[Samba] joining to domain breaks kerberos authentication
Russell Davies
rd at zip.com.au
Mon Aug 28 06:03:34 GMT 2006
Hi All,
I'm running samba-3.0.23b compiled on a Solaris 10
system compiled against MIT kerberos. I am experiencing
odd behaviour where joining the machine to the domain
using 'net rpc join' seems to break the kerberos principal
tickets and regular user authentication via kerberos ceases
to work.
My smb.conf is fairly minimal;
[global]
use kerberos keytab = yes
unix charset = LOCALE
realm = <realmname>
workgroup = <workgroupname>
security = ADS
log level = 1
syslog = 0
[homes]
comment = Home Directories
valid users = %S
read only = No
browseable = No
Some research on the internet and the man page suggests that the
'use kerberos keytab' directive should prevent this from happening
but unfortauntely a net rpc join breaks authentication despite this
setting.
If anyone has a suggestion, help at this point would be appreciated.
regards,
r.
More information about the samba
mailing list