[Samba] Samba 3b3 + ADS
Will Froning
wfroning at uop.edu
Tue Aug 5 23:13:17 GMT 2003
Solved.
Recompiled krb5 with openldap.
Will
On Thu, 31 Jul 2003 10:20:28 -0700
Will Froning <wfroning at uop.edu> wrote:
> > For your freebsd box: Did you install openldap? You can do that
> > from the ports tree. Then after configure, make sure you get
> > HAVE_LDAP, HAVE_LDAP_H in config.h. If not, try to give the ldap
> > header and library paths to the configure script.
>
> [cowers in shame] Yeah kinda forgot that one...
>
> Ok so I got ADS compiled in now, but I cannot join the domain.
>
> [SAMBA 3b3 BOX]
> marmar# /usr/local/bin/kinit Administrator at STK.REALM
> Administrator at STK.REALM's Password:
>
> marmar# net join -U Administrator
> Administrator password:
> [2003/07/31 08:43:48, 1] libsmb/clikrb5.c:ads_krb5_mk_req(267)
> krb5_cc_get_principal failed (No such file or directory)
> [2003/07/31 08:43:48, 1] libsmb/clikrb5.c:ads_krb5_mk_req(274)
> krb5_get_credentials failed for dc3$@STK.REALM (Unknown error:
> -1765328369)[2003/07/31 08:43:48, 1] utils/net_ads.c:ads_startup(176)
> ads_connect: Server is unavailable
> [2003/07/31 08:43:49, 1] utils/net.c:net_find_server(258)
> no server to connect to
>
> Unable to find a suitable server
> [2003/07/31 08:43:50, 1] utils/net.c:net_find_server(258)
> no server to connect to
>
> Unable to find a suitable server
>
> [DC3 LOG ENTRIES]
> Authentication Ticket Granted:
> User Name: Administrator
> Supplied Realm Name: STK.REALM
> User ID: STK\administrator
> Service Name: krbtgt
> Service ID: STK\krbtgt
> Ticket Options: 0x0
> Ticket Encryption Type: 0x17
> Pre-Authentication Type: 2
> Client Address: 10.10.9.13
>
>
> Service Ticket Request Failed:
> User Name:
> User Domain:
> Service Name: dc3$
> Ticket Options: 0x0
> Failure Code: 0xF
> Client Address: 10.10.9.13
>
> I have dc3 and dc2 shortname entries in /etc/hosts. Below is the
> smb.conf file relevant entries (I've tried it with and without the
> workgroup entry).
>
> [global]
> workgroup = STK
> realm = stk.realm
> security = ads
> netbios name = MARMAR
> encrypt passwords = yes
>
> I appreciate any help on this one. Please CC me on the reply.
>
> Thanks,
> Will
>
>
> --
> Will Froning
> Unix Sys. Admin.
> wfroning at uop.edu
--
Will Froning
Unix Sys. Admin.
(209)946-7470
(209)662-4725
wfroning at uop.edu
More information about the samba
mailing list