[clug] Server questions

Jsparksaa at cs.com Jsparksaa at cs.com
Mon Sep 11 14:56:02 GMT 2006

>>> -----Original Message-----
>>> From: linux-bounces+kane=areujoking.com at lists.samba.org 
>>> [mailto:linux-bounces+kane=areujoking.com at lists.samba.org] On 
>>> Behalf Of Jsparksaa at cs.com
>>> Sent: Monday, 11 September 2006 11:51 AM
>>> To: linux at lists.samba.org
>>> Subject: RE: [clug] Server questions
>>> Jsparksaa at cs.com wrote:
>>> >all,
>>> >
>>> >  I have a new Collax server I am evaluationg for a 
>>> not-for-profit.  CXS is a small business server that competes 
>>> with MSFT SBS and it will replace a very old NT4.0 server.  
>>> Remote admin is done through firefox and it uses wizards.  
>>> LDAP was installed during the inital installation and this is 
>>> my first actual use of ldap.  I made the server a Primary 
>>> Domain Controller and I am trying to join an XP pc into the 
>>> domain.  I created two users on cxs with a matching login ids 
>>> to the XP machine.

>>That would create pass-through authentication, not domain authentication.

  What would create pass-through authentification??  On the XP machine I tried to change the network from workgroup "X" to Domain "Y" and I was prompted for a username and password.  The resuld was a login failure: user unknown.

>>The questions I would be asking are...
>>Do you have to join the XP machines to the domain?  (try it and see)

 I want the CXS server to appear on the network as a NT server and the way I read it, CXS has the ability to act as an NT PDC.  This will give me a central login administration, as opposed to to "workgroup" type of network where each PC stores user passwords.  A person jumping from one PC to another could potentially have more than one password in a workgroup.

(the server that is now running is more than 12 years old at the not-for-profit, and it was a used/ donated machine when it arrived.)

>>Do you need an account for the PC's as well as the users? (check any
>>security logs that may exist)
>>XP also has other peculiar behaviours where a client cannot access/login to
>>a domain if:
>>(a) the time difference on the machines is more than 7 minutes.
>>(b) the default gateway and DNS are not set to address of the DC, thus
>>causing requests to end up being broadcasted and then blackhold. (set static
>>IP's and options pointed to the new server and see if this helps.

  The time set may be an issue.  I recall now that I have not verified the time on the new server.  The installation process did not ask for the time or timezone.

   I stated at the beginning of my message that I am new to LDAP.  I am thinking that there is an ldap admin password??

  I have been playing with ldappasswd.  If I issue ldappasswd -A (prompt me for my password), (1) I am prompted for my 'old password.'  I am logged into 'admin,' and I enter that password. (2) I am prompted to reenter the old password.  (3) I then receive a message stating the some authentification has been started. (sorry I do not recal the exact message)  I am then prompted for "my password."  I do not know what my password.  It is not the root password and it is not the admin password.  

  Is there an ldap admin password?  THe installation process was automated, I only entered information regarding the selection of the harddisk to be used.  

>>linux mailing list
>>linux at lists.samba.org

  Thanks for the hints.


More information about the linux mailing list