[Samba] NetLogin error 5722 / Domain password server not available.

Michael Bartosh mbartosh at mac.com
Wed Jan 8 19:05:03 GMT 2003

When W2K clients try to access a samba server joined to the domain, 
we get a NETLOGIN 5722 event:

The session setup from the computer SAMBA failed to authenticate. The 
name of the account referenced in the security database is SAMBA$. 
The following error occured:
Access is denied.

The samba side of things is a bit more verbose (note error at bottom of page)

I've found numerous references to this error online, but no 
solutions. One post suggested re-joining the domain, which I've 
attempted- the join succeeds, but authentication still fails.

Join process:

a) Add pre-Win2K account with AD Users and computers
b) sudo smbpasswd -j EXAMPLE -r W2K -U Administrator%passwd
c) in smb.conf:
		security = domain
		password server = W2K

[2003/01/05 16:49:38, 3] 
   Connecting to at port 445
[2003/01/05 16:49:38, 4] 
   cli_net_req_chal: LSA Request Challenge from W2K to SAMBA: 965B45EE4F419A71
[2003/01/05 16:49:38, 4] 
[2003/01/05 16:49:38, 4] 
[2003/01/05 16:49:38, 4] 
   cli_net_auth2: srv:\\WI2K acct:SAMBA$ sc:2 mc: SAMBA chal 
B58AF439B186C221 neg: 1ff
[2003/01/05 16:49:38, 0] 
   cli_net_auth2: Error NT_STATUS_ACCESS_DENIED
[2003/01/05 16:49:38, 0] 
   cli_nt_setup_creds: auth2 challenge failed
[2003/01/05 16:49:38, 0] 
   connect_to_domain_password_server: unable to setup the PDC 
credentials to machine W2K. Error was : NT_STATUS_OK.
[2003/01/05 16:49:38, 0] 
   domain_client_validate: Domain password server not available.

More information about the samba mailing list