[Samba] Replacing a WinNT 4.0 PDC with SAMBA

Rodrigo Mora Quesada rfmora at itocr.com
Thu Nov 3 22:53:00 GMT 2005 

Dear colleagues,

I´m trying to replace an NT 4.0 PDC with a Samba 3 RedHat Enterprise
Server. Following some instructions on the web I get almost everything
(users, groups) using the "net vampire" command. The shares are working
and it seems to be working fine.

The problem is when I shutdown the Windows PDC and promote the Samba
Server to "domain master = yes" because the computers cannot enter the
domain anymore, an windows error tells me that the domain controller is
busy or cannot be contacted. But if I enter the computer locally and try
lo see the network shares it works fine; the problem is with th logon
process.

Here is the global of the smb.conf
--------------------------------------------------------------------------
[global]
     workgroup = RICANET
     server string = Domain Controller - Samba %v
     netbios name = COBB
#     passdb backend = tdbsam
     domain master = yes
     domain logons = yes
     local master = yes
     encrypt passwords = yes
     smb passwd file = /etc/samba/smbpasswd
     unix password sync = yes
     passwd program = /usr/bin/passwd '%u'
     security = user
     os level = 64
     socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
     add user script = /usr/sbin/adduser -m '%u'
     delete user script = /usr/sbin/userdel -r '%u'
     add group script =/root/smbgrpadd.sh '%g'
     delete group script = /usr/sbin/groupdel '%g'
     add user to group script = /usr/sbin/usermod -G '%g' '%u'
     add machine script = /usr/sbin/adduser -d /dev/null -s /bin/false -M
'%u'
     admin users = dgonzalez administrator
     wins support = yes
#     idmap uid = 15000-20000
#     idmap gid = 15000-20000
---------------------------------------------------------------------------
Here is part of the messages log output

Nov  3 16:14:48 COBB2 smbd[4168]: [2005/11/03 16:14:48, 0]
lib/util_sock.c:write_socket_data(430)
Nov  3 16:14:48 COBB2 smbd[4168]:   write_socket_data: write failure.
Error = Connection reset by peer
Nov  3 16:14:48 COBB2 smbd[4168]: [2005/11/03 16:14:48, 0]
lib/util_sock.c:write_socket(455)
Nov  3 16:14:48 COBB2 smbd[4168]:   write_socket: Error writing 4 bytes to
socket 22: ERRNO = Connection reset by peer
Nov  3 16:14:48 COBB2 smbd[4168]: [2005/11/03 16:14:48, 0]
lib/util_sock.c:send_smb(647)
Nov  3 16:14:48 COBB2 smbd[4168]:   Error writing 4 bytes to client. -1.
(Connection reset by peer)
Nov  3 16:14:48 COBB2 smbd[4169]: [2005/11/03 16:14:48, 0]
auth/auth_sam.c:check_sam_security(306)
Nov  3 16:14:48 COBB2 smbd[4169]:   check_sam_security:
make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER'
Nov  3 16:14:48 COBB2 smbd[4169]: [2005/11/03 16:14:48, 0]
auth/auth_sam.c:check_sam_security(306)
Nov  3 16:14:48 COBB2 smbd[4169]:   check_sam_security:
make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER'
Nov  3 16:14:49 COBB2 smbd[4169]: [2005/11/03 16:14:49, 0]
auth/auth_sam.c:check_sam_security(306)
Nov  3 16:14:49 COBB2 smbd[4169]:   check_sam_security:
make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER'
Nov  3 16:14:49 COBB2 smbd[4169]: [2005/11/03 16:14:49, 0]
auth/auth_sam.c:check_sam_security(306)
Nov  3 16:14:49 COBB2 smbd[4169]:   check_sam_security:
make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER'
Nov  3 16:14:50 COBB2 smbd[4169]: [2005/11/03 16:14:50, 0]
auth/auth_sam.c:check_sam_security(306)
Nov  3 16:14:50 COBB2 smbd[4169]:   check_sam_security:
make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER'
Nov  3 16:14:50 COBB2 smbd[4169]: [2005/11/03 16:14:50, 0]
auth/auth_sam.c:check_sam_security(306)
Nov  3 16:14:50 COBB2 smbd[4169]:   check_sam_security:
make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER'
Nov  3 16:14:55 COBB2 smbd[4169]: [2005/11/03 16:14:55, 0]
auth/auth_sam.c:check_sam_security(306)
Nov  3 16:14:55 COBB2 smbd[4169]:   check_sam_security:
make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER'
Nov  3 16:14:55 COBB2 smbd[4169]: [2005/11/03 16:14:55, 0]
auth/auth_sam.c:check_sam_security(306)
Nov  3 16:14:55 COBB2 smbd[4169]:   check_sam_security:
make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER'
Nov  3 16:15:02 COBB2 sshd(pam_unix)[4170]: session opened for user root
by (uid=0)
Nov  3 16:15:22 COBB2 smb: smbd shutdown succeeded
Nov  3 16:15:22 COBB2 nmbd[4161]: [2005/11/03 16:15:22, 0]
nmbd/nmbd.c:terminate(56)
Nov  3 16:15:22 COBB2 nmbd[4161]:   Got SIGTERM: going down...
Nov  3 16:15:22 COBB2 smb: nmbd shutdown succeeded
Nov  3 16:15:22 COBB2 smb: smbd startup succeeded
Nov  3 16:15:22 COBB2 nmbd[4238]: [2005/11/03 16:15:22, 0]
nmbd/asyncdns.c:start_async_dns(149)
Nov  3 16:15:22 COBB2 nmbd[4238]:   started asyncdns process 4239
Nov  3 16:15:22 COBB2 nmbd[4238]: [2005/11/03 16:15:22, 0]
nmbd/nmbd_logonnames.c:add_logon_names(163)
Nov  3 16:15:22 COBB2 nmbd[4238]:   add_domain_logon_names:
Nov  3 16:15:22 COBB2 nmbd[4238]:   Attempting to become logon server for
workgroup RICANET on subnet 172.16.0.20
Nov  3 16:15:22 COBB2 nmbd[4238]: [2005/11/03 16:15:22, 0]
nmbd/nmbd_logonnames.c:add_logon_names(163)
Nov  3 16:15:22 COBB2 nmbd[4238]:   add_domain_logon_names:
Nov  3 16:15:22 COBB2 nmbd[4238]:   Attempting to become logon server for
workgroup RICANET on subnet UNICAST_SUBNET
Nov  3 16:15:22 COBB2 nmbd[4238]: [2005/11/03 16:15:22, 0]
nmbd/nmbd_become_dmb.c:become_domain_master_browser_wins(327)
Nov  3 16:15:22 COBB2 nmbd[4238]:   become_domain_master_browser_wins:
Nov  3 16:15:22 COBB2 nmbd[4238]:   Attempting to become domain master
browser on workgroup RICANET, subnet UNICAST_SUBNET.
Nov  3 16:15:22 COBB2 nmbd[4238]: [2005/11/03 16:15:22, 0]
nmbd/nmbd_become_dmb.c:become_domain_master_browser_wins(341)
---------------------------------------------------------------------------
Here is part of the smb.log output

Nov  3 16:15:45 COBB2 nmbd[4238]:   *****
Nov  3 16:15:45 COBB2 nmbd[4238]:
Nov  3 16:15:45 COBB2 nmbd[4238]:   Samba name server COBB is now a local
master browser for workgroup RICANET on subnet 172.16.0.20
Nov  3 16:15:45 COBB2 nmbd[4238]:
Nov  3 16:15:45 COBB2 nmbd[4238]:   *****
Nov  3 16:16:05 COBB2 sshd(pam_unix)[4246]: check pass; user unknown
Nov  3 16:16:05 COBB2 sshd(pam_unix)[4246]: authentication failure;
logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=dgonzalez2
Nov  3 16:16:14 COBB2 sshd(pam_unix)[4248]: session opened for user root
by (uid=0)
Nov  3 16:20:11 COBB2 sshd(pam_unix)[4248]: session closed for user root
Nov  3 16:38:20 COBB2 sshd(pam_unix)[4336]: session opened for user root
by (uid=0)
^[[A
[root at COBB2 root]# tail -f /var/log/samba/smbd.log
  User Administrator in passdb, but getpwnam() fails!
[2005/11/03 16:14:55, 0] auth/auth_sam.c:check_sam_security(306)
  check_sam_security: make_server_info_sam() failed with
'NT_STATUS_NO_SUCH_USER'
[2005/11/03 16:15:22, 0] smbd/server.c:main(760)
  smbd version 3.0.9-1.3E.3 started.
  Copyright Andrew Tridgell and the Samba Team 1992-2004
[2005/11/03 16:15:26, 1] smbd/service.c:make_connection_snum(648)
  test (172.16.0.2) connect to service publico initially as user
administrator (uid=0, gid=1317) (pid 4242)
[2005/11/03 16:15:37, 1] smbd/service.c:close_cnum(836)
  test (172.16.0.2) closed connection to service publico
---------------------------------------------------------------------------

Hope you can help me around !

Regards,

Rodrigo Mora Quesada.
I.T. Manager
Information Technologies Outsourcing, S.A.
Phone: +506 255-2692
       +506 248-0636
Fax:   +506 221-7235

More information about the samba mailing list