[Samba] XP Joining Samba Domain

[_Chris McKeever_]

I have successfully joined the XP machine to the domain.  The strange part
is, that it only wanted to be joined if it connected to the PDC and not the
BDC.

The way it is set-up is that the XP machine and a BDC is in one branch and
the PDC is in another.  Every time I would try to connect via the BDC, it
would return a value ACCESS DENIED

I stopped the smb service on the BDC, and got it to connect via the PDC.  I
then got it to log into the domain using the BDC for authentication..I made
sure of this by looking at the recent log.machine-name files for the BDC and
PDC and it only showed up in the BDC.

So I am wondering if this is expected behavior?? That it can only join via
the PDC?


Additionally, some notes on the topic to help others...after connecting, I
started to recieve these windows messages at logon:

Cannot locate server copy of your profile and am attempting to log you in
with you local profile.....

Cannot find the local profile and is logging in with temporary profile.

cannot locate your roaming profile (read only) and is attempting to log you
on with your local profile.


Some of this I found to be with the SID changing between the NT network and
the new SAMBA controlled network.  I needed to reassign the local copies of
the profiles security accounts, and that took care of that.

Additionally, since I am not using roaming profiles, I wanted to turn those
messages off.  Using gpedit.msc and changing the following keys solved all
those messages boxes from appearing and it only using the local profile:

local computer policy->computer->system->user profile

only allow user local profile ENABLED
prevent roaming profile changes from propagating to the server ENABLED
do not check ownership of raoming profile folder ENABLED

> -----Original Message-----
> From: Buchan Milne [mailto:bgmilne at cae.co.za]
> Sent: Friday, May 16, 2003 8:00 AM
> To: samba at lists.samba.org
> Cc: Chris McKeever
> Subject: Re: [Samba] XP Joining Samba Domain - Cry For Help
> 
> 
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> > Message: 18
> > Date: Fri, 16 May 2003 03:52:59 -0500
> > From: Chris McKeever <cgmckeever at prupref.com>
> > Subject: [Samba] XP Joining Samba Domain - Cry For Help
> > To: samba at lists.samba.org
> > Message-ID: <5F71B3C180C8D4119F3200B0D049A7AE01E72DB0 at PRUPREF-MAIL>
> > Content-Type: text/plain;	charset="iso-8859-1"
> >
> > It is way too late to be wrestling with this, but being the 
> obsessive
> > compulsive I am.....
> >
> > I can not get an XP machine to join a samba-ldap domain
> >
> > The machine account has been made
> > The XP registry and local policies have been set
> >
> > I continue to get 'specified domain does not exist'
> >
> 
> Either the name of the workgroup that the WindowsXP box is in is the
> same as the domain you are trying to join, or you have other name
> resolution problems (which can be solved by using WINS normally).
> 
> I suspect the former. Change the workgroup name to anything that is
> different from your domain name, apply, and then join the 
> domain. (this
> problem is not samba-specific BTW).
> 
> Buchan
> 
> - --
> |--------------Another happy Mandrake Club member--------------|
> Buchan Milne                Mechanical Engineer, Network Manager
> Cellphone * Work            +27 82 472 2231 * +27 21 8828820x202
> Stellenbosch Automotive Engineering         http://www.cae.co.za
> GPG Key                   http://ranger.dnsalias.com/bgmilne.asc
> 1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.1 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
> 
> iD8DBQE+xODrrJK6UGDSBKcRAldUAJ4951Wmj71tiEtutFba74MJSwmvagCeLSzr
> cTfSnarKwH1FJ/0PIAobSWo=
> =EBR9
> -----END PGP SIGNATURE-----
>