TNG as BDC to a TNG PDC
Christopher Friday
fridacw at auburn.edu
Thu Apr 13 20:09:53 GMT 2000
Ok folks,
Here's what I've got. My PDC is a RedHat 6.1 box with TNG 2.3 and
seems to be working fine (except for the occasional quirky behavior).
Now, I have added a second RH6.1 machine which I wish to use as my
BDC. However, when I try to do a samsync per the instructions on the
TNG website(
http://www.kneschke.de/projekte/samba_tng/faq/samba_bdc.php3 ), it
fails when I run the command 'createuser YOURSAMBASERVERNAME$ -s \j';
at first it failed because it said the the \j option required an
option, so I tried adding the name of the domain after the switch and
this seemed to get things further, but it failed after creating the
account (I assume as it was trying to join the new machine to the
domain). I assumed, of course, that YOURSAMBASERVERNAME refers to the
name of the BDC.
I am including the smb.conf and the log.smb from both machines. Does
anyone see any obviously stupid mistakes? Any insights?
Thanks,
Chris
-------------- next part --------------
[2000/04/13 14:03:54, 1] smbd/server.c:main(693)
smbd version TNG-alpha started.
Copyright Andrew Tridgell 1992-1998
Failed to set socket option SO_KEEPALIVE (Error Socket operation on non-socket)
Failed to set socket option TCP_NODELAY (Error Socket operation on non-socket)
file_init: Information only: requested 10000 open files, 1014 are available.
error connecting to 131.204.144.20:445 (Connection refused)
error connecting to 131.204.144.20:445 (Connection refused)
cli_nt_setup_creds: auth2 challenge failed. status: c0000022
domain_client_validate: credentials failed (\\LINUS)
SMB LM/NT Password did not match!
-------------- next part --------------
[global]
#NetBIOS name isn't needed if it's the same as the hostname
netbios name = GUTENBURG
workgroup = WILMORE
#flat files that map Unix groups to NT type groups.
#these files take the form unix_group = `Windows NT group''
domain group map = /opt/samba-tng/private/domaingroup.map
domain alias map = /opt/samba-tng/private/domainalias.map
#Domain controllers use user security and we need
#encrypted passwords (see ENCRYPTION.txt)
security = user
domain logons = yes
encrypt passwords = yes
#we need to specify the PDC on the BDC
password server = LINUS
#we don't need to win browser elections if there is a PDC
os level = 20
domain master = no
preferred master = no
local master = no
#WINS is the equivalent of DNS for NetBIOS.
#There can only be one WINS server i a samba controlled domain
wins support = no
time server = no
#the next lines are equivalent to the various profile details
#found in NT's User Manager
#logon script = login.bat
logon drive = H:
logon home = \\LINUS\%U
logon path = \\LINUS\profile\%U
#share all home directories
#[homes]
#browseable = no
#writable = yes
#comment = Users' home directories
#set up netlogon share for system policies and login scripts
#[netlogon]
#path = /opt/samba-tng/netlogon
#writable = no
#guest ok = no
#comment = BDC netlogon share
#a public share
[public]
path = /opt/samba-tng/public
browseable = yes
public = yes
comment = Public Share
-------------- next part --------------
[2000/04/13 13:49:30, 1] smbd/server.c:main(679)
smbd version TNG-alpha started.
Copyright Andrew Tridgell 1992-1998
file_init: Information only: requested 10000 open files, 1014 are available.
authorise_login: TODO. split function, it's 6 levels!
authorise_login: TODO. split function, it's 6 levels!
authorise_login: TODO. split function, it's 6 levels!
-------------- next part --------------
[global]
#NetBIOS name isn't needed if it's the same as the hostname
netbios name = LINUS
workgroup = WILMORE
#flat files that map Unix groups to NT type groups.
#these files take the form unix_group = `Windows NT group''
domain group map = /opt/samba-tng/private/domaingroup.map
domain alias map = /opt/samba-tng/private/domainalias.map
#Domain controllers use user security and we need encrypted
#passwords (see ENCRYPTION.txt)
security = user
domain logons = yes
encrypt passwords = yes
#All password changing from windows to update Linux password
#unix password sync = Yes
#passwd program = /usr/bin/passwd %u
#passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *passwd:*all*authentication*tokens*updated*successfully*
#And in order for us to be *sure* to win browser elections
os level = 65
domain master = yes
preferred master = yes
local master = yes
#WINS is the equivalent of DNS for NetBIOS.
wins support = yes
time server = yes
#the next lines are equivalent to the various profile details
#found in NT's User Manager
#logon script = login.bat
logon drive = H:
logon home = \\LINUS\%U
logon path = \\LINUS\profiles\%U
#share all home directories
[homes]
browseable = no
writable = yes
comment = Users' home directories
#set up netlogon share for system policies and login scripts
[netlogon]
path = /opt/samba-tng/netlogon
writable = no
guest ok = no
comment = PDC netlogon share
#the profiles share
#to create automatic subdirs for the different users
#chmod 1777 /opt/samba-tng/profile
[profiles]
path = /opt/samba-tng/profiles
writeable = yes
#a public share
[public]
path = /opt/samba-tng/public
browseable = yes
public = yes
comment = Public share
#[printers]
# comment = All Printers
# path = /var/spool/samba
# print ok = Yes
# browseable = No
#
#[bubba]
# comment =
# path = /var/spool/samba
# read only = No
# guest ok = Yes
# print ok = Yes
# printer name = bubba
# oplocks = No
# share modes = No
More information about the samba-ntdom
mailing list