[Samba] Trying to join a Windows 2003 domain

Jeremy Phillips jeremy.phillips at wpni.com
Mon Dec 8 22:17:35 GMT 2003

Hey group I'm trying to join a windows 2003 AD domain with Samba 3.0 and
Solaris 9. When I run the net ads join command

root# net ads join -U Administrator%password

I get returned to the root# with out joining the domain.


When I run the net join -S=server -U Administrator%password I get the
following response:


net join -S Server -U Administrator%password 


realm must be set in smb.conf for ADS join to succeed.

ADS join did not work, falling back to RPC...

Joined domain "Domain."


The server joins the domain but I get the following error in 2003:


The session setup from computer 'Server' failed because the security
database does not contain a trust account 'Server$' referenced by the
specified computer.  


Any one have any ideas? My smb.conf file follows:


Global parameters


        workgroup = DOMAIN

        realm = DOMAIN.COM

        ads server =

        security = ADS

        password server =

        log level = 3

        log file = /var/log/samba/log.%m

        max log size = 100

        smb ports = 139 445

        announce as = NT Workstation

        name resolve order = host bcast

        client signing = Yes

        server signing = Yes

        client use spnego = Yes

        use spnego = Yes

        socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

        load printers = No

        os level = 10

        preferred master = No

        local master = No

        domain master = No

        dns proxy = No

        idmap uid = 10000-20000

        idmap gid = 10000-20000

        template shell = /bin/bash

        winbind separator = +

        winbind cache time = 2

        winbind use default domain = Yes

        template homedir = /home/%D/%U

        template shell = /bin/bash

        winbind enum users = yes

        winbind enum groups = yeS



        comment = Home Directories

        read only = No

        browseable = No



        path = /usr/local

        read only = Yes

        valid users = @Domain\"Domain Users"

        Admin users = @Domain\admins


More information about the samba mailing list