info can't find the ldap server.

=?big5?B?TGF0cmVsbCBXYW5nIKT9xG269Q==?= Latrell.Wang at zyxel.com.tw
Fri Jan 26 08:26:37 GMT 2007 

I looked into the source code, and have some observations:
1.
I don't wrote the realm in my smb.conf, because I get the realm form net =
ads info.
Once I set realm in the smb.conf, net ads info worked.
Does it mean the realm is needed in smb.conf?
In libads\Ldap.c, the ads_try connect() do not have the realm value =
(ads->server.realm). Is there anything wrong in my environment?
Or the realm must be in smb.conf?

2. When I try to join domain, using net ads join =
-Uadministrator%password, I got the following message:

Using short domain name -- NAS
Failed to set servicePrincipalNames. Please ensure that
the DNS domain of this server matches the AD domain,
Or rejoin with using Domain Admin credentials.
Disabled account for 'NSAF933' in realm 'NAS.LOCAL'

I found the problem is in util\net_ads.c. The function =
net_set_machine_spn() do=20
Line:1001 status =3D ads_gen_mod(ads_s, new_dn, mods). It returns 20 and =
let the ADS_ERROR_OK() check fail. Mark the line join domain will be =
successfully.

Please give me some advise.

Thanks,
Latrell


-----Original Message-----
From: Latrell Wang =A4=FD=C4m=BA=F5=20
Sent: Wednesday, January 24, 2007 9:26 AM
To: 'Gerald (Jerry) Carter'
Cc: samba at lists.samba.org
Subject: RE: [Samba] net ads info can't find the ldap server.

Hi Jerry:
I've sent you yesterday, but it seems something wrong. I send it again.

Thanks,
Latrell.

-----Original Message-----
From: samba-bounces+zorg=3Dprobesys.com at lists.samba.org =
[mailto:samba-bounces+zorg=3Dprobesys.com at lists.samba.org] On Behalf Of =
Gerald (Jerry) Carter
Sent: Monday, January 22, 2007 10:08 PM
To: Latrell Wang =A4=FD=C4m=BA=F5
Cc: samba at lists.samba.org
Subject: Re: [Samba] net ads info can't find the ldap server.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Latrell Wang =A4=FD=C4m=BA=F5 wrote:

>   Failed to parse cldap reply


Can you send me a raw sniff from Wireshark?  And a level 10
debug log from 'net ads info'?





cheers, jerry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFtMUtIR7qMdg1EfYRAuqlAKCrMRHnPTF0lkJWzFqV7ASApjMyNgCeP4A+
dsmGJx76nEC30nf7qX64tko=3D
=3DBHrj
-----END PGP SIGNATURE-----
--=20
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

More information about the samba mailing list