Getting the Samba PDC into the domain
Luke Kenneth Casson Leighton
lkcl at samba.org
Thu Jan 13 20:48:09 GMT 2000
if it's not broken, smbclient and rpcclient take a -n NETBIOSNAME option.
check this out, first, though.
On Fri, 14 Jan 2000, Len Harold wrote:
> Guys,
>
> No matter what I try I can't get my Samba server to join the domain, at
> least not as it's netbios name. It keeps trying to use it DNS name. I
> can tell this because smbpasswd -j creates the mac file with dns name
> (MRCTEST.FARADAY.mac) and the error output says it is looking for FARADAY
> instead of the netbios name SMBTEST. It does nearly the same thing if I
> use rpcclient as Luke prefers.
>
> I do have "dns proxy = 0" in the smb.conf and a lmhost file that should
> translate the dns name or ip address to the netbios name. Error output
> and smb.conf are below.
>
> Len
>
> error
> ====================================================
>
> doing parameters ...
> pm_process() returned Yes
> lp_servicenumber: couldn't find homes
> getpwnam(%u)
> Building passwd hash table
> Building passwd hash table for the first time
> %u not found
> getpwnam(%u)
> %u not found
> getpwnam(%U)
> %U not found
> getpwnam(%u)
> %u not found
> getpwnam(%U)
> %U not found
> lp_servicenumber: couldn't find %u
> codepage_initialise: client code page = 850
> load_client_codepage: loading codepage 850.
> Adding chars 0x85 0xb7 (l->u = True) (u->l = True)
> Adding chars 0xa0 0xb5 (l->u = True) (u->l = True)
> Adding chars 0x83 0xb6 (l->u = True) (u->l = True)
> Adding chars 0xc6 0xc7 (l->u = True) (u->l = True)
> Adding chars 0x84 0x8e (l->u = True) (u->l = True)
> Adding chars 0x86 0x8f (l->u = True) (u->l = True)
> Adding chars 0x91 0x92 (l->u = True) (u->l = True)
> Adding chars 0x87 0x80 (l->u = True) (u->l = True)
> Adding chars 0x8a 0xd4 (l->u = True) (u->l = True)
> Adding chars 0x82 0x90 (l->u = True) (u->l = True)
> Adding chars 0x88 0xd2 (l->u = True) (u->l = True)
> Adding chars 0x89 0xd3 (l->u = True) (u->l = True)
> Adding chars 0x8d 0xde (l->u = True) (u->l = True)
> Adding chars 0xa1 0xd6 (l->u = True) (u->l = True)
> Adding chars 0x8c 0xd7 (l->u = True) (u->l = True)
> Adding chars 0x8b 0xd8 (l->u = True) (u->l = True)
> Adding chars 0xd0 0xd1 (l->u = True) (u->l = True)
> Adding chars 0xa4 0xa5 (l->u = True) (u->l = True)
> Adding chars 0x95 0xe3 (l->u = True) (u->l = True)
> Adding chars 0xa2 0xe0 (l->u = True) (u->l = True)
> Adding chars 0x93 0xe2 (l->u = True) (u->l = True)
> Adding chars 0xe4 0xe5 (l->u = True) (u->l = True)
> Adding chars 0x94 0x99 (l->u = True) (u->l = True)
> Adding chars 0x9b 0x9d (l->u = True) (u->l = True)
> Adding chars 0x97 0xeb (l->u = True) (u->l = True)
> Adding chars 0xa3 0xe9 (l->u = True) (u->l = True)
> Adding chars 0x96 0xea (l->u = True) (u->l = True)
> Adding chars 0x81 0x9a (l->u = True) (u->l = True)
> Adding chars 0xec 0xed (l->u = True) (u->l = True)
> Adding chars 0xe7 0xe8 (l->u = True) (u->l = True)
> Adding chars 0x9c 0x0 (l->u = False) (u->l = False)
> Added interface ip=129.101.74.140 bcast=129.101.74.255 nmask=255.255.255.0
> Joining Domain as PDC
> trust_account_file_name: /opt/samba/etc/MRCTEST.FARADAY.mac
> trust_account_file_name: /opt/samba/etc/MRCTEST.FARADAY.mac
> do_dirrand: ...
> cli_connection_init: \\FARADAY \PIPE\NETLOGON
> copy_nt_creds: null creds
> cli_net_use_add
> copy_nt_creds: user domain nopw Yes flgs: 0
> cli_find: \\FARADAY
> copy_nt_creds: null creds
> cli_init_creds: ntlmssp_flgs: 0
> copy_nt_creds: user domain nopw Yes flgs: 0
> cli_init_creds: ntlmssp_flgs: 0
> resolve_srv_name: \\FARADAY
> resolve_name: Attempting lmhosts lookup for name FARADAY
> getlmhostsent: lmhost entry: faraday.mrc.uidaho.edu SMBTEST
> getlmhostsent: lmhost entry: samba.mrc.uidaho.edu SAMBA
> getlmhostsent: lmhost entry: macdiddy.mrc.uidaho.edu MACDIDDY
> getlmhostsent: lmhost entry: spica.mrc.uidaho.edu SPICA
> getlmhostsent: lmhost entry: chara.mrc.uidaho.edu CHARA
> getlmhostsent: lmhost entry: north.mrc.uidaho.edu NORTH
> getlmhostsent: lmhost entry: jpc.mrc.uidaho.edu JPC
> getlmhostsent: lmhost entry: jang.mrc.uidaho.edu JANG
> getlmhostsent: lmhost entry: vega.mrc.uidaho.edu VEGA
> getlmhostsent: lmhost entry: talitha.mrc.uidaho.edu TALITHA
> getlmhostsent: lmhost entry: 129.101.74.140 SMBTEST
> getlmhostsent: lmhost entry: 129.101.74.127 SAMBA
> getlmhostsent: lmhost entry: 129.101.74.34 MACDIDDY
> getlmhostsent: lmhost entry: 129.101.74.63 SPICA
> getlmhostsent: lmhost entry: 129.101.74.64 CHARA
> getlmhostsent: lmhost entry: 129.101.74.65 NORTH
> getlmhostsent: lmhost entry: 129.101.74.69 JPC
> getlmhostsent: lmhost entry: 129.101.74.70 JANG
> getlmhostsent: lmhost entry: 129.101.74.73 VEGA
> getlmhostsent: lmhost entry: 129.101.74.74 TALITHA
> resolve_name: Attempting host lookup for name FARADAY
> cli_establish_connection: FARADAY<00> connecting to FARADAY<20> (129.101.74.140) - [] with NTLMv1, nopw: Yes
> socket open succeeded. file name: /tmp/.smb.0/agent
> socket connect to /tmp/.smb.0/agent failed
> redirect FAILED, make direct connection
> Connecting to 129.101.74.140 at port 445
> error connecting to 129.101.74.140:445 (Invalid argument)
> Connecting to 129.101.74.140 at port 139
> error connecting to 129.101.74.140:139 (Invalid argument)
> cli_establish_connection: failed to connect to FARADAY<00> (129.101.74.140)
> cli_net_use_add: connection failed
> cli_net_use_del: \\FARADAY. force close: No
> cli_nt_setup_creds: request challenge failed
> 2000/01/13 12:07:44 : change_trust_account_password: Failed to change password for domain MRCTEST.
>
> smb.conf
> ====================================================
> [global]
> os level = 255
> announce as = NT Server
> workgroup = MRCTEST
> server string = MRC Test Server
> encrypt passwords = yes
> domain master = yes
> domain logons = yes
> logon script = \\%N\netlogon\logon.bat
> logon home = \\%N\%U
> logon path = \\%N\profiles\%U.pds
> logon drive = H:
> domain group map = /opt/samba/etc/domaingroup.map
> local master = yes
> prefered master = yes
> wins support = yes
> dns proxy = no
> name resolve order = lmhosts host bcast
> allow hosts = 129.101.74.0/255.255.255.0
> interfaces = 129.101.74.140/255.255.255.0
> bind interfaces only = true
> log level = 1
> debug level = 100
> debug timestamp = No
> security = user
> valid users = smbroot,guest
> writable = no
> read only = yes
> public = no
> guest account = guest
> guest ok = no
> directory mode = 0700
> create mode = 0600
> browseable = yes
> printing = hpux
> load printers = yes
> time server = true
> auto services = %u
> mangled map = (*;1 *)
> lock directory = /opt/samba/var/locks
> share modes = yes
> socket options = TCP_NODELAY
> read prediction = yes
>
>
> ; Domain login
>
> [netlogon]
> comment = Logon Scripts
> browseable = no
> guest ok = yes
> public = yes
> path = /opt/samba/logon
> oplocks = false
>
>
> ; Profiles
>
> [profiles]
> comment = User Profiles
> path = /home/profiles
> browseable = yes
> read only = no
> writeable = yes
> guest ok = yes
>
>
> ; Home Directories
>
> [homes]
> comment = Home Directories
> browseable = no
> read only = no
> writable = yes
> preexec = /sbin/cat /etc/motd | /opt/samba/bin/smbclient -M %m -I %I &
>
>
> ; Printers
>
> [laser]
> comment = General Printer
> path = /var/tmp
> printable = yes
> public = yes
>
> [facp]
> comment = Faculty Printer
> path = /var/tmp
> printable = yes
> public = yes
> valid users = @sys, at mrc, at WWW,smbroot
>
> [facp2]
> comment = Faculty 2 Printer
> path = /var/tmp
> printable = yes
> valid users = @sys, at mrc, at WWW,smbroot
>
> [secp]
> comment = Secretary Printer
> path = /var/tmp
> printable = yes
> valid users = @sys, at mrc, at WWW,smbroot
>
> [studp]
> comment = LACR Printer
> path = /var/tmp
> printable = yes
> public = yes
>
> [color]
> comment = LACR Color Laser
> path = /var/tmp
> printable = yes
> public = yes
>
> [facc2]
> comment = LACR Color Laser 2
> path = /var/tmp
> printable = yes
> valid users = @sys, at mrc,smbroot
>
> [gradp]
> comment = Printer in Analog Lab
> path = /var/tmp
> printable = yes
> public = yes
>
> [djet]
> comment = Plotter in Test Lab
> path = /var/tmp
> printable = yes
> valid users = @sys, at mrc,smbroot
>
>
> ; Drive exports
>
> [Linux]
> comment = Redhat
> path = /pc/linux
> valid users = lenny,smbroot
> oplocks = false
>
> [Web]
> comment = Web Pages
> path = /pc/web
> valid users = lenny,smbroot
> force group = WWW
> directory mode = 0775
> create mode = 0664
> writable = yes
>
>
> ; Temporary file space
>
> [Tmp]
> comment = Temporary file space
> path = /tmp
> read only = no
> writable = yes
> guest ok = yes
> public = yes
>
<a href="mailto:lkcl at samba.org" > Luke Kenneth Casson Leighton </a>
<a href="http://www.cb1.com/~lkcl"> Samba and Network Development </a>
<a href="http://samba.org" > Samba Web site </a>
<a href="http://www.iss.net" > Internet Security Systems, Inc. </a>
<a href="http://mcp.com" > Macmillan Technical Publishing </a>
ISBN1578701503 DCE/RPC over SMB: Samba and Windows NT Domain Internals
More information about the samba-ntdom
mailing list