TNG as BDC to a TNG PDC

Christopher Friday fridacw at auburn.edu
Thu Apr 13 20:09:53 GMT 2000 

Ok folks,

	Here's what I've got.  My PDC is a RedHat 6.1 box with TNG 2.3 and 
seems to be working fine (except for the occasional quirky behavior).  
Now, I have added a second RH6.1 machine which I wish to use as my 
BDC. However, when I try to do a samsync per the instructions on the 
TNG website( 
http://www.kneschke.de/projekte/samba_tng/faq/samba_bdc.php3 ), it 
fails when I run the command 'createuser YOURSAMBASERVERNAME$ -s \j'; 
at first it failed because it said the the \j option required an 
option, so I tried adding the name of the domain after the switch and 
this seemed to get things further, but it failed after creating the 
account (I assume as it was trying to join the new machine to the 
domain).  I assumed, of course, that YOURSAMBASERVERNAME refers to the 
name of the BDC.

	I am including the smb.conf and the log.smb from both machines.  Does 
anyone see any obviously stupid mistakes?  Any insights?


Thanks,
Chris



-------------- next part --------------
[2000/04/13 14:03:54, 1] smbd/server.c:main(693)
  smbd version TNG-alpha started.
  Copyright Andrew Tridgell 1992-1998
Failed to set socket option SO_KEEPALIVE (Error Socket operation on non-socket)
Failed to set socket option TCP_NODELAY (Error Socket operation on non-socket)
file_init: Information only: requested 10000 open files, 1014 are available.
error connecting to 131.204.144.20:445 (Connection refused)
error connecting to 131.204.144.20:445 (Connection refused)
cli_nt_setup_creds: auth2 challenge failed.  status: c0000022
domain_client_validate: credentials failed (\\LINUS)
SMB LM/NT Password did not match!

-------------- next part --------------
[global]

#NetBIOS name isn't needed if it's the same as the hostname
netbios name = GUTENBURG
workgroup = WILMORE

#flat files that map Unix groups to NT type groups. 
#these files take the form unix_group = `Windows NT group''
domain group map = /opt/samba-tng/private/domaingroup.map
domain alias map = /opt/samba-tng/private/domainalias.map

#Domain controllers use user security and we need
#encrypted passwords (see ENCRYPTION.txt) 
security = user
domain logons = yes
encrypt passwords = yes 

#we need to specify the PDC on the BDC
password server = LINUS 

#we don't need to win browser elections if there is a PDC
os level = 20 
domain master = no
preferred master = no 
local master = no

#WINS is the equivalent of DNS for NetBIOS. 
#There can only be one WINS server i a samba controlled domain
wins support = no
time server = no

#the next lines are equivalent to the various profile details
#found in NT's User Manager
#logon script = login.bat
logon drive = H:
logon home = \\LINUS\%U
logon path = \\LINUS\profile\%U

#share all home directories 
#[homes]
#browseable = no 
#writable = yes
#comment = Users' home directories

#set up netlogon share for system policies and login scripts
#[netlogon]
#path = /opt/samba-tng/netlogon 
#writable = no
#guest ok = no 
#comment = BDC netlogon share

#a public share
[public]
path = /opt/samba-tng/public
browseable = yes
public = yes
comment = Public Share

-------------- next part --------------
[2000/04/13 13:49:30, 1] smbd/server.c:main(679)
  smbd version TNG-alpha started.
  Copyright Andrew Tridgell 1992-1998
file_init: Information only: requested 10000 open files, 1014 are available.
authorise_login: TODO. split function, it's 6 levels!
authorise_login: TODO. split function, it's 6 levels!
authorise_login: TODO. split function, it's 6 levels!

-------------- next part --------------
[global]

#NetBIOS name isn't needed if it's the same as the hostname 
netbios name = LINUS 
workgroup = WILMORE

#flat files that map Unix groups to NT type groups. 
#these files take the form unix_group = `Windows NT group'' 
domain group map = /opt/samba-tng/private/domaingroup.map 
domain alias map = /opt/samba-tng/private/domainalias.map 

#Domain controllers use user security and we need encrypted 
#passwords (see ENCRYPTION.txt) 
security = user 
domain logons = yes 
encrypt passwords = yes 

#All password changing from windows to update Linux password
#unix password sync = Yes
#passwd program = /usr/bin/passwd %u
#passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *passwd:*all*authentication*tokens*updated*successfully*

#And in order for us to be *sure* to win browser elections 
os level = 65 
domain master = yes 
preferred master = yes 
local master = yes 

#WINS is the equivalent of DNS for NetBIOS. 
wins support = yes 
time server = yes 

#the next lines are equivalent to the various profile details 
#found in NT's User Manager 
#logon script = login.bat 
logon drive = H: 
logon home = \\LINUS\%U
logon path = \\LINUS\profiles\%U

#share all home directories 
[homes] 
browseable = no 
writable = yes 
comment = Users' home directories 

#set up netlogon share for system policies and login scripts 
[netlogon] 
path = /opt/samba-tng/netlogon 
writable = no 
guest ok = no 
comment = PDC netlogon share 

#the profiles share
#to create automatic subdirs for the different users
#chmod 1777 /opt/samba-tng/profile
[profiles]
path = /opt/samba-tng/profiles
writeable = yes

#a public share 
[public] 
path = /opt/samba-tng/public 
browseable = yes 
public = yes 
comment = Public share 


#[printers]
#	comment = All Printers
#	path = /var/spool/samba
#	print ok = Yes
#	browseable = No
#
#[bubba]
#	comment = 
#	path = /var/spool/samba
#	read only = No
#	guest ok = Yes
#	print ok = Yes
#	printer name = bubba
#	oplocks = No
#	share modes = No

More information about the samba-ntdom mailing list