[Samba] upgraded to 3.0.2 -> funkyness in machine accounts

Brad Langhorst brad at langhorst.com
Fri Feb 20 07:31:56 GMT 2004

My old technique was to 
1) remove all machine accounts from ldap
2) reimage all machines
3) create all the machine accounts with smbldap-adduser -w
4) switch all machines to domain mode

that does not work anymore...
the machine accounts exist in ldap 

but i get this internally contradictory info in the logs

[2004/02/20 02:29:52, 2] passdb/pdb_ldap.c:init_sam_from_ldap(462)
  init_sam_from_ldap: Entry found for user: durant$
[2004/02/20 02:29:52, 0] rpc_server/srv_netlog_nt.c:get_md4pw(218)
  get_md4pw: Workstation DURANT$: no account in domain

huoh - it finds the entry but then says no account in domain?

doing a manual join also fails initially - 

[2004/02/20 02:21:45, 2] lib/access.c:check_access(324)
  Allowed connection from  (
[2004/02/20 02:21:45, 2]
  Returning domain sid for domain LAUELAB ->
[2004/02/20 02:21:46, 0] passdb/pdb_ldap.c:ldapsam_add_sam_account(1478)
  ldapsam_add_sam_account: User 'maribeth$' already in the base, with
samba attributes
[2004/02/20 02:21:46, 0]
  could not add user/computer maribeth$ to passdb.  Check permission

but if i repeat the attempt without deleting the machine account i get a
successful join.

i've tried wiping out all the tdbs and resetting the domainsid and ldap

what's going on here?


More information about the samba mailing list