[Samba] Domain membership problem: PLEASE HELP!!!

Andre Helberg andre.helberg at juwimm.de
Fri Aug 20 08:49:58 GMT 2004


Hi all,


last night I joined a samba 3 fileserver in my domain (samba 3.0.5 PDC with
ldap)
now domain logons sometimes fail because the client tries to logon to the
fileserver ?!?!?!

Logs on fileserver say:

get_md4pw: Workstation KURWAHN$: no account in domain

---

If I reboot the client it logs on to the PDC properly

The ldap directory is replicated on the fileserver but i did not configure
it for passdb backend because the PDC does the authentification.


Thanks in advance, Andre


Smb.conf on the fileserver:

[global]
        server string = juwimm fileserver
        netbios name = juwifs01
        netbios aliases = worklxn
        workgroup = JUWIDC

        security = domain
        password server = 10.0.0.169
        encrypt passwords = yes
        null passwords = yes

        guest ok = no

        wins support = no
        wins proxy = no
        wins server = 10.0.0.169

        domain master = no
        local master = no
        domain logons = no
        preferred master = no
        os level = 0
        loglevel = 1
        socket options = TCP_NODELAY


#####################################################################
################# shares ############################################
#####################################################################


[juwi]
   comment = Juwi Verzeichnis
   path = /data/shares/juwi
   read only = no
   public = no
   valid users = @ntusers
   create mode = 664
   force create mode = 664
   directory mode = 775
   force directory mode = 775
#   oplocks = no

[www]
   comment = WWW Verzeichnis
   path = /data/shares/www
   read only = no
   public = no
   valid users = @ntusers
   create mode = 664
   force create mode = 664
   directory mode = 775
   force directory mode = 775
#   oplocks = no




----------------------------------------------
Smb.conf on pdc:


[global]
   workgroup = juwidc
   interfaces = 127.0.0.1 eth0
   bind interfaces only = true
   load printers = no
   server string = Primary Domain Controller - JuwiMM
   netbios name = juwidc01
#   netbios aliases = worklx-clone

   ldap passwd sync = yes
    passwd chat debug = yes

   map to guest = Bad User
   security = user
   encrypt passwords = yes
   null passwords = yes
   passdb backend = ldapsam:ldap://localhost

#   add machine script = /usr/sbin/useradd  -c Machine -d /var/lib/nobody -s
/bin/false %m$
   domain master = yes
   domain logons = yes
   local master = yes
   preferred master = yes
   os level = 85
   loglevel = 1
   logonpath = \\%N\profiles\%U
   logondrive = U:
   logon script = LOGON.BAT
   browseable = yes

#   wins server = 10.0.0.10
    wins support = yes

   socket options = TCP_NODELAY

   ldap admin dn = cn=root,dc=juwimm,dc=local
   ldap suffix = ou=sso,dc=juwimm,dc=local
   ldap user suffix = ou=users
   ldap group suffix = ou=groups
   ldap machine suffix = ou=machines
#   ldap ssl = start tls


#####################################################################
################# shares ############################################
#####################################################################

[phpldapadmin]
  comment = phpldapadmin devel
  path = /data/phpldapadmin
  browseable = yes
  valid users = @allmighty
  write list = @allmighty
  read only = no
  create mode = 0660
  force create mode = 0660
  directory mode = 0770
  force directory mode = 0770

[netlogon]
    path = /data/samba/netlogon
    locking = no
    read only = yes
    write list = ntadmins

; share for storing user profiles
[profiles]
    path = /data/samba/profiles/
    read only = no
    writeable = yes
    create mask = 0600
    directory mask = 0700
    nt acl support = yes

[homes]
   comment = Home Directories
   valid users = %S
   browseable = no
   read only = No
   guest ok = no
   printable = no


[groups]
   comment = All groups
   path = /home/groups
   writeable = Yes
   inherit permissions = Yes
   browseable = yes
   guest ok = no
   printable = no


[pdf]
        comment = PDF creator
        path = /var/tmp
        printable = Yes
        print command = /usr/bin/smbprngenpdf -J '%J' -c %c -s %s -u '%u' -z
%z
        create mask = 0600
[printers]
        comment = All Printers
        path = /var/tmp
        printable = Yes
        create mask = 0600
        browseable = No
[print$]
        comment = Printer Drivers
        path = /var/lib/samba/drivers
        write list = @ntadmin root
        force group = ntadmin
        create mask = 0664
        directory mask = 0775





More information about the samba mailing list