[Samba] W2K Server cant find DC

Matthias Eichler me-lists at kernzeit.com
Tue Apr 27 15:25:53 GMT 2004


Dear List,

I have a Win2K server running as a member server of a
Samba Domain, but this server can not authorize users
due to the missing domain controller which can not be
found by the Win2K server (Windows Log Event: #5719).

The strange thing is:
- the samba pdc is up and running and is authenticating users
  all the time
- I see log entries of the win2k server, so it has a connection
  to the pdc
- I could remove the win2k server from our domain and re-join
  it again, so the pdc should be there.

The smb.conf of the PDC:
---cut---
[global]
        workgroup = KERNZEIT
        netbios name = LOGIN
        null passwords = no
        security = user
        server string = %h server (Samba %v)
        
        announce version=5.0
        
        #LDAP STUFF
        passdb backend = ldapsam:"ldap://127.0.0.1 ldap://10.1.1.10"
        ldap suffix = dc=kernzeit,dc=com
        ldap machine suffix =
"ou=smb-machines,ou=NSS,dc=kernzeit,dc=com"
        ldap admin dn = "cn=admin,dc=kernzeit,dc=com"
        ldap ssl = no 
        ldap user suffix = "dc=kernzeit,dc=com"
        ldap group suffix = ou=groups,ou=nss
        
        #LOG STUFF
        log file = /var/log/samba/log.%m
        max log size = 10000
        log level = 3 
        syslog = 0
        
        #NETWORK
        interfaces = 10.1.1.1/16
        hosts allow = 10.1. 10.99.
        bind interfaces only = yes
        socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
   
        #SECURITY
        encrypt passwords = true
        guest account = nobody
        obey pam restrictions = no
        admin users = @domadmins
        
        add machine script = /usr/local/sbin/smbldap-useradd.pl -w -g
smb-machines -s /bin/false %m
        unix password sync = yes 
        passwd program = /usr/local/sbin/smbldap-passwd.pl %u
        passwd chat = *New\spassword\s:* %n\n *Retype\snew\spassword*
%n\n *successfully*

        #FEATURES
        panic action = /usr/share/samba/panic-action %d
        wins support = yes
        dns proxy = yes 
        preferred master = yes
        local master = yes
        time server = yes
        os level = 67
        
        #DOMAIN STUFF
        domain master = yes
        domain logons = yes
        
        #LOGON STUFF
        logon path = \{}\{}%L\{}Profiles\{}%u
        logon script = login.bat
        logon drive = H:
        logon home = \\LOGIN\%U
        template homedir = /home/%U

        #INTERNATIONALIZATION
        unix charset = iso8859-15
        dos charset = cp850
---cut---

Any help?!? Would be really great!

Thanks a lot,

Matthias Eichler

-- 
Matthias Eichler <me-lists at kernzeit.com>
kernzeit AG



More information about the samba mailing list