[Samba] net rpc vampire problems

Daniel Kasak dkasak at nusconsulting.com.au
Mon Dec 15 03:02:18 GMT 2003 

Hi all.

I'm trying to migrate our NT4 domain to Samba-3.0.1-rc3.

My smb.conf:

[global]
    netbios name = vp
    workgroup = NUSAUS
    server string = Samba Server %v
    bind interfaces only = true
#    interfaces = 192.168.0.1/24
    interfaces = 10.146.1.100/24
    passdb backend = tdbsam

    log level = 5
    log file = /var/log/samba3/log.%m
    max log size = 50
    name resolve order = wins lmhosts bcast
    socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
    printcap name = cups
    add user script = /usr/sbin/useradd -s /bin/false '%u'
    delete user script = /usr/sbin/userdel '%s'
    add group script = /usr/sbin/groupadd %g && getent group '%g'|awk 
-F: '{print $3}'
    delete group script = /usr/sbin/groupdel '%g'
    add user to group script = /usr/bin/gpasswd -a '%u' '%g'
    delete user from group script = /usr/bin/gpasswd -d '%u' '%g'
    set primary group script = /usr/sbin/usermod -g '%g' '%u'
    domain logons = Yes
    os level = 33
    preferred master = Yes
    domain master = No
    wins support = Yes
    printer admin = @adm
    printing = cups
    preserve case = No
    logon drive =
    logon home =
    logon script = drives.bat

    [netlogon]
    comment = Network Logon Service

I can join the domain ( as long as I specify the IP address with the -I 
flag ).
When I run the 'vampire' command, I get the following errors for each 
machine / user:

Creating account: DKASAK$
Could not create posix account info for 'DKASAK$'
Creating account: dkasak
[2003/12/15 13:44:00, 0] utils/net_rpc_samsync.c:fetch_account_info(497)
  Could not find unix group 4294967295 for user dkasak (group 
SID=S-1-5-21-667748849-896033114-1233803906-513)

Each user already has an account set up on the computer ( I'm already 
running a mail server ), but the machine trust account creation 
shouldn't be failing.
The users are imported into samba, and I can see them with 'pdbedit -L', 
however when I move the samba server & a test PC off onto another 
network ( and set 'Domain Master' to 'Yes' and change the 'interfaces' 
line ) and try to log on to the domain, I get an error that the machine 
trust account doesn't exist, or the password for the account is incorrect.

The trust account doesn't seem to be created at all. Any idea why?

-- 
Daniel Kasak
IT Developer
NUS Consulting Group
Level 5, 77 Pacific Highway
North Sydney, NSW, Australia 2060
T: (+61) 2 9922-7676 / F: (+61) 2 9922 7989
email: dkasak at nusconsulting.com.au
website: http://www.nusconsulting.com.au

More information about the samba mailing list