[Samba] Winbind + Samba 3 + ADS

Nic le Roux nicl at rohlig.co.za
Wed Jan 7 10:31:30 GMT 2004


Good day,

I apologise for the long post but I think all is relevant.

Any help would be appreciated. My smb.conf global section at the bottom.
Thanks.


 Has anyone set up Samba 3 using winbindd to authenticate on 2003 Active
 Directory?
 Winbind appears to working correctly.
 Joined the domain without an error

 However when trying to connect to samba server it requests a logon and
 denies whatever I enter as Username or password.

 I have also noticed that when trying to use the netbios name of the 
server
 ( \\server) it does not want to authenticate me at all.

 When using the FQDN (\\server.domain.co,za) it again requests a username
 and password, when I enter my AD username and password it does not
 authenticate me (wrong username or password), however when using 
smbpasswd
 password it lets me in.

 Is it still using the incorrect authentication method ?
 Why doesnt it like the netbios name ??

It seems to be working perfectly on NT4.0 machines. 
Dont have any win9x things lying around to test on. 

Problem appears to be only with XP 2k and 2003. 

I have heard that there is smb signing involved with 2003. Is this the 
case with 2K ? 

Had a look at messages. 

This looks like it could mean something 

{Googled some and this appears to be a printing problem} 
Jan  7 10:16:02 cupsipp smbd[1289]: [2004/01/07 10:16:02, 0] 
smbd/service.c:make_connection(857) 
Jan  7 10:16:02 cupsipp smbd[1289]:   nicksinvsr (172.28.20.23) couldn't 
find service ::{2227a280-3aea-1069-a2de-08002b30309d} 

{I believe this has something to do with the authentication however what 
I'm not sure} 
Jan  7 10:17:15 cupsipp smbd[1289]: [2004/01/07 10:17:15, 0] 
smbd/connection.c:register_message_flags(220) 
Jan  7 10:17:15 cupsipp smbd[1289]:   register_message_flags: tdb_fetch 
failed 


 [global]

 workgroup = ROHLIG
 realm = rohlig.co.za
 security = ADS
 password server = appserv.rohlig.co.za
 winbind use default domain = yes
 client use spnego = yes
 encrypt passwords = yes
 server string = %L Print Server (%v)
 winbind seperator = +
 idmap uid = 10000-20000
 idmap gid = 10000-20000
 winbind enum users = yes
 winbind enum groups = yes
 template homedir = /home/winnt/%D/%U
 template shell = /bin/bash
 printcap name = cups
 load printers = yes
 printing = cups
 guest account = smbprint

 log file = /var/log/samba/log.%m

 max log size = 50


 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

  wins server = 172.28.20.2

 dns proxy = no


More information about the samba mailing list