[Samba] samba-latest and tdbsam - unable to logon to domain?

Eddie Lania eddie at lania.nl
Wed Apr 14 08:07:40 GMT 2004


Dear list members,

I am unable to logon to the domain.
I have created the tdbsam using the "smbpasswd -a root" command.
I also added User Administrator as unix and samba account.
I also mapped groups "Domain Admins", "Domain users" and "Domain Guests" to
unix groups domadmins, domusers and domguests using the "net groupmap
modify" command.
But is doesn't work.

I cannot join a XP professional ws to the domain, I keep getting the message
that the domain controller cannot be found.
I am able to open the netlogon share from the ws when I am logged on the ws
as a local Administrator, but that's about all I can do.

Please help me!

See below my smb.conf:

[global]
        netbios name = C733LINUX
        workgroup = TECHDREAM
        server string = "Samba 3.0 server"
        security = user
        passdb backend = tdbsam
        encrypt passwords = Yes
        null passwords = Yes
        admin users = @"Domain Admins"
        guest account = Guest
        socket address = 192.168.169.192
        interfaces = 192.168.169.192/24
        bind interfaces only = True
        hosts allow = 127.0.0.1, 192.168.169.0/24, 192.168.168.0/24
        ; add user script = /usr/sbin/useradd %u
        ; add group script = /usr/sbin/groupadd %g
        add machine script = /usr/sbin/adduser -n -g computers -c
Computer -d /dev/null -s /bin/false %u
        ; delete user script = /usr/sbin/userdel %u
        ; delete user from group script = /usr/sbin/deluser %u %g
        ; delete group script = /usr/sbin/groupdel %g   #
        wins partners = 192.168.168.150
        wins support = Yes
        name resolve order = wins lmhosts host bcast
        os level = 64
        prefered master = True
        domain master = True
        local master = Yes
        browse list = Yes
        enhanced browsing = Yes
        remote announce = 192.168.168.150
        domain logons = Yes
        logon path = \\%L\profiles\%U
        logon drive = q:
        logon home = \\%L\%U\.profile
        logon script = login.bat
        socket options = TCP_NODELAY=1
        debug uid = Yes
        log file = /var/log/samba/%m.log
        ; log level = 0
        max log size = 0
        pid directory = /var/run
        printing = cups
        printer admin = @"Domain Admins"

[netlogon]
        comment = Network Logon Service
        path = /home/netlogon
        nt acl support = No
        read only = Yes
        guest only = Yes

[homes]
        path = /home/users/%U
        valid users = @"Domain Users", @"Domain Admins"
        read only = No
        browseable = No
        inherit acls = Yes
        inherit permissions = Yes
        csc policy = disable

[profiles]
        comment = User Profiles share
        path = /home/profiles
        valid users = @"Domain Users", @"Domain Admins"
        read only = No
        inherit acls = Yes
        inherit permissions = Yes
        csc policy = disable

[printers]
        path = /var/spool/samba
        valid users = @"Domain Users", @"Domain Admins"
        browseable = No
        printable = Yes
        guest ok = Yes
        ; print command = lpr -P %p -o raw %s -r
        ; lpq command = lpstat -o %p
        ; lprm command = cancel %p-%j

[print$]
        path = /usr/local/samba/printers
        read only = Yes
        valid users = @"Domain Admins"
        write list = @"Domain Admins", root
        guest ok = Yes

[users]
        comment = Users directories
        path = /home/users
        valid users = @"Domain Users", @"Domain Admins"
        read only = Yes
        write list = @"Domain Admins"
        inherit acls = Yes
        inherit permissions = Yes

[public]
        comment = Public Files share
        path = /mnt/big_f32/public
        valid users = @"Domain Users", @"Domain Admins"
        force user = nobody
        read only = No

[apps]
        comment = Applications share
        path = /mnt/big_f32/apps
        valid users = @"Domain Users", @"Domain Admins"
        force user = nobody
        read only = No



More information about the samba mailing list