[Samba] PDC Trust problems
Jason Self
jself at intertechdesign.net
Mon Jan 10 15:37:32 GMT 2005
Here is the problem, I have convifgured samba to act as a PDC, I have
set an add user scipt serveral different ways and I have added my
machine account as a trust...in windows the name of the computer is ids1
so the the name of the computer in smbpasswd is ids1$. I am able to
"see" the domain, I am able to query the PDC server and list the users
available to me to create a domain user on this machine but I can not
logon. When I set windows to use a Domain I log in with root, it
connects and welcomes me to the domain, then tells me to restart. I do
and then I try to logon at the logon screen with a user named on the
PDC....that does not work. I then logged on to the local account and
tried to add a domain user, I do a browse, advance, find now, in the
users control panel and enter my servers root logon/passwd...this lists
the two users available to me on the PDC, root and jasons. Both of
these users give a error about not being able to create a trust with
this machine. My only guesses left are that I have overlooked something
in the configuration or that I have some sort of permission problem, but
I don't know what would cause this....I am also hoping to be using
roaming profiles.....My relivant smb.conf parts are below if it helps.
--
[global]
workgroup = INTERTECHDOMAIN
netbios name = INTERTECHSERVER
server string = Intertech Samba Server
passwd program = /usr/bin/passwd %u
passwd chat = *New*password* %n\n *Please*retype*new*password* %n\n
*password*successfully*updated*
unix password sync = Yes
log level = 3
log file = /var/log/samba/%m.log
name resolve order = lmhosts wins hosts bcast
socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192
domain admin group = @staff @root
add user script = /usr/sbin/useradd -d /dev/null -g 100 -s
/bin/false -M %u
logon script = netlogon.bat
logon path = \\%L\profiles\%U
logon home = \\%L\%U logon drive = H:
domain logons = Yes
os level = 64
preferred master = Yes
domain master = Yes
wins support = Yes
[homes]
comment = Home Directories
valid users = %S
read only = No
create mask = 0664
directory mask = 0775
browseable = No
[netlogon]
comment = The domain logon service
path = /home/samba/netlogon
share modes = No
[Profiles]
path = /home/samba/profiles
browseable = No
--
Respectfully yours,
Jason Self
Electrical Designer /
Network Administrator
Intertech Design Services, Inc.
Get Firefox <http://getfirefox.com/>Get Thunderbird
<http://www.mozilla.org/products/thunderbird/>
More information about the samba
mailing list