[Samba] can't join a domain

Thorsten Scherf tscherf at redhat.com
Fri Oct 1 08:13:20 GMT 2004

when trying to put a samba3 server into a domain (samba3 pdc) I always
get the following error messages:

[root at file samba]# net join -d 2 -U smbadmin RHEL -S
[2004/09/30 23:36:35, 2] lib/interface.c:add_interface(79)
  added interface ip= bcast=
smbadmin's password:
[2004/09/30 23:36:37, 1] libads/ldap.c:ads_connect(251)
  Failed to get ldap server info
[2004/09/30 23:36:37, 0] utils/net_ads.c:ads_startup(183)
  ads_connect: No results returned
[2004/09/30 23:36:37, 1] utils/net_rpc.c:run_rpc_command(141)
  rpc command function failed! (NT_STATUS_ACCESS_DENIED)
Create of workstation account failed
User specified does not have administrator privileges
Unable to join domain RHEL.
[2004/09/30 23:36:38, 2] utils/net.c:main(792)
  return code = 1

I'm using a ldapsam backend, and authentication with smbclient is
working well. the user smbadmin is also a member of the domain admin
group, and group mapping was done:

[root at server1 samba]# net groupmap list
Domain Admins (S-1-5-21-3370306482-4184561861-561853233-512) ->
Domain Users (S-1-5-21-3370306482-4184561861-561853233-512) -> domuser
Domain Guests (S-1-5-21-3370306482-4184561861-561853233-512) ->

I saw this on problem discussed on several mailinglists, but with no
solution. maybe anybody here can help me with a hint.


Thorsten Scherf
GLS Instructor
Red Hat GmbH - Global Learning Services
Hauptstaetterstr. 58, D-70178 Stuttgart, Germany 

Tel: +49-711-96437-500, Fax: +49-711-96437-111 
eMail: tscherf at redhat.com

GPG-Fingerprint: 92BF AA4C 082B F5DD FB28  47CC C1F9 282D 3B92 80BB
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
Url : http://lists.samba.org/archive/samba/attachments/20041001/dd511878/attachment.bin

More information about the samba mailing list