Then, anyone can tell me about "unable to join domain"??
Luke Kenneth Casson Leighton
lkcl at switchboard.net
Tue Jun 1 16:21:22 GMT 1999
ah. PDCSERVER is _your_ name for the server (due to the lmhost entry).
however, the machine at 172.17.1.1 is probably an nt box not a samba box
and is probably not called PDCSERVER.
luke
On Tue, 1 Jun 1999, Justo Alonso Achaques wrote:
>
>
> On Tue, 1 Jun 1999, Greg Dickie wrote:
>
> Ok. The ouput of command: smbpasswd -j MYDOMAIN -r PDCSERVER -D 10
>
> do_reseed: got 40 bytes from /dev/urandom.
> resolve_name: Attempting lmhosts lookup for name PDCSERVER<0x20>
> getlmhostsent: lmhost entry: 127.0.0.1 localhost
> getlmhostsent: lmhost entry: 172.17.5.207 SAMBA
> getlmhostsent: lmhost entry: 172.17.1.1 PDCSERVER
> Connecting to 172.17.1.1 at port 139
> write_socket(4,76)
> write_socket(4,76) wrote 76
> Sent session request
> got smb length of 1
> size=1
> smb_com=0x0
> smb_rcls=0
> smb_reh=0
> smb_err=0
> smb_flg=0
> smb_flg2=0
> smb_tid=0
> smb_pid=0
> smb_uid=0
> smb_mid=0
> smt_wct=0
> smb_bcc=0
> modify_trust_password: machine PDCSERVER rejected the session setup. Error
> was : code 131.
> 1999/06/01 13:01:01 : change_trust_account_password: Failed to change password
> for domain MYDOMAIN.
> Unable to join domain MYDOMAIN.
>
>
> >
> > On 01-Jun-99 justo at creditoycaucion.es wrote:
> > > Greg Dickie wrote:
> > >
> > >> OK my NT admin. skills are weak (I just use samba) but if you just add the
> > >> name
> > >> of the samba machine in the server manager for the domain, the password on
> > >> that
> > >> account should be initialized to the correct password. I was wrong, it seems
> > >> there is no way to set the password in server-manager so just create the
> > >> account and then try to join.
> > >
> > > Well, my NT admin skills are least than yours, sure. I added the machine
> > > account in Server Manager,
> >
> > good
> >
> > > I added a user account in User Manager for Domain with the name of my
> > > netbios
> > > name of the Samba
> > > Server (in upper case, with and without $ appended), and the password is
> > > the
> > > netbios name (in lower case).
> > > This user account, have permission to add machines to the domain.
> >
> > oh yuck, get rid of that username, it should not be required. The server
> > manager should be fine.
> >
> > >
> > > Nothing. The error are the same, ever:
> > >
> > > # smbpasswd -j MYDOMAIN -r PDCSERVER
> > > modify_trust_password: machine PDCSERVER rejected the session setup. Error
> > > was
> > >: code 131.
> > > 1999/06/01 09:46:15 : change_trust_account_password: Failed to change
> > > password
> > > for domain MYDOMAIN.
> > > Unable to join domain MYDOMAIN.
> >
> >
> > try doing smbpasswd -j MYDOMAIN -r PDCSERVER -D 10
> >
> > and send that output
> >
> > Greg
> >
> > > #
> > >
> > > Justo.
> > >
> > >>
> > >> As I read your previous mail it looks like you tried that.... What was the
> > >> error you got again?
> > >>
> > >> Greg
> > >>
> > >> On 31-May-99 Justo Alonso Achaques wrote:
> > >> >
> > >> >
> > >> > On Mon, 31 May 1999, Greg Dickie wrote:
> > >> >
> > >> >> Did you create the machine account for the samba machine on the NT PDC
> > >> >> and
> > >> >> set
> > >> >> the password to be the machine name in lower case?
> > >> >
> > >> > Umm??.. Please can you explain this more comprensive?? ;))
> > >> >
> > >> > I don't understand.
> > >> >
> > >> > I create the account on the PDC in upper case (the PDC doesn't allow me
> > >> > in lower case). And in the command line, DOMAIN and PDCSERVER type in
> > >> > upper case.
> > >> >
> > >> >>
> > >> >> This is probably why smbpasswd -r <NT PDC> -j <DOMAIN> is failing.
> > >> >>
> > >> >>
> > >> >> Greg
> > >> >>
> > >> >> On 31-May-99 Justo Alonso Achaques wrote:
> > >> >> >
> > >> >> >
> > >> >> > On Mon, 31 May 1999, Tomek Jarosinski wrote:
> > >> >> >
> > >> >> >> > I wan't install how PDC, only that the Samba server join to the
> > >> >> >> > domain
> > >> >> >> >
> > >> >> >> Hello,
> > >> >> > Hello
> > >> >> >>
> > >> >> >> Read carefully all samba nt faq docs and encryption.txt docs.
> > >> >> >> Important:
> > >> >> >> 1. Samba has to be set with encrypted passwords
> > >> >> > Ok
> > >> >> >
> > >> >> >> 2. You have to make accounts for every pc and add with smbpasswd -a -m
> > >> >> >> wsname
> > >> >> >
> > >> >> > But with -a -m params, you create the machine account in the Samba
> > >> >> > PDC
> > >> >> > server, and I wan't that the Samba are a PDC, only a NT server, which
> > >> >> > pass the auth to the PDC (a NT box)
> > >> >> >
> > >> >> > I make de account for the samba server in the PDC of the domain
> > >> >> >
> > >> >> >> 3. Does your samba server is also wins server for your domain ? Better
> > >> >> >> do it.
> > >> >> >
> > >> >> > I have other wins server. Support in samba server is off.
> > >> >> > But wins server = 172.17.1.1
> > >> >> >
> > >> >> >> 4. You need a correct smb.conf
> > >> >> >
> > >> >> > Well.... I want this.. !! ;)))
> > >> >> >
> > >> >> > When I execute the command:
> > >> >> ># smbpasswd -j MYDOMAIN -r pdcserver
> > >> >> > modify_trust_password: machine PDCSERVER rejected the session setup.
> > >> >> > Error
> > >> >> > was : code 131.
> > >> >> > 1999/05/31 15:30:26 : change_trust_account_password: Failed to change
> > >> >> > password for domain MYDOMAIN.
> > >> >> > Unable to join domain MYDOMAIN.
> > >> >> >#
> > >> >> >
> > >> >> >>
> > >> >> >> I am using this:
> > >> >> >
> > >> >> > well, this is a smb.conf to a Samba PDC server, isn't it???
> > >> >> >>
> > >> >> >> [global]
> > >> >> >> workgroup = PPMW
> > >> >> >> encrypt passwords = Yes
> > >> >> >> log file = /usr/local/samba/var/log.%m.%U
> > >> >> >> max log size = 100
> > >> >> >> time server = Yes
> > >> >> >> load printers = No
> > >> >> >> character set = iso8859-1
> > >> >> >> logon script = login.bat
> > >> >> >> logon path = \\%N\profiles\%U
> > >> >> >> logon drive = H:
> > >> >> >> domain logons = Yes
> > >> >> >> os level = 65
> > >> >> >> preferred master = Yes
> > >> >> >> domain master = Yes
> > >> >> >> wins support = Yes
> > >> >> >> invalid users = root
> > >> >> >> dos filetimes = Yes
> > >> >> >> dos filetime resolution = Yes
> > >> >> >> fake directory create times = Yes
> > >> >> >>
> > >> >> >> [homes]
> > >> >> >> comment = Homes
> > >> >> >> read only = No
> > >> >> >> guest ok = Yes
> > >> >> >> browseable = No
> > >> >> >>
> > >> >> >> [netlogon]
> > >> >> >> comment = Logons Files
> > >> >> >> path = /usr/local/samba/netlogon
> > >> >> >> read only = No
> > >> >> >> guest ok = Yes
> > >> >> >> locking = No
> > >> >> >>
> > >> >> >> [profiles]
> > >> >> >> path = /opt/win/profiles
> > >> >> >> read only = No
> > >> >> >> guest ok = Yes
> > >> >> >>
> > >> >> >> Good luck !
> > >> >> >> --
> > >> >> >> Have a nice day !
> > >> >> >> Tomek Jarosinski
> > >> >> >>
> > >> >>
> > >> >> ---------------------------------------------------------------------
> > >> >> Greg Dickie
> > >> >> Just A Guy*
> > >> >> *from discreet (the logic is gone)
> > >> >> Montreal
> > >> >> (514) 954-7171
> > >> >> greg at discreet.com
> > >> >>
> > >> >>
> > >>
> > >> ---------------------------------------------------------------------
> > >> Greg Dickie
> > >> Just A Guy*
> > >> *from discreet (the logic is gone)
> > >> Montreal
> > >> (514) 954-7171
> > >> greg at discreet.com
> >
> > ---------------------------------------------------------------------
> > Greg Dickie
> > Just A Guy*
> > *from discreet (the logic is gone)
> > Montreal
> > (514) 954-7171
> > greg at discreet.com
> >
> >
>
>
<a href="mailto:lkcl at samba.org" > Luke Kenneth Casson Leighton </a>
<a href="http://www.cb1.com/~lkcl"> Samba and Network Development </a>
<a href="http://samba.org" > Samba Web site </a>
=====================================================================
Luke Kenneth Casson Leighton | Direct Dial : (678) 443-6183
Systems Engineer / ISS XForce Team | ISS Front Desk: (678) 443-6000
Internet Security Systems, Inc. | ISS Fax : (678) 443-6477
http://www.iss.net/ *Adaptive Network Security for the Enterprise*
ISS Connect - International User Conference - May '99
=====================================================================
More information about the samba-ntdom
mailing list