samba4 net join with pre-existing account
cnvkiran at gmail.com
Mon Jul 12 09:00:24 MDT 2010
I tried using "net ads join" but it still prompts for password. Below
listed are the parameters in smb.conf file for your reference.
Somewhere I read about using "net rpc oldjoin", I'm not sure if this
is relevant with current versions of samba. But this fails saying
"Failed to join domain".
workgroup=WORKGROUP (same as domain name)
realm = DOMAIN( domain name)
security = ads
password server = 10.130.18.5
./net ads join -s /usr/local/samba/etc/smb.conf1 -U administrator
Enter administrator's password:
Thanks for the responses,
On Mon, Jul 12, 2010 at 1:59 AM, Sam Liddicott <sam at liddicott.com> wrote:
> On 11/07/10 20:39, kiran kumar wrote:
> I was also keen on knowing if this is possible. In our case, we use
> Samba-3 'winbindd' to authenticate the users with the help of Windows
> Domain Controller.
> Is there any specific reason for having to create an account through
> "net join" and not use a pre-created account in Domain Controller. My
> only concern is in specifying the administrators password using "net
> Have you tried using the samba 3 "net ads" commands?
> This help page is related to what you want to do but doesn't give the
> specific examples you need.
> On Fri, Jul 9, 2010 at 9:56 AM, Sam Liddicott <sam at liddicott.com> wrote:
> Is it possible to have samba4 join a domain without providing the
> administrator password (as can be done on windows) by pre-creating the
> computer account before provisioning?
> Normally I have my samba4 server join a domain with:
> $ net join $WORKGROUP member --realm=$REALM -U Administrator
> and provide a domain Administrator password
> I read here: http://support.microsoft.com/kb/150493
> that it should be possible to pre-create the computer account on the domain
> controller with something like:
> c:\> netdom add $SAMBAHOST
> (which works)
> and then on the client:
> c:\> NETDOM /Domain:MYDOMAIN MEMBER $SAMBAHOST /JOINDOMAIN
> The samba4 equivalent "net join" doesn't seem to have an option that doesn't
> require an administrator password.
> Possibly samba3 "net ads" can handle this - but I recall that samba4 "net
> join" uses netbios to join the domain instead of the rpc's used by samba3.
> I think I've now danced around the question; is the answer:
> 1. I need to bring "net ads" to samba 4
> 2. something else
> *Sam's signature*
> Sam's signature
More information about the samba-technical