MIgration.in HELL

Alfredo Ramos ralf at is.rice.edu
Tue Jul 11 22:11:32 GMT 2000 

Is the reverse possible? I mean, can samba-tng be joined by an NT BDC, and
use samsync on the samba server to sync the NT SAM with the samba password
file?

If I try to load NT as a BDC for a samba-tng domain, I can't go past the
prompt for the PDC and domain name. I get "Can not locate PDC".

I've been able to make the samba server join the NT PDC and issue
administrator commands. I've even had samba show up on Server Mgr on the
NT as a BDC. But when I try to promote the samba server to PDC, the NT
server complains "The RPC server is not available". I'm sure the RPC
server it is talking about is on the samba server because I hear activity
on the disk drive as soon as I issue the promote command.

What is the proper way to make samba a BDC for an NT PDC? If there is any.

Please help!

Thanks;

Al.

---------------------------------------------------------------------------------
                                           | Alfredo Ramos
This space available for rent.             | New Media & Student Computing
Get your product moving. Advertise here!   | Rice University.
                                           | Email: ralf at is.rice.edu
---------------------------------------------------------------------------------

On Tue, 4 Jul 2000, Luke Kenneth Casson Leighton wrote:

> hey dude, chill.  use samedit to join the samba server as a BDC, then
> issue a samsync command.  this will add every single PDC account to your
> samba server's BDC smbpasswd file.  the only thing you will have to _have_
> done, beforehand, is create the unix accounts.
> 
> _or_, do the process twice, and have a script parse the output the first
> time to get the usernames, have the script run adduser you get the
> picture.
> 
> luke
> 
> Script started on Fri Jun  9 04:11:17 2000
> [root at knight source]# bin/samedit -S changeme-nt4s -U root%test -l log
> Server:	\\CHANGEME-NT4S:	User:	root	Domain:	
> Connection:	OK
> 
> [root at CHANGEME-NT4S]$ use \\knight -Uroot%test -W knight
> use \\knight -Uroot%test -Wknight
> Server:	\\KNIGHT:	User:	root	Domain:	knight
> Connection:	OK
> 
> [knight\root at CHANGEME-NT4S]$ createuser knight$ -s -j domain
> createuser knight$ -s -j domain
> SAM Create Domain User
> Domain: DOMAIN Name: knight$ ACB: [S          ]
> Create Domain User: OK
> Join KNIGHT to Domain DOMAIN
> Set $MACHINE.ACC: OK
> 
> [knight\root at CHANGEME-NT4S]$ lsaquery
> lsaquery
> LSA Query Info Policy
> Domain Member     - Domain: DOMAIN (S-1-5-21-4070507235-114175824-2771791698)
> Domain Controller - Domain: DOMAIN (S-1-5-21-4070507235-114175824-2771791698)
> 
> [knight\root at CHANGEME-NT4S]$ samsync
> samsync
> 	SAM Database Sync
> 	-----------------
> Domain: DOMAIN
> Group: Domain Admins
> Group: Domain Users
> Group: Domain Guests
> Group: testgroup
> Group: testgroup2
> Group: testgroup3
> Group: testgroup5
> Group: testgroup6
> Group: testgroup7
> Account: Administrator
> {
> 	0x01, 0xFC, 0x5A, 0x6B, 0xE7, 0xBC, 0x69, 0x29, 
> 	0xAA, 0xD3, 0xB4, 0x35, 0xB5, 0x14, 0x04, 0xEE
> };
> {
> 	0x0C, 0xB6, 0x94, 0x88, 0x05, 0xF7, 0x97, 0xBF, 
> 	0x2A, 0x82, 0x80, 0x79, 0x73, 0xB8, 0x95, 0x37
> };
> Account: Guest
> {
> 	0xB3, 0xCC, 0x5A, 0x77, 0xA6, 0x8F, 0x64, 0x77, 
> 	0x61, 0x2A, 0x53, 0xE1, 0x2D, 0xFC, 0x18, 0x3B
> };
> {
> 	0xB3, 0xCC, 0x5A, 0x77, 0xA6, 0x8F, 0x64, 0x77, 
> 	0x61, 0x2A, 0x53, 0xE1, 0x2D, 0xFC, 0x18, 0x3B
> };
> Account: CHANGEME-NT4S$
> {
> 	0x17, 0x47, 0xDB, 0xE6, 0x1B, 0xA8, 0x60, 0x32, 
> 	0x1D, 0x1A, 0xEE, 0x2B, 0x53, 0xF6, 0x29, 0xEA
> };
> {
> 	0x5E, 0x6A, 0xBA, 0x10, 0xF7, 0xA2, 0x3F, 0xDC, 
> 	0xEF, 0x50, 0xBA, 0x30, 0x62, 0x75, 0xBF, 0x53
> };
> Account: NT4-1$
> {
> 	0x8F, 0xCA, 0x67, 0xCF, 0x5A, 0x9F, 0xEB, 0x7D, 
> 	0xB0, 0x6F, 0xDA, 0xCB, 0xE2, 0xEF, 0xDE, 0xAB
> };
> {
> 	0x6D, 0x60, 0xD6, 0x79, 0x43, 0xE7, 0x2C, 0xE3, 
> 	0x46, 0xC3, 0x4C, 0xD1, 0xD4, 0xC9, 0xD6, 0x2C
> };
> Account: root
> {
> 	0x01, 0xFC, 0x5A, 0x6B, 0xE7, 0xBC, 0x69, 0x29, 
> 	0xAA, 0xD3, 0xB4, 0x35, 0xB5, 0x14, 0x04, 0xEE
> };
> {
> 	0x0C, 0xB6, 0x94, 0x88, 0x05, 0xF7, 0x97, 0xBF, 
> 	0x2A, 0x82, 0x80, 0x79, 0x73, 0xB8, 0x95, 0x37
> };
> Account: knight$
> {
> 	0xBF, 0xFB, 0x57, 0x74, 0x20, 0x86, 0xF0, 0x83, 
> 	0x1A, 0xD1, 0x2E, 0xDD, 0xA1, 0x3A, 0x11, 0xFC
> };
> {
> 	0x92, 0x3A, 0x73, 0x26, 0xCA, 0xFC, 0x62, 0xAD, 
> 	0x7E, 0x25, 0x04, 0x32, 0x56, 0x2D, 0x2A, 0x41
> };
> 
> [knight\root at CHANGEME-NT4S]$ exit
> exit
> [root at knight source]# exit
> exit
> 
> Script done on Fri Jun  9 04:12:06 2000
> 
> 
> <a href=" mailto:lkcl at samba.org" > Luke Kenneth Casson Leighton    </a>
> <a href=" http://cb1.com/~lkcl"  > Samba and Network Development   </a>
> <a href=" http://samba.org"      > Samba Web site                  </a>
>  
> ISBN1578701503 DCE/RPC over SMB: Samba and Windows NT Domain Internals
> 
> 
>

More information about the samba-ntdom mailing list