[Samba] Unable to join samba server to a NT4 style domain
John H Terpstra
jht at Samba.Org
Thu Apr 14 22:01:21 GMT 2005
On Thursday 14 April 2005 15:42, Van Sickler, Jim wrote:
> Ash,
>
> net help rpc shows the following for the --long option:
>
> -l or --long Display full information
>
> In what I've found from googling and
> the Samba-Guide (thanks, John!),
> it looks like net rpc join will create the
> Domain machine account when you run it; if
> MYSERVER already exists, you'll be prevented
> from creating a duplicate entry.
>
> Try deleting MYSERVER from the Domain.
>
> then run your original command...
>
> /net rpc join -U administrator%'xxxxxxxx'.
>
> or ./net rpc join -S NT4SERVER -U administrator%'xxxxxxxx'
>
> and see what happens.
>
> If this works, it reinforces this comment from my earlier link:
>
> This process joins the server to the domain
> without having to create the machine trust
> account on the PDC beforehand.
>
> and is a change from Samba 2.x, which required
> the creation of the machine trust account
> on the PDC before running "smbpasswd -j DOM -r DOMPDC".
>
> John: if this is true, can Chap 7 be amended to
> reflect the change?
Samba-3 works the same way as Samba-2.2 did. The machine account is created by
calling out the appropriate script. On Samba-2.2 the "add user script" was
called for machine accounts. On Samba-3 this is done by the "add machine
script".
In neither case is it necessary to create the machine account before joining
- so long as the script is correctly configured.
- John T.
>
> Jim
>
> > -----Original Message-----
> > From: Ashutosh Kamdar [mailto:akamdar at gnsi.com]
> > Sent: Thursday, April 14, 2005 2:25 PM
> > To: Van Sickler, Jim; 'Ashutosh Kamdar'; samba at lists.samba.org
> > Subject: Re: [Samba] Unable to join samba server to a NT4 style domain
> >
> >
> > Jim,
> >
> > I have Samba shut down while executing the net rpc join
> > commands, as the HOW-TO says.
> >
> > On trying the following,
> >
> > # ./net rpc join -S NTSERVER
> > Password:
> >
> > This is the response I get,
> >
> > Could not connect to server NTSERVER
> > The username or password was not correct.
> >
> > The password used was that of the administrator authorized to
> > add machines to the domain. Is there any other
> > username/password I should be using?
> >
> > On trying this,
> >
> > net join -S NT4SERVER -U administrator%'xxxxxxxx' -W
> > MYWORKGROUP --long
> >
> > This is the response I get,
> >
> > Unable to join domain <domain-name>.
> >
> > BTW, what does the switch --long do?
> >
> > I have followed the exact steps in the document you have
> > pointed out and the HOW-TOs. Thanks for pointing that out
> > this particular chapter.
> >
> > Regards,
> >
> > Ash
> >
> > ------Original Message-----
> > -From: Van Sickler, Jim [mailto:vansickj-eodc at kaman.com]
> > -Sent: Thursday, April 14, 2005 08:30 PM
> > -To: ''Ashutosh Kamdar'', samba at lists.samba.org
> > -Subject: RE: [Samba] Unable to join samba server to a NT4
> > style domain
> > -
> > -Ash,
> > -
> > -Do you have Samba shut down while you're
> > -running net rpc join? The daemons
> > -shouldn't be running, AFAIK.
> > -
> > -Make sure they're down, and try your earlier
> > -net rpc join commands...
> > -
> > -If that doesn't work, try just:
> > - net rpc join -S NT4SERVER
> > -
> > -Maybe try deleting MYSERVER from the domain,
> > -then
> > -net join -S NT4SERVER -U administrator%'xxxxxxxx' -W
> > MYWORKGROUP --long
> > -
> > -See
> > -http://aosda.net/docs/samba/3.0/Samba-HOWTO-Collection/domain
> > -member.html#id
> > -2522086
> > -
> > -
> > -Jim
> > -
> > -
> > -> -----Original Message-----
> > -> From: Ashutosh Kamdar [mailto:akamdar at gnsi.com]
> > -> Sent: Thursday, April 14, 2005 12:50 PM
> > -> To: Van Sickler, Jim; 'Ashutosh Kamdar'; samba at lists.samba.org
> > -> Subject: Re: [Samba] Unable to join samba server to a NT4
> > style domain
> > ->
> > ->
> > -> Jim,
> > ->
> > -> Yes, the NTSERVER is a PDC. Do you know of a way to see any
> > -> kind of logs on the net join rpc command?
> > ->
> > -> -Ash
> > ->
> > -> ------Original Message-----
> > -> -From: Van Sickler, Jim [mailto:vansickj-eodc at kaman.com]
> > -> -Sent: Thursday, April 14, 2005 07:40 PM
> > -> -To: ''Ashutosh Kamdar'', samba at lists.samba.org
> > -> -Subject: RE: [Samba] Unable to join samba server to a NT4
> > -> style domain
> > -> -
> > -> -Ash,
> > -> -
> > -> -Is NT4SERVER the PDC?
> > -> -If not, use -S PDC instead of -S NT4SERVER
> > -> -
> > -> -Jim
> > -> -
> > -> -> -----Original Message-----
> > -> -> From: Ashutosh Kamdar [mailto:akamdar at gnsi.com]
> > -> -> Sent: Thursday, April 14, 2005 12:24 PM
> > -> -> To: Van Sickler, Jim; 'Ashutosh Kamdar'; samba at lists.samba.org
> > -> -> Subject: Re: [Samba] Unable to join samba server to a NT4
> > -> style domain
> > -> ->
> > -> ->
> > -> -> Jim,
> > -> ->
> > -> -> For all of the four commands you have mentioned, I get the
> > -> -> same response:
> > -> ->
> > -> -> Unable to join domain <domain-name>.
> > -> ->
> > -> -> There are no error messages or explanation with it, just the
> > -> -> plain text.
> > -> ->
> > -> -> Regards,
> > -> ->
> > -> -> Ash
> > -> ->
> > -> -> ------Original Message-----
> > -> -> -From: Van Sickler, Jim [mailto:vansickj-eodc at kaman.com]
> > -> -> -Sent: Thursday, April 14, 2005 07:15 PM
> > -> -> -To: ''Ashutosh Kamdar'', samba at lists.samba.org
> > -> -> -Subject: RE: [Samba] Unable to join samba server to a NT4
> > -> -> style domain
> > -> -> -
> > -> -> -Ash,
> > -> -> -
> > -> -> -try one of the following:
> > -> -> -
> > -> -> -./net rpc join -S NT4SERVER -U administrator
> > -> -> -
> > -> -> -./net rpc join -S NT4SERVER -U administrator%'xxxxxxxx'
> > -> -> -
> > -> -> -./net rpc join -W MYWORKGROUP -U administrator
> > -> -> -
> > -> -> -./net rpc join -W MYWORKGROUP -U administrator%'xxxxxxxx'
> > -> -> -
> > -> -> -Jim
> > -> -> -
> > -> -> -> -----Original Message-----
> > -> -> -> From: Ashutosh Kamdar [mailto:akamdar at gnsi.com]
> > -> -> -> Sent: Thursday, April 14, 2005 11:48 AM
> > -> -> -> To: Van Sickler, Jim; samba at lists.samba.org
> > -> -> -> Subject: Re: [Samba] Unable to join samba server to a NT4
> > -> -> style domain
> > -> -> ->
> > -> -> ->
> > -> -> -> Jim,
> > -> -> ->
> > -> -> -> -Try adding the Samba server to the NT4 Domain first.
> > -> -> -> Response: The samba server has already been added to
> > -> the NT domain.
> > -> -> ->
> > -> -> -> -Is the NT4 server also a WINS server?
> > -> -> -> -If so, add that info to the smb.conf
> > -> -> -> -
> > -> -> -> -wins server = xxx.xxx.xxx.xxx
> > -> -> -> -name resolve order = wins lmhosts host bcast
> > -> -> -> -
> > -> -> -> -Put the NT4 server info into /etc/lmhosts
> > -> -> -> -and /etc/hosts
> > -> -> -> -xxx.xxx.xxx.xxx NT4SERVER
> > -> -> ->
> > -> -> -> Response: The NT server is not functioning as a WINS server.
> > -> -> -> The /etc/hosts and /etc/lmhosts already have the entry for
> > -> -> -> the NT server. The server can also resolve the NTSERVER_NAME
> > -> -> -> using DNS.
> > -> -> ->
> > -> -> -> I also used rpcclient to see if there any connection
> > -> -> -> problems, and it was able to connect just fine to the
> > -> -> -> NTSERVER. Thorougly confused.
> > -> -> ->
> > -> -> -> Any other ideas?
> > -> -> ->
> > -> -> -> Thanks for your response,
> > -> -> ->
> > -> -> -> Ash
> > -> -> ->
> > -> -> -> -
> > -> -> -> -> -----Original Message-----
> > -> -> -> -> From: Ashutosh Kamdar [mailto:akamdar at gnsi.com]
> > -> -> -> -> Sent: Thursday, April 14, 2005 12:58 AM
> > -> -> -> -> To: samba at lists.samba.org
> > -> -> -> -> Subject: [Samba] Unable to join samba server to a NT4
> > -> -> style domain
> > -> -> -> ->
> > -> -> -> ->
> > -> -> -> -> Hello,
> > -> -> -> ->
> > -> -> -> -> I have installed Samba version 3.0.13 on a
> > Solaris 9 machine
> > -> -> -> -> and am trying to add it to an existing NT domain
> > as a member
> > -> -> -> -> server. I have followed the instructions in
> > Chapter 2 of the
> > -> -> -> -> Samba HOW-TO collection for adding a samba server as
> > -> a Domain
> > -> -> -> -> member. The problem is that when i use the net rpc join
> > -> -> -> -> command to join the domain, I get the following error:
> > -> -> -> ->
> > -> -> -> -> # ./net rpc join -U administrator%'xxxxxxxx'
> > -> -> -> ->
> > -> -> -> -> Unable to find a suitable server
> > -> -> -> ->
> > -> -> -> -> Unable to find a suitable server
> > -> -> -> ->
> > -> -> -> -> Specifying the domain name with a -w switch or the
> > -> PDC doesnt
> > -> -> -> -> seem to help.
> > -> -> -> ->
> > -> -> -> -> Is there a way for me to see a detailed version
> > of the error
> > -> -> -> -> message or some log file where this is dumped to? I am
> > -> -> -> -> posting the smb.conf for reference. Please help
> > me resolve
> > -> -> -> -> this error.
> > -> -> -> ->
> > -> -> -> -> Thanks,
> > -> -> -> ->
> > -> -> -> -> Ash
> > -> -> -> ->
> > -> -> -> ->
> > -> -> ->
> > -> ->
> > ->
> > ----------------------------------8<----------------------------------
> > -> -> -> -> smb.conf
> > -> -> -> ->
> > -> -> -> -> [global]
> > -> -> -> -> dns proxy = no
> > -> -> -> -> debug timestamp = yes
> > -> -> -> -> encrypt passwords = yes
> > -> -> -> -> idmap gid = 15000-20000
> > -> -> -> -> socket options = TCP_NODELAY
> > -> -> -> -> max log size = 1024
> > -> -> -> -> password server = *
> > -> -> -> -> idmap uid = 15000-20000
> > -> -> -> -> debug level = 3
> > -> -> -> -> security = domain
> > -> -> -> -> server string = Samba Server
> > -> -> -> -> workgroup = MYWORKGROUP
> > -> -> -> -> log level = 3
> > -> -> -> -> log file = /usr/local/samba/var/log.%m
> > -> -> -> -> netbios name = MYSERVER
> > -> -> -> -> load printers = yes
> > -> -> -> -> os level = 33
> > -> -> -> -> default = share
> > -> -> -> -> [homes]
> > -> -> -> -> comment = Home Directories
> > -> -> -> -> valid users = %S
> > -> -> -> -> browseable = no
> > -> -> -> -> writable = yes
> > -> -> -> ->
> > -> -> -> -> [printers]
> > -> -> -> -> comment = All Printers
> > -> -> -> -> path = /usr/spool/samba
> > -> -> -> -> browseable = no
> > -> -> -> -> guest ok = no
> > -> -> -> -> writable = no
> > -> -> -> -> printable = yes
> > -> -> -> ->
> > -> -> -> -> [share]
> > -> -> -> -> path = /share
> > -> -> -> -> comment = Solaris share
> > -> -> -> -> valid users = @Accounts
> > -> -> -> -> guest ok = Yes
> > -> -> -> -> read only = No
> > -> -> -> ->
> > -> -> -> ->
> > -> -> ->
> > -> ->
> > ->
> > ----------------------------------8<----------------------------------
> > -> -> -> ->
> > -> -> -> ->
> > -> -> -> ->
> > -> -> -> -> --
> > -> -> -> -> To unsubscribe from this list go to the following URL
> > -> -> and read the
> > -> -> -> -> instructions:
>
> https://lists.samba.org/mailman/listinfo/samba
> -> -> -> ->
> -> -> -> -
> -> -> ->
> -> -> ->
> -> -> -
> -> ->
> -> ->
> -> -
> ->
> ->
> -
--
John H Terpstra
Samba-Team Member
Phone: +1 (650) 580-8668
Author:
The Official Samba-3 HOWTO & Reference Guide, ISBN: 0131453556
Samba-3 by Example, ISBN: 0131472216
Hardening Linux, ISBN: 0072254971
Other books in production.
More information about the samba
mailing list