Unable to login to NT PDC from Linuxbox

Mark Cooke mark at mmebs.co.uk
Fri Jan 4 04:27:03 GMT 2002 

Iam trying to setup winbindd on a linux box, so anyone who logs in can use 
their NT passwd and an account is then created on hte Linux box.

So far Ive installed Samba-2.2.2 from RedHat Rawhide.
Ive copied all the correct links across and edited my smb.conf file to 
include the following:

-------------------------------

[global]

# Windind configuration
    winbind separator = +
    winbind cache time = 10
    template shell = /bin/false
    template homedir = /home/%D/%U
    winbind uid = 10000-20000
    winbind gid = 10000-20000

# workgroup = NT-Domain-Name or Workgroup-Name
    workgroup = MMEBS

# Security mode. Most people will want user level security. See
# security_level.txt for details.
    security = domain

# Use password server option only with security = server
# The argument list may include:
#   password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name]
# or to auto-locate the domain controller/s
#   password server = *
    password server = THOR

# You may wish to use password encryption. Please read
# ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation.
# Do not enable this option unless you have read those documents
    encrypt passwords = yes
;   smb passwd file = /etc/samba/smbpasswd

------------------------

In /etc/nsswitch.conf put the following:

passwd:     files winbind nisplus
shadow:     files winbind nisplus
group:      files winbind nisplus

Also adding the following to '/etc/pam.d/system-auth'

auth       sufficient   /lib/security/pam_winbind.so use_first_pass
after the line which reads
auth       sufficient    /lib/security/pam_unix.so likeauth nullok

then I ran:

smbpasswd -j MMEBS -r THOR -U admin
password: password

That got accepted into the domain: joined domain MMEBS
This I checked again our PDC and the linuxbox (named scaramanga) is listed 
as part of the MMEBS domain.

I then started winbindd and checked the output of 'wbinfo -t'
which ouputed: secret is o.k

so I then checked the output of  'getent passwd' and 'getent group'
which reports all hte users and groups from hte NT PDC in hte MMEBS domain 
correctly.

So I then started  samba and the samba server is showing up in the MMEBS 
domain correctly, but Iam unable to log in.
so I then ran :

wbinfo -a admin+password
plaintext password authentication failed
Could not authenticate user admin+password with plaintext password
challenge/response password authentication failed
Could not authenticate user admin+password with challenge/response

and got the resonse listed above.
Ive enabled encrypted passwds in the smb.conf file, so thats o.k.

Also if I run wbinfo -m
It just takes me back to the prompt.

Could anyone possable point out where Iam going wrong please.

Thanks in advance

Mark


-----
----------
Mark Cooke
Internet Operations Technician
MM Group Ltd
Tel: 8141 (Internal)
Tel: (0117) 9168141 (External)
Email: mark at mmebs.co.uk
http://www.mmgroup.co.uk

More information about the samba-ntdom mailing list