[Samba] Samba 3.0.2 PDC, reinstallted box fails to rejoin domain

Jörg Lesch lesch at informatik.uni-freiburg.de
Mon Sep 13 03:04:42 GMT 2004 

Hello List


Samba Version   :3.0.2  (Debian Woody)
Kernel Verion   :2.4.27

I had to reinstall a Windows XP-Professional-Box at work. When I got to 
the point where you
add the box to the domain, it wouldn't let me to. (I also disabled the 
settings
in secpol.msc)
I deleted the entry in smbpasswd using smbpasswd -x -m trick$, added it new
and still the same problem. (The UID are right)
Out of curiousity to track the error down I went to a different box and 
took it
out of the domain, to see if this one  would still be able to readd it . 
Well it didn't work. :(
I hope you guys see what is wrong. I didn't do big changes in the 
smb.conf, since
 almost 2 years ago, when I set samba as PDC up and joined the windows 
boxes.
Configuration file is at the end. ( Plesae excuse the long mail)


 while trying to add host trick to the domain, this is going on in TCP, 
to me it seems

 like there's no answer to tricks requests  on broadcast. . . . . .

Kernel Verion   :2.4.27

I had to reinstall a Windows XP-Box at work. When I got to the point 
where you
add the box to the domain, it wouldn't let me to. (I also disabled the 
settings in secpol.msc)
I delteted the entry in smbpasswd using smbpasswd -x -m trick$, added it new
and still the same problem.
Out of curiousity to track the error down I went to a different box and 
took it out
of the domain, to see if I still would be able to readd it. Well didn't 
work. It
is out of the domain as well :(
I hope you guys see what is wron. I didn't do big changes in the 
smb.conf, since almost
2 years ago, when I set PDC up.



while trying to add trick to the domain, this is going on in TCP, to me 
it seems
like there's no answer to its requests . . . . . .

01:56:40.583859 trick.entenhausen.netbios-ns > 192.168.0.255.netbios-ns: 
NBT UDP PACKET(137): QUERY; REQUEST;
BROADCAST
01:56:41.321684 trick.entenhausen.netbios-ns > 192.168.0.255.netbios-ns: 
NBT UDP PACKET(137): QUERY; REQUEST;
BROADCAST
01:56:42.071720 trick.entenhausen.netbios-ns > 192.168.0.255.netbios-ns: 
NBT UDP PACKET(137): QUERY; REQUEST;
BROADCAST

and then windows tells me :
"A domain controller for the domain could not be contacted
-----------snip--------------
The error was: "DNS name does not exist."
(error code 0x0000232B RCODE_NAME_ERROR)

The query was for the SRV record for _ldap._tcp.dc._msdcs.DOMAIN NAME

Common causes of this error include the following:

- The DNS SRV record is not registered in DNS."

google didn't help much with this, it seems like there were a few others 
runnnig in the same problem, but ...


this is what I get if I try to look up the hosts manualy :
root at dagobert:/etc/samba# for i in dagobert trick tick ; do net lookup 
$i ; done
[2004/09/13 02:17:23, 0] param/loadparm.c:map_parameter(2418)
  Unknown parameter encountered: "domain admin group"
[2004/09/13 02:17:23, 0] param/loadparm.c:lp_do_parameter(3056)
  Ignoring unknown parameter "domain admin group"
192.168.0.3
[2004/09/13 02:17:23, 0] param/loadparm.c:map_parameter(2418)
  Unknown parameter encountered: "domain admin group"
[2004/09/13 02:17:23, 0] param/loadparm.c:lp_do_parameter(3056)
  Ignoring unknown parameter "domain admin group"
192.168.0.2
root at dagobert:/etc/samba# for i in dagobert trick tick; do net lookup $i 
; done
[2004/09/13 02:19:05, 0] param/loadparm.c:map_parameter(2418)
  Unknown parameter encountered: "domain admin group"
[2004/09/13 02:19:05, 0] param/loadparm.c:lp_do_parameter(3056)
  Ignoring unknown parameter "domain admin group"
127.0.0.1
[2004/09/13 02:19:05, 0] param/loadparm.c:map_parameter(2418)
  Unknown parameter encountered: "domain admin group"
[2004/09/13 02:19:05, 0] param/loadparm.c:lp_do_parameter(3056)
  Ignoring unknown parameter "domain admin group"
192.168.0.3
[2004/09/13 02:19:05, 0] param/loadparm.c:map_parameter(2418)
  Unknown parameter encountered: "domain admin group"
[2004/09/13 02:19:05, 0] param/loadparm.c:lp_do_parameter(3056)
  Ignoring unknown parameter "domain admin group"
192.168.0.2



here is the main configuration file


smb.conf:
[global]

        netbios name = dagobert
        ;netbios aliases = SERVER
        workgroup = entenhausen
        server string = Samba Server (Samba %v)

        os level = 65
        preferred master = yes
        domain master = yes
        local master = yes
        time server = yes

        wins support = yes
        dns proxy = no

        interfaces = eth0 192.168.0.0/24
        socket address = 192.168.0.1
        socket options = TCP_NODELAY
        hosts allow = 192.168.0.0/24

        log file= /var/log/samba/log.%m
        max log size = 50
        syslog = 0
        log level = 3

        domain logons = yes
        security = user
        encrypt passwords = yes


        logon script = logon.bat
        logon path = \\%L\profile\%u

        logon drive = h:
        logon home = \\DAGOBERT\%U

        guest account = nobody
        invalid users = root
        admin users = Administrator
        domain admin group = root

        add user script = /usr/sbin/useradd -d /dev/null -g 100 -c 
'Machine Account' -s /bin/false -M %u


[homes]
        comment = Heimatverzeichnis
        browseable = no
        writable = yes

[netlogon]
        comment = Netzwerk Logon Service
        path = /samba/netlogon
        browseable = no
        share modes = no
        read only = yes
        write list = root


[profile]
        path=/samba/profile
        writeable = yes
        browseable = no
        guest ok = yes
        create mask = 0600
        directory mask = 0700
----------------------------------------------------------------
cat /etc/samba/smbpasswd
Administrator:1003:986A935347B559F2AAD3B435B51404EE:CEF19B51F9B9395B721D46E69127B370:[UX         
]:LCT-3E283E5
F:
tick$:1004:D18C52F91B442373B1D15D503826AA27:D18C52F91B442373B1D15D503826AA27:[W          
]:LCT-401CC253:
james$:1005:3274588E7D8350AEB5DAB46CC3F9C755:6CF814E0744031DCA71FF274E24A0AB9:[W          
]:LCT-3E0A4F10:
mf:1007:4CD6B86ABD2A0CACAAD3B435B51404EE:88F6960EF562BD28DA8CE14E0D8B7F1B:[UX         
]:LCT-3E1158DE:
el:1001:407B37BA29FDBFE4AAD3B435B51404EE:11BA6325D01158098E4B9A09E95A8097:[UX         
]:LCT-3E650D23:
track$:1007:2F4BEEB0BA6CD240AAD3B435B51404EE:3560B927EF318009145618B489D94CF7:[W          
]:LCT-4144B67C:

----------------------------------------------------------------

















Interesting parts from /etc/passwd :


tick$:x:1004:100:tick:/dev/null:/bin/false
track$:x:1007:100:track:/dev/null:/bin/false
james$:x:1005:100:Machine Account:/dev/null:/bin/false
trick$:x:1006:100:Machine Account:/dev/null:/bin/false
el:x:1001:100:,,,:/home/el:/bin/false
mf:x:1007:100:,,,:/home/mf:/bin/false
----------------------------------------------------------------

More information about the samba mailing list