Domain login problem...

Bolke de Bruin bolke at
Wed Oct 23 13:48:03 GMT 2002


On a side note (offtopic); I am using Win2K SP3 clients on Samba
and did not set signorseal to 0. Still I am not facing any problem.
Neither with joining domains neither while logging in.
I have been running it for over a year now and have seen all the service

packs without a glitch.
No slipstreamed installs though.



-----Oorspronkelijk bericht-----
Van: samba-technical-admin at
[mailto:samba-technical-admin at] Namens Vesa Jääskeläinen
Verzonden: woensdag 23 oktober 2002 15:00
Aan: samba-technical at
Onderwerp: Domain login problem...


I am using Samba 2.2.6 with LDAP-support compiled in under RH7.3. (same 
happened with 2.2.5)

I can logon from Win9x clients nicely to domain. I can usually
join domain under Win2k-sp3. But I can't logon to domain.

If I make local login to computer and then try to access shares,
it works correctly.

I can do logon to Linux with any user in LDAP. So nss_ldap & pam
should be correct. I do have two LDAP servers here. One is master LDAP
and then another is at samba server. Master LDAP-server replicates all
to samba server.

I can find computer from LDAP (<comp name>$). If I delete it from LDAP
and try 
to join again then it appears again there. So creating works (atleast
There could be problem in this procedure.

I am unsing smbldap-tools from samba package. And have configure master
server for write operations and samba server's ldap server for read

Also requiresingorseal has value 0.

I am running out of clues here... So does anyone known how this problem
be fixed? I can provide samba/tcpdump logs on request.

Vesa Jääskeläinen

-------- smb.conf -------

   log level = 5
   workgroup = TECHDOME
   netbios name = NORNOR
   server string = just testing
   log file = /var/log/samba/log.%m
   max log size = 50
   security = user
   encrypt passwords = yes
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
   local master = yes
   os level = 64
   domain master = yes 
   domain logons = yes
   wins server =
   dns proxy = no 
   domain admin group = @"Domain Admins" root

   ldap suffix = dc=somedomain,dc=com
   ldap admin dn = cn=manager,dc=somedomain,dc=com
   ldap port = 389
   ldap server =
   ldap ssl = no

   add user script = /usr/local/sbin/ -w %u

   comment = Home Directories
   browseable = no
   writable = yes

   comment = Network Logon Service
   path = /home/netlogon
   guest ok = yes
   writable = no
   share modes = no

   comment = Temporary file space
   path = /tmp
   read only = no
   public = yes

More information about the samba-technical mailing list