Samba an NT40 Domain
Operator (SCHMIEDER it-solutions)
operator at SCHMIEDER.DE
Fri Mar 21 12:09:57 GMT 2003
we have 2 NT40-SP6a Servers, on as PDC, one as BDC togehter with Samba
2.4.7a in on Network Segment. All the user-accounts are on the PDC - so we
use winbind. The samba server should work as BDC in that domain an hold the
profiles an the homes. Everythin works mostly but sometimes the clients dont
get an login-server an logon with there own local profile. In that case the
enviroment-variable LOGONSERVER on the client is set to the local client.
The error message is "could not find a domain controller for the domain
...."
We tried out different os-levels (1, 31, 64) without success. In the case of
the failure login we get the message "Workstation xxx$: no account in domain
! But - the client should not use the samba as logon-server for the accounts
- the accounts should checked by the MS-controllers. Whe we use "domain
logons = No" we can no more fetch the usernames and groups via winbind.
A protoclo trace shows me an Unicast (get Mailslot) to the PDC an an answer
from samba !!
Any ideas ?
nmblookup -R -U PDC DOMAIN#1C
brings the right list of all Domain-Controllers
Here is the main part of the samba.conf
[global]
workgroup = COMPANY250
netbios name = SERV1
netbios aliases = SERV1
server string = BDC %h (Samba %v)
interfaces = 10.250.10.20
bind interfaces only = Yes
security = DOMAIN
encrypt passwords = Yes
update encrypted = Yes
map to guest = Bad User
password server = SERV2
username map = /etc/samba/user.map
unix password sync = No
admin log = Yes
log level = 0
log file = /var/log/samba/%m.log
max log size = 50
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
domain admin group = COMPANY250+Domänen-Admins
domain logons = Yes
#os level = 17
wins proxy = No
wins server = 1.2.10.22
#wins support = Yes
default service = global
time offset = 120
winbind uid = 10000-20000
winbind gid = 10000-20000
winbind separator = +
winbind cache time = 10
winbind use default domain = yes
admin users = COMPANY250+Administrator, COMPANY250+kpichel,
COMPANY250+install
printer admin = +COMPANY250+Domänen-Admins
printing = lprng
dns proxy = No
-------------- next part --------------
Diese Mail wurde im Hause SCHMIEDER it-solutions GmbH auf Viren überprüft !
More information about the samba-technical
mailing list