[Samba] Still having samba join domain problems

Anthony Hess tonyh at engr.arizona.edu
Tue Aug 9 02:45:50 GMT 2005 

Unfortunately Im running the built in Sun directory server.  Its Sun ONE 5.1
directory server.  I guess there could be some configuration issue there,
but it seems to be working OK for everything else (both on the unix and the
samba side of things).  Im not even sure how I could post any kind of useful
config information for that.

I compiled against the openldap libs, but that's about the only thing Ive
used it for.  Maybe if I could get some suggestions on what the problem
would be (or appropriate troubleshooting steps) in openldap I can try to
translate into Sun ONE speak?

Tony

On 8/8/05 7:10 PM, "Mark Sarria" <marksarria at socal.rr.com> wrote:

> Well the errors you are describing leads me to a say its a configuration
> issue in your slapd.conf file. I can try to help you with this. Solaris has
> a funny way of doing things. Post your configurations. First post your
> slapd.conf, lets have a look at that.
> 
> --mmark
> ----- Original Message -----
> From: "Anthony Hess" <tonyh at engr.arizona.edu>
> To: <samba at lists.samba.org>
> Sent: Monday, August 08, 2005 5:46 PM
> Subject: [Samba] Still having samba join domain problems
> 
> 
>> So I was having problems getting a machine to join to a samba PDC running
>> on
>> Solaris 9 using the bundled LDAP server.  Ill skip all my previous
>> troubleshooting steps here (Ive tried just about anything and everything).
>> 
>> Anyway - so I deleted all of the attributes for samba in the directory and
>> ran the idealx populate script.  It seemed to go just fine (the other
>> scripts seem to work fine too).
>> 
>> When I try to join the domain using the "root" account the Windows XP PC
>> comes back with "The following error occurred attempting to join the
>> domain
>> "SUNDEV"; The user name could not be found".
>> 
>> In the smbd log (at level 10) this is all I get:
>> 
>> [2005/08/08 17:27:35, 0] rpc_server/srv_samr_nt.c:_samr_create_user(2324)
>>  _samr_create_user: Running the command
>> `/usr/local/samba/acctscrp/smbldap-useradd t 5 -w "engrpc$"' gave 9
>> 
>> (and that only happens when I try to add an account twice in a row - Ive
>> seen gave 1 show up before but its not happening now)
>> 
>> It DOES create a posix account in the right ou, just not the samba piece.
>> 
>> Now Im not sure if Im going off way in the wrong direction here, but when
>> I
>> try to add a machine account (with the posix information still there from
>> the script) with pdbedit (-a -m) I get:
>> 
>> ldapsam_modify_entry: Failed to modify user dn=
>> uid=engrpc$,ou=Machines,dc=engr, dc=arizona, dc=edu with: Object class
>> violation
>> 
>> ldapsam_add_sam_account: failed to modify/add user with uid = engrpc$ (dn
>> =
>> uid=engrpc$,ou=Machines,dc=engr, dc=arizona, dc=edu)
>> Unable to add machine! (does it already exist?)
>> 
>> I get the same error even if the posix information isnt already there.
>> Here
>> is what it gives me in the ldap logs:
>> 
>> [08/Aug/2005:17:41:22 -0700] - Entry "uid=engrpc$,ou=Machines,dc=engr,
>> dc=arizona, dc=edu" missing attribute "sambaSID" required by object class
>> "sambaSamAccount"
>> 
>> It does NOT give me this if Im using the scripts.
>> 
>> OK, can anyone even point me in the direction I should be looking?  I can
>> see a sambaSID in ldap or by using the net getlocalsid command.
>> 
>> Thanks,
>> 
>> Tony
>> 
>> 
>> -- 
>> To unsubscribe from this list go to the following URL and read the
>> instructions:  https://lists.samba.org/mailman/listinfo/samba
> 
>

More information about the samba mailing list