[Samba] PDC disconnected until restart (NT_STATUS_NO_LOGON_SERVER -
or so)
Olaf Grewe
ogrewe at fahrradstation.de
Mon Jun 30 22:09:37 GMT 2003
Hi,
We experience an every-now-and-then problem with our samba PDC. For a couple of days or so, the PDC runs just fine. Then, one after another, the workstations (Win9x, NT4/SP6a, Win2000/SP3) complain about the PDC not being there and refuse to logon users (naturally). The only workstation that's still able to see and connect to the PDC is the one that's on the same broadcast domain. An smbclient -L CLIENT -U username then yields an NT_STATUS_NO_LOGON_SERVER (or so) error. A simple /etc/init.d/samba/restart gets every workstation back on the domain until the next time.
Our setup is as follows: About 15 workstations are on five different subnets. Four of them connect via an ISDN router to the fifth. This 'backbone' has a bandwidth of 64K for each subnet and has a rather high latency (takes about 7 sec until smbclient is done). The samba PDC (2.2.3a) runs under Debian stable, it gets updated on a regular basis via apt-get update/upgrade. A second samba server (formerly the PDC) does it's job as a file server. The PDC does logon-scripts, policies, shares and domain authentication, no printing, no profiles.
In case anybody is interested, I'll attach the smb.conf and a log.nmbd that covers a perion in which at least one workstation (UNION) already lost the domain connectivity.
Any input would be very much appreciated. Thanks in advance
Olaf
-------------- next part --------------
# Samba config file created using SWAT
# from developer.rrrrrrrrration.de (192.168.1.2)
# Date: 2003/03/24 00:13:56
# Global parameters
[global]
workgroup = RRRRRRRATION
netbios name = RRRRROLIS
server string = %h server (Samba %v)
encrypt passwords = true
obey pam restrictions = Yes
# password server = RRRRROLIS
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n .
log level = 3
syslog = 0
log file = /var/log/samba/log.%m
max log size = 1000
name resolve order = wins bcast
domain admin group = ogrewe root @domadmin
add user script = /usr/sbin/adduser --force-badname --firstuid 10000 -gid 500 --disabled-login --no-create-home --home /dev/null --shell /bin/false --quiet --gecos NT-Workstation %u
logon drive = M:
# logon path = \\%L\Profiles\%U.pds
logon path =
logon home =
domain logons = Yes
os level = 65
preferred master = True
domain master = True
dns proxy = No
wins support = Yes
remote announce = 192.168.2.255 192.168.3.255 192.168.4.255 192.168.5.255
invalid users =
logon script = logon.bat
[homes]
comment = Home Directories
create mask = 0700
directory mask = 0700
browseable = No
read only = No
[Allgemein]
comment = Allgemeines Verzeichnis
path = /samba/Allgemein
read only = No
create mask = 0770
directory mask = 0770
[printers]
comment = All Printers
path = /tmp
create mask = 0700
printable = Yes
browseable = No
[Profiles]
comment = User Profiles
path = /samba/profiles
read only = No
create mask = 0600
browseable = Yes
[netlogon]
comment = The domain logon service
path = /samba/netlogon
browseable = No
[CD-ROM]
comment = CD-ROM-Laufwerk
path = /var/autofs/misc/cd
More information about the samba
mailing list