[Samba] PDC Trust problems

Jason Self jself at intertechdesign.net
Mon Jan 10 15:37:32 GMT 2005

Here is the problem, I have convifgured samba to act as a PDC,  I have 
set an add user scipt serveral different ways and I have added my 
machine account as a trust...in windows the name of the computer is ids1 
so the the name of the computer in smbpasswd is ids1$.  I am able to 
"see" the domain,  I am able to query the PDC server and list the users 
available to me to create a domain user on this machine but I can not 
logon.  When I set windows to use a Domain I log in with root, it 
connects and welcomes me to the domain, then tells me to restart.  I do 
and then I try to logon at the logon screen with a user named on the 
PDC....that does not work.  I then logged on to the local account and 
tried to add a domain user, I do a browse, advance, find now, in the 
users control panel and enter my servers root logon/passwd...this lists 
the two users available to me on the PDC,  root and jasons.  Both of 
these users give a error about not being able to create a trust with 
this machine.  My only guesses left are that I have overlooked something 
in the configuration or that I have some sort of permission problem, but 
I don't know what would cause this....I am also hoping to be using 
roaming profiles.....My relivant smb.conf parts are below if it helps.

    workgroup = INTERTECHDOMAIN
    netbios name = INTERTECHSERVER
    server string = Intertech Samba Server
    passwd program = /usr/bin/passwd %u
    passwd chat = *New*password* %n\n *Please*retype*new*password* %n\n 
    unix password sync = Yes
    log level = 3
    log file = /var/log/samba/%m.log
    name resolve order = lmhosts wins hosts bcast
    socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192
    domain admin group = @staff @root
    add user script = /usr/sbin/useradd -d /dev/null -g 100 -s 
/bin/false -M %u
    logon script = netlogon.bat
    logon path = \\%L\profiles\%U
    logon home = \\%L\%U    logon drive = H:
    domain logons = Yes
    os level = 64
    preferred master = Yes
    domain master = Yes
    wins support = Yes
    comment = Home Directories
    valid users = %S
    read only = No
    create mask = 0664
    directory mask = 0775
    browseable = No
    comment = The domain logon service
    path = /home/samba/netlogon
    share modes = No

    path = /home/samba/profiles
    browseable = No

Respectfully yours,
Jason Self
Electrical Designer /
Network Administrator
Intertech Design Services, Inc.
Get Firefox <http://getfirefox.com/>Get Thunderbird 

More information about the samba mailing list