AW: [Samba] Help for Samba 3 and Win ADS

Dieter Wilkens D.Wilkens at kle.net
Wed Oct 29 08:26:33 GMT 2003 

Hi Denis,

I just tried this but still I can't log on the samba server with a domain user!

If I try to do so I get the error:

[2003/10/29 08:48:37, 0] auth/auth_util.c:make_server_info_info3(1017)
  make_server_info_info3: pdb_init_sam failed!

in the log file of the client on samba server...

Is there anytihng else I have to adjust on the samba server?
I sucessfully joined the domain with ADS and can see the server from my windows machine - but as soon as I try to connect I get the error (exept with one user that I created on the linux server....)!

Any ideas?

Here is my smb.conf

**********************************************************************

#======================= Global Settings =======================
[global]
        log file = /var/log/samba/log.%m
        server string = %h server (Samba %v)
        socket options = TCP_NODELAY
        encrypt passwords = yes
        security = ads
        realm = <MYREALM>
        workgroup = <MYDOMAIN>
        password server = <MYWINPDC>
        syslog = 0

#====================== Shares =================================
[daten]
comment = Daten auf Debian 
path = /daten
browsable = yes
guest ok = yes

**********************************************************************



-----Ursprüngliche Nachricht-----
Von: Denis M.J. [mailto:m21 at altern.org] 
Gesendet: Dienstag, 28. Oktober 2003 21:52
An: Dieter Wilkens
Cc: samba at lists.samba.org
Betreff: Re: [Samba] Help for Samba 3 and Win ADS


If you're joining the AD you can use the mode ADS with the lines # smb.conf:
    security = ADS
    realm =  your.kerberos.realm
    encrypt passwords = yes
    password server = MYWINPDC

please refer to section 7.4 (Domain Membership - Samba ADS Domain 
Membership) in the HOWTO.



Dieter Wilkens wrote:

>Thanks for that hint.
>I downloaded the HOTO and tried to make everything like descibed there 
>but it is still not working ;-(
>
>I set the 'security = domain" the 'workgroup = MYDOMAIN' and the 
>'password server = MYWINPDC' in the smb.conf and restartet samba. After 
>that I tried the 'net join -S MYWINPDC -UMyAdmin%MyPassword' and get 
>the following result:
>
>'realm must be set in smb.conf for ADS join to succeed.
>ADS join did not work, faling back to RPC...
>Joined domain MYDOMAIN'
>
>  
>
>>>From the PDC I can see the sambe server in ADS and in the network
>>    
>>
>neighborhood. If I try to connect samba asks for a username and 
>password (should be OK with the DOMAIN-Admin.....). So I type in the 
>Admin and PAssword but without getting a connection. In the logfile on 
>the samba server there are the following lines in
>'log.MYWINPDC':
>
>'[2003/10/28 10:18:50, 0] auth/auth_util.c:make_server_info_info3(1017)
>  make_server_info_info3: pdb_init_sam failed!
>[2003/10/28 10:18:50, 0] auth/auth_util.c:make_server_info_info3(1017)
>  make_server_info_info3: pdb_init_sam failed!
>[2003/10/28 10:19:28, 0] auth/auth_util.c:make_server_info_info3(1017)
>  nake_server_info_info3: pdb_init_sam failed!'
>
>Any ideas wahts going wrong here?
>
>Regards
>
>   Dieter
>
>"Adam Williams" <adam at morrison-ind.com> schrieb im Newsbeitrag 
>news:Lgei.6Tu.1 at gated-at.bofh.it...
>  
>
>>>Just started to play around with Samba 3 (on debian 3.0) and a 
>>>win2000 domain. Can anyone help me to integrate the Samba server into 
>>>the win domain? It should act as a file server for the useres and 
>>>groups from
>>>      
>>>
>win
>  
>
>>>and therefor I need different rights and permissions for the 
>>>shares... Any help is appreciated ;-)
>>>      
>>>
>>See the Samba-HOWTO-Collection available on the Samba website.  It 
>>covers this in detail.
>>
>>--
>>To unsubscribe from this list go to the following URL and read the
>>instructions:  http://lists.samba.org/mailman/listinfo/samba
>>    
>>
>
>
>  
>

More information about the samba mailing list