[Samba] winxppro/nt4 cant find my samba pdc

John H Terpstra jht at samba.org
Sat Feb 1 18:23:44 GMT 2003 

On Sat, 1 Feb 2003, earthtirol wrote:

> hi all
>
> i tryed to add winxppro/nt4 machines to my samba domain "pinguin.local"

Putting a '.' in a Windows domain name is a bad karma thing to do!
Suggest you keep the domain name to plain text and NO spaces either.

> dns is configured and wins lookup works
> authentification per user works fine
>
> but when i try to join my win boxes to the domain "pinguin.local" the nt4 box
> cant find the domaincontroller and winxp starts to search for the dns service
> record of the domaincrontroller.
>
> hans-peter
>
> #rh 80, samba-2.2.5
> #/etc/samba/smb.conf
> [global]
> 	workgroup = PINGUIN.LOCAL
>    server string = Samba Server
>    printcap name = /etc/printcap
>    printing = lprng
>    log file = /var/log/samba/%m.log
>    max log size = 0
> 	security = DOMAIN
        ^^^^^^^^^^^^^^^^^
Ok. So this box is a member of a domain called 'PINGUIN.LOCAL' for which
the domain controller is another machine. That is what this means!

If you want this machine to BE the domain controller you need:

	security = USER

You also need:

	domain logons = Yes
	os level = 32            (actually 32 or higher)

>    encrypt passwords = yes
>    smb passwd file = /etc/samba/smbpasswd
>    unix password sync = Yes
>    passwd program = /usr/bin/passwd %u
>    passwd chat = *New*password* %n\n *Retype*new*password* %n\n
> *passwd:*all*authentication*tokens*updated*successfully*
>    pam password change = yes
>   username map = /etc/samba/smbusers
>   obey pam restrictions = yes
>    socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
> 	local master = yes
> 	os level = 64
>    domain master = yes
> 	preferred master = yes
> 	domain logons = yes
>    wins support = yes
>    wins support = yes
>    dns proxy = no
> add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u
>
> [homes]
>    comment = Home Directories
>    browseable = no
>    writable = yes
>    valid users = %S
>    create mode = 0664
>    directory mode = 0775
>
> [netlogon]
>    comment = Network Logon Service
>    path = /export/smb/netlogon
>    guest ok = yes
>    writable = no
>    share modes = no
>
> [files]
> 	comment = test share
> 	path = /export/smb/files
> 	public = yes
> 	writeable = yes
> #END /etc/samba/smb.conf
>
>
> #named START
> $TTL 86400
> @       IN      SOA     samba01.pinguin.local. office.pinguin.local. (
>                         2003013101 ; serial
>                         28800 ; refresh
>                         7200 ; retry
>                         604800 ; expire
>                         86400 ; ttl
>                         )
>
>
>                 NS      samba01
>
>                 MX      10      samba01
>
> samba01		A	192.168.0.4	;the samba server
> test01		A	192.168.0.101	;the nt4 client
> #named END


Suggest you read the Entire-HOWTO-Collection link off the samba SWAT home
page. SWAT can be contacted on your local system (if it is installed and
enable), using a web browser pointed at: http://localhost:901


- John T.
-- 
John H Terpstra
Email: jht at samba.org

More information about the samba mailing list