[Samba] [Fwd: Windows 2003 server unable to join a Samba PDC]

Christian christian at telemack.net
Tue Aug 22 18:03:40 GMT 2006


Thanks for the hint -

Windows 2003 debug file yields this :

08/22 18:06:11 NetpDsGetDcName: trying to find DC in domain 'NEOT', flags:
0x1020
08/22 18:06:19 NetpDsGetDcName: found DC '\\ADMIN-PDC2' in the specified
domain
08/22 18:06:19 NetpJoinDomain: status of connecting to dc '\\ADMIN-PDC2': 0x0
08/22 18:06:19 NetpGetLsaPrimaryDomain: status: 0x0
08/22 18:06:19 NetpGetNt4RefusePasswordChangeStatus: trying to read from
'\\ADMIN-PDC2'
08/22 18:06:19 NetpGetNt4RefusePasswordChangeStatus: RefusePasswordChange
== 0
08/22 18:06:19 NetpLsaOpenSecret: status: 0xc0000034
08/22 18:06:19 NetpGetLsaPrimaryDomain: status: 0x0
08/22 18:06:19 NetpLsaOpenSecret: status: 0xc0000034
08/22 18:06:20 Failed to validate machine account for OFFICE1 against
\\ADMIN-PDC2: 0xc000006d
08/22 18:06:20 NetpJoinDomain: w9x: status of validating account: 0x52e

- Then apparently, as it did not found a valid machine account, it tries
to create on but fails (one is already present)

8/22 18:06:21 NetpManageMachineAccountWithSid: NetUserAdd on
'\\ADMIN-PDC2' for 'OFFICE1$' failed: 0x8b0
08/22 18:06:21 NetpManageMachineAccountWithSid: status of attempting to
set password on '\\ADMIN-PDC2' for 'OFFICE1$': 0x0
08/22 18:06:21 NetpJoinDomain: status of creating account: 0x0
08/22 18:06:21 NetpGetLsaPrimaryDomain: status: 0x0
08/22 18:06:21 NetpSetLsaPrimaryDomain: for 'NEOT' status: 0xc000000d
08/22 18:06:21 NetpJoinDomain: status of setting LSA pri. domain: 0x57
08/22 18:06:21 NetpJoinDomain: initiaing a rollback due to earlier errors

Apparently it fails with this LSA domain stuff.
then it disables the account :
0
08/22 18:06:21 NetpGetLsaPrimaryDomain: status: 0x0
08/22 18:06:21 NetpManageMachineAccountWithSid: status of disabling
account 'OFFICE1$' on '\\ADMIN-PDC2': 0x0

I checked and re-chechecked that the machine account was both a valid unix
and samba account.
I even try a different machine name but to no avail.

I checked the samba log, but there is a massive amount of info. I parsed
it however and could not exactly figure out what is wrong is the process.

I know however that the machine name is found in smbpasswd file :

"[2006/08/22 18:07:02, 10] passdb/pdb_smbpasswd.c:smbpasswd_getsampwnam(1339)
  getsampwnam (smbpasswd): found by name: office1$"



> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Christian,
>
>> I have been trying for hours to make a Windows 2003
>> Server R2 SP1 join a Samba PDC.
>> It does not work, and I simply get an error "Invalid
>> Parameter" on the 2003 side.
>
> Check the smbd logs (at level 10) and see why that error
> code is being returned.
>
>
>
> cheers, jerry
> =====================================================================
> Samba                                    ------- http://www.samba.org
> Centeris                         -----------  http://www.centeris.com
> "What man is a man who does not make the world better?"      --Balian
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.4 (MingW32)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iD8DBQFE6iKKIR7qMdg1EfYRAvx0AKCpGOecjAD7KM5llZnOUxMdjl480ACfSoYM
> 50PboRRLN5Mhty/svF/SZb0=
> =9ray
> -----END PGP SIGNATURE-----
>




More information about the samba mailing list