[Samba] Issue with Samba 3.0.28a and Active Directory

thomas62186218 at aol.com thomas62186218 at aol.com
Sun Apr 27 01:45:19 GMT 2008 

Hi all,


1.  We are using Linux kernel 2.6.20.11 64-bit and Samba 3.0.28a


2.  We are trying to connect from this linux machine to a Windows ADS
running on a separate Windows 2003 system (WINADS machine).


3.  Though we are able to retrieve the name of the WINADS machine from
linux (We see the name of the  machine in samba log file), we are
unable to access any of the users in the WINADS machine.


4.  The following is our smb.conf file


[global]

       preservecase              = yes

       log file                  = /var/log/samba/%m

       read raw                  = yes

       write raw                 = yes

       idmap gid                 = 600-20000

       socket options            = TCP_NODELAY IPTOS_LOWDELAY

       wins server               = 192.168.0.30

       encrypt passwords         = yes

       hosts allow               = 192.168.0.65

       realm                     = TESTADS.NET

       winbind use default domain = Yes

       level2 oplocks            = true

       max xmit                  = 65535

       template shell            = /bin/bash

       casesensitive             = yes

       Security                  = ads

       netbios name              = TESTNETBIOS

       oplocks                   = yes

       write cache size          = 262144

       server string             = tom

       idmap uid                 = 600-20000

       winbind enum users        = Yes

       winbind nested groups     = Yes

       defaultcase               = lower

       shortpreservecase         = yes

       workgroup                 = TESTWORKGROUP

       winbind enum groups       = Yes

       security                  = ads

       preferred master          = no

       max log size              = 50

       log level                 = 3

       password server          = 192.168.0.30



5.  The following is our lmhosts file


              127.0.0.1 localhost

              192.18.0.30 sridharg.TESTADS.NET


6.  The following is our KRB5.conf file


              [libdefaults]

              ticket_lifetime           = 24h

              forwardable               = yes

              default_realm             = TESTADS.NET

              dns_lookup_kdc            = false

              dns_lookup_realm          = false


              [logging]

              admin_server              = FILE:/var/log/kadmind.log

              default                   = FILE:/var/log/krb5libs.log

              kdc                       = FILE:/var/log/krb5kdc.log



              [realms]

              TESTADS.NET = {

              kdc = sridharg.TESTADS.NET

              admin_server =sridharg.TESTADS.NET

              default_domain = TESTADS.NET

              }


              [domain_realm]

              TESTADS.NET =TESTADS.NET

              .TESTADS.NET =TESTADS.NET



              [appdefaults]

              pam = {

              debug = false

                             ticket_lifetime = 36000

                             renew_lifetime = 36000

                             forwardable = true

              krb4_convert = false

              }



              [kdc]

              profile     = /var/kerberos/krb5kdc/kdc.conf



7.  We started smbd and nmbd service


8.  When we enter "net ads join -U sridharg at TESTADS.NET ", we are
prompted to enter the password.


              "sridharg at TESTADS.NET's password:  "


9.  After entering the password of sridharg (available on TESTADS.NET),
we are getting the following error .


              "Failed to join domain: Operations error" .



Your assistance is greatly appreciated. thanks!


-Thomas

--
To unsubscribe from this list go to the following URL and read the

instructions:  https://lists.samba.org/mailman/listinfo/samba

More information about the samba mailing list