problem to join PDC with 2 samba(PDC and member)
Brunet Eric
ericb at maniasys.com
Thu Nov 15 09:41:03 GMT 2001
Actually, it runs a Samba PDC(2.2.0, called A) with MS
client(W98,NT4,W2000), all works fine.
But i want to join another samba(2.2.2, called B) in order to share a
printer for clients.
After read many many documents, i don't solve the problem:
This is kernel logs (debug flag to 1) when i try to access an resource
of B with an account of PDC:
>[2001/11/15 18:47:28, 0] rpc_client/cli_netlogon.c:cli_net_auth2(160)
> cli_net_auth2: Error NT_STATUS_ACCESS_DENIED
>[2001/11/15 18:47:28, 0] rpc_client/cli_login.c:cli_nt_setup_creds(72)
> cli_nt_setup_creds: auth2 challenge failed
>[2001/11/15 18:47:28, 0]
smbd/password.c:connect_to_domain_password_server(1371)
> connect_to_domain_password_server: unable to setup the PDC
credentials to machine MAISON. Error was : NT_STATUS_ACCESS_DENIED.
>[2001/11/15 18:47:28, 0] smbd/password.c:domain_client_validate(1591)
> domain_client_validate: Domain password server not available.
>[2001/11/15 18:47:28, 1] smbd/password.c:pass_check_smb(546)
> Couldn't find user 'ericb' in passdb.
>[2001/11/15 18:47:28, 1] smbd/password.c:pass_check_smb(546)
> Couldn't find user 'ericb' in passdb.
>[2001/11/15 18:47:28, 1] smbd/reply.c:reply_sesssetup_and_X(995)
> Rejecting user 'ericb': authentication failed
i follow docs:
- create machine account on PDC for B
# uadduser -n -d /dev/null -s /bin/false B$
# smbpassword -a -m B
- join B into PC
# smbpasswd -J OFFICE -m A
i had this message:
>2001/11/15 15:42:09 : change_trust_account_password: Changed password
for domain OFFICE.
>Joined domain OFFICE.
The first message is normal?? if yes: which password i must change??
machine account don't have password!
=====================================
this a part of smb.conf of samba PDC:
character set = ISO8859-1
smb passwd file = /etc/samba/smbpasswd
passwd program = /usr/bin/passwd %u
remote announce = 192.168.3.255
domain master = yes
dns proxy = no
encrypt passwords = yes
logon path = \\%L\%U\profile
name resolve order = wins lmhost bcast
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
printcap name = /etc/printcap
wins support = yes
max log size = 0
hosts allow = 192.168.3.
preferred master = yes
logon script = %U_logon.bat
announce version = 4.2
interfaces = 192.168.3.0/24
passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n
\*passwd:*all*authentication*tokens*updated*successfully*
security = user
domain logons = yes
unix password sync = Yes
workgroup = OFFICE
server string = OFFICE DOMAIN PRIMARY CONTROLLER
local master = yes
log file = /var/log/samba/%m.log
wins proxy = no
load printers = yes
username map = /etc/samba/smbusers
os level = 20
default = global
mangled names = no
=====================================
this a part of smb.conf of samba(member):
client code page = 850
netbios name = BACKUP
workgroup = OFFICE
hosts allow = 192.168.3.
security = domain
"""""""""""""""""
password server = MAISON
""""""""""""""""""""""""
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
interfaces = 192.168.3.0/24
remote announce = 192.168.3.255
; local master = no
; os level = 33
domain master = no
preferred master = no
; domain logons = yes
; logon script = %m.bat
# run a specific logon batch file per username
; logon script = %U.bat
; logon path = \\%L\Profiles\%U
; name resolve order = wins lmhosts bcast
; wins support = yes
; wins server = w.x.y.z
; wins proxy = yes
dns proxy = no
=====================================
last question:
is it possible: 2 samba: 1 PDC and 1 member ???
Because in docs, faqs archive list... i read NT for PDC and samba for
member (vice versa) but never my situation.
PLEASE help :~(
More information about the samba-ntdom
mailing list