[Samba] SAMBA + LDAP: can login to domain

Andrei Mikhailovsky andrei at arhont.com
Wed Jan 14 22:14:22 GMT 2004


I've tried to integrate samba 3.0.1 and LDAP 2.1.23 using the guide 
provided from http://www.hilinski.net/samba/. While the ldap+samba user 
authentication seems to work fine, I can't join the Domain from a 
Windows 2000 Client. The Domain is found and Name/Password Credentials 
are asked. I enter root and password and I get an error:

Login Failure: Unknow username or bad password

Even thought I've added the workstation account by using 
smbldap-useradd.pl <workstation name>

I get an ldif entry as follows:

dn: uid=MOZG$,ou=computers,dc=company,dc=com
objectClass: top
objectClass: inetOrgPerson
objectClass: posixAccount
cn: MOZG$
sn: MOZG$
uid: MOZG$
uidNumber: 1104
gidNumber: 553
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer

Even though the smbldap-useradd.pl script didnt' give any erros, I have 
a feeling that the workstation account should contain more entries. Am I 
missing something?

I've also tried to use other method of creating workstaion account (as 
described in the Samba official docs.

root# /usr/sbin/useradd -g machines -d /dev/null -c "machine nickname" \
    -s /bin/false machine_name$


root# smbpasswd -a -m machine_name

This way I get more entries in the workstation entry, but I am still 
unable to connect with Domain Controller. The ldif i get using the 
second method:

dn: uid=MOZG$,ou=computers,dc=company,dc=com
uid: MOZG$
sambaSID: S-1-5-21-3830420305-2497394645-3910713721-3208
sambaPrimaryGroupSID: S-1-5-21-3830420305-2497394645-3910713721-515
displayName: MOZG
sambaPwdCanChange: 1074118064
sambaPwdMustChange: 2147483647
sambaLMPassword: EE2BBDC5C55719A7AAD3B435B51404EE
sambaNTPassword: 40514E8515A8690E3D94E8679434BEF6
sambaPwdLastSet: 1074118064
sambaAcctFlags: [W          ]
objectClass: sambaSamAccount
objectClass: account

Can you tell me what am I doing wrong?

Thanks for any help )

Andrei Mikhailovsky

More information about the samba mailing list