Linux does not join NT-Domain

NITIN PANDE npande at bajajauto.co.in
Thu Oct 4 20:10:06 GMT 2001


Uwe,
I'm sorry! I should have posted the Win to Unix joining too.  Here it is:
Make sure you set up 'domain admin users' in smb.conf.  Map this account to root
in smbusers file and adding a user root to smbpasswd may also be necessary.
However, creating machine trust account through Windows Net->Properties
leads to disabled account.
Enable it with webmin or look at smbpasswd file - remove letter D at the right
side of appropriate string.  Then, close Net->Properties applets window and join
domain again without creating an account.

Uwe Dippel wrote:

> Dear Nitin Pande,
>
> thanks for your help ! - The approach is the one when joining WinNT to a
> Lin-Domain; but my problem is the other way round ...
>
> Thanks nevertheless,
>
> Uwe
>
> On Tue, 2001-10-02 at 17:43, NITIN PANDE wrote:
> > Uwe,
> > Create <machine_name$> Unix account with no shell, no home, no password...
> > And
> > # smbpasswd -a -m <machine_name>
> > Join domain without creating trust account from Win side.
> > HTH, Ciao
> >
> > Nitin Pande
> > Mail Administrator
> > Bajaj Auto Ltd.
> >
> > Uwe Dippel wrote:
> >
> > > I am sure, that it is my mistake. - I am trying to join an NT-Domain
> > > without success:
> > > smbpasswd -j DOMNAME
> > > gives the following result:
> > > "cli_net_auth2: Error NT_STATUS_ACCESS_DENIED
> > > cli_nt_setup_creds: auth2 challenge failed
> > > modify_trust_password: unable to setup the PDC credentials to machine
> > > LIB-DOMAIP-01. Error was : NT_STATUS_ACCESS_DENIED.
> > > 2001/10/02 13:08:06 : change_trust_account_password: Failed to change
> > > password for domain DOMNAME."
> > > The account for the NetBIOS-Name has been created; I tried with Security
> > > = Server and Security = Domain.
> > >
> > > Any hints?
> > >
> > > Uwe





More information about the samba-ntdom mailing list