SAMBA 3.0.10 Domain Member Problem

Williams Martinez wmartinez at neuquen.gov.ar
Thu Jan 13 18:10:19 GMT 2005 

Hi List

 

I'm trying to make a samba Server a Domain member of my W2003 Active
Directory.

 

Everything seems to be OK, but when I try to join the domain got this error:

 

$  net ads join -Udomain_admin%password

[2005/01/13 14:56:49, 0] libads/kerberos.c:get_service_ticket(335)

  get_service_ticket: kerberos_kinit_password
EGOV1$@NEUQUEN.GOV.AR at NEUQUEN.GOV.AR failed: Preauthentication failed

Segmentation fault        

 

Where EGOV1 is the machine I'm trying to add to the domain.

 

My smb.conf is as follow:

[global]

        unix charset = LOCALE

        workgroup = DPIN01

        realm = NEUQUEN.GOV.AR

        server string = Samba Server

        security = ADS

        log level = 1

        syslog = 0

        log file = /var/log/samba/%m

        max log size = 50

        printcap name = lpstat

        ldap ssl = no

        idmap uid = 10000-20000

        idmap gid = 10000-20000

        template primary group =

        template shell = /bin/bash

        winbind separator = +

        winbind trusted domains only = Yes

        printing = cups

        print command = /usr/bin/lp -d '%p' %s; rm %s

        lpq command = /usr/bin/lpstat -o '%p'

        lprm command = /usr/bin/cancel '%p-%j'

        lppause command = lp -i '%p-%j' -H hold

        lpresume command = lp -i '%p-%j' -H resume

        queuepause command = /usr/bin/disable '%p'

        queueresume command = /usr/bin/enable '%p'

 

 

My krb5.conf is:

[logging]

 default = FILE:/var/log/krb5libs.log

 kdc = FILE:/var/log/krb5kdc.log

 admin_server = FILE:/var/log/kadmind.log

 default_tgs_enctypes = rc4-hmac des-cbc-crc des-cbc-md5

 default_tkt_enctypes = rc4-hmac des-cbc-crc des-cbc-md5

 

 

 

[libdefaults]

 ticket_lifetime = 24000

 dns_lookup_realm = true

 dns_lookup_kdc = true

 default_realm = NEUQUEN.GOV.AR

 

[realms]

 

  NEUQUEN.GOV.AR = {

    kdc = tng-1.neuquen.gov.ar:88

    admin_server = tng-1.neuquen.gov.ar:749

    default_domain = neuquen.gov.ar

  }

 

 

[domain_realm]

 .neuquen.gov.ar = NEUQUEN.GOV.AR

 neuquen.gov.ar = NEUQUEN.GOV.AR

 

[kdc]

 profile = /var/kerberos/krb5kdc/kdc.conf

 

[appdefaults]

 pam = {

   debug = false

   ticket_lifetime = 36000

   renew_lifetime = 36000

   forwardable = true

   krb4_convert = false

 }                    

 

 

Any help will be greatly appreciated. Thanks

 

Williams Martinez

More information about the samba-technical mailing list