[Samba] Add Machine Failed

John H Terpstra jht at samba.org
Sun Jun 29 04:11:09 GMT 2003 

On Sat, 28 Jun 2003 cmc at cat.savycat.com wrote:


The smbpasswd file may not exist. Log on as root, then execute:

	smbpasswd -a root

After prompting for the password twice this account should be added to a
newly created smbpasswd file. This is the account you must use to add
Windows clients to the domain, you also need this password to do it.

- John T.

> I know I am getting tiresome to this list, but I can't see what I am doing
> wrong, which is obviously something.  I am new to samba as far as setting
> it up as a PDC.  I am not having trouble accessing sanba shares when I set
> my computer to be part of a workgroup, but when I try to configure samba
> server as a PDC, i get the following message:
>
> The account used is a computer account.  Use your global or local user
> account to access this server.
>
> I have added the following line to smb.conf:
>
> add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u
>
> The domain I am trying to join is not the same as the workgroup I am trying
> to leave.
>
> Savy is my machine name. I see the following in the savy.log file every time
> I try to join the domain:
>
> [2003/06/28 18:23:41, 0] passdb/pdb_smbpasswd.c:pdb_getsampwnam(1369)
>   unable to open passdb database.
> [2003/06/28 18:23:41, 0] passdb/pdb_smbpasswd.c:add_smbfilepwd_entry(575)
>   add_smbfilepwd_entry: unable to open file.
> [2003/06/28 18:23:41, 0]
> rpc_server/srv_samr_nt.c:_api_samr_create_user(1929)
>   Failed to add entry for user savy$.
>
> [2003/06/28 18:23:42, 0] rpc_server/srv_netlog_nt.c:get_md4pw(176)
>   get_md4pw: Workstation savy$: no account in domain
>
> My smb.conf contains the following :
>
> [global]
>
> # workgroup = NT-Domain-Name or Workgroup-Name
>
>    workgroup = boostus
>    netbios name = alvarado
>    os level = 64
>    domain master = yes
>    local master = yes
>    preferred master = yes
>    security = user
>    encrypt passwords = yes
>    domain logons = yes
>    logon drive = h:
>    logon home = \\alvarado\home\%u
>
> # server string is the equivalent of the NT Description field
>    server string = Samba Server
>
> # than setting them up individually then you'll need this
>    printcap name = /etc/printcap
>    load printers = yes
>
> # It should not be necessary to spell out the print system type unless
> # yours is non-standard. Currently supported print systems include:
> # bsd, sysv, plp, lprng, aix, hpux, qnx, cups
>    printing = cups
>
> # this tells Samba to use a separate log file for each machine
> # that connects
>    log file = /var/log/samba/%m.log
>
> # Put a capping on the size of the log files (in Kb).
>    max log size = 0
>
> # Security mode. Most people will want user level security. See
> # security_level.txt for details.
>    security = user
>
> # You may wish to use password encryption. Please read
> # ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation.
> # Do not enable this option unless you have read those documents
>    encrypt passwords = yes
>    smb passwd file = /etc/samba/smbpasswd
>
> # NOTE2: You do NOT need these to allow workstations to change only
> #        the encrypted SMB passwords. They allow the Unix password
> #        to be kept in sync with the SMB password.
>    unix password sync = Yes
>    passwd program = /usr/bin/passwd %u
>    passwd chat = *New*password* %n\n *Retype*new*password* %n\n
> *passwd:*all*authentication*tokens*updated*successfully*
>
> add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M
> %u
>
>    pam password change = yes
>    obey pam restrictions = yes
>
> # Most people will find that this option gives better performance.
> # See speed.txt and the manual pages for details
>    socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
>
>    wins support = yes
>
> # DNS Proxy - tells Samba whether or not to try to resolve NetBIOS names
> # via DNS nslookups. The built-in default for versions 1.9.17 is yes,
> # this has been changed in version 1.9.18 to no.
>    dns proxy = no
>
> #============================ Share Definitions ==============================
> [homes]
>    comment = Home Directories
>    browseable = no
>    writable = yes
>    valid users = %S
>    create mode = 0664
>    directory mode = 0775
> # If you want users samba doesn't recognize to be mapped to a guest user
> ; map to guest = bad user
>
>
> # Un-comment the following and create the netlogon directory for Domain
> Logons
> [netlogon]
>    comment = Network Logon Service
>    path = /home/netlogon
>    guest ok = yes
>    writable = no
>    share modes = no
>
> # NOTE: If you have a BSD-style print system there is no need to
> # specifically define each individual printer
> [printers]
>    comment = All Printers
>    path = /var/spool/samba
>    browseable = no
> # Set public = yes to allow user 'guest account' to print
>    guest ok = no
>    writable = no
>    printable = yes
>
> tia,
> cmc
>
>

-- 
John H Terpstra
Email: jht at samba.org

More information about the samba mailing list