insufficient access rights
Matthew Geddes
musicalcarrion at gmail.com
Tue Mar 16 12:42:19 MDT 2010
I'm assuming it's Samba4 you're running on your domain controller, but this
will apply to anything from Microsoft from 2003 (R2?) and later from memory.
It's an LDAP error, as opposed to an error over some of the RPC calls
involved and I suspect it's probably happening when the XP client tries to
set the servicePrincipalName and dNSHostName attributes on the machine's
trust account.
Unless this is done with a more privileged account than a normal user, AD
will prevent you from making the change unless the client host's domain name
is within the same domain as the domain controller or something along those
lines.
On 16 March 2010 03:16, Anton Löthman <takayama123 at hotmail.com> wrote:
>
> Im trying to join my domain on a xp computer. When trying to join as a
> normal user, i get this error.
> Failed to modify record CN=KOFFEINMASKIN,OU=test,DC=local,DC=test,DC=lan:
> error in module acl: insufficient access rights (50)
> However, i can join the domain as an administrator, is this normal? Sounds
> quite strange.
>
> _________________________________________________________________
> Hotmail: Trusted email with powerful SPAM protection.
> https://signup.live.com/signup.aspx?id=60969
>
More information about the samba-technical
mailing list