[Samba] Joining Windows XP Prof Client To Domain

zdennis zdennis at mktec.com
Tue Jul 11 22:24:53 GMT 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I have my PDC up, but I cannot join any windows clients to it. I get prompted for the username/password to join the domain with
but everything that is returned is a bad username/password.

I created an "administrator" user who should be the equivalent of the windows domain admin, but perhaps I am wrong. I set the
sambaPrimaryGroupSID to S-1-5-21-3040749549-2843134544-1782940832-500 where everything but the "-500" is my domains sid as
returned by "net getlocalsid"

Here is the entry for my administrator:

# administrator, Users, mktec.com
dn: uid=administrator,ou=Users,dc=mktec,dc=com
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: shadowAccount
objectClass: sambaSamAccount
cn: administrator
sn: administrator
givenName: administrator
uid: administrator
uidNumber: 500
gidNumber: 512
homeDirectory: /home/administrator
loginShell: /bin/bash
gecos: System User
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaKickoffTime: 2147483647
sambaPwdCanChange: 0
displayName: System User
sambaSID: S-1-5-21-3040749549-2843134544-1782940832-2000
sambaLogonScript: logon.bat
sambaProfilePath: \\users.mktec.com\profiles\administrator
sambaHomePath: \\users.mktec.com\administrator
sambaHomeDrive: H:
sambaAcctFlags: [U]
sambaPwdLastSet: 1152654539
sambaPwdMustChange: 1156542539
sambaPrimaryGroupSID: S-1-5-21-3040749549-2843134544-1782940832-500

I am trying to follow the instructions in Chapter 6 that state:

"When the user elects to make the client a domain member, Windows 200x prompts for an account and password that has privileges to
create machine accounts in the domain. A Samba administrator account (i.e., a Samba account that has root privileges on the Samba
server) must be entered here; the operation will fail if an ordinary user account is given."

Perhaps I have misunderstood them?

Zach
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFEtCU1Myx0fW1d8G0RAuxKAJ9rLcmxyvgn8mz8l8MtG1OicezsbACeM6vU
OuHSK1G27WGtnlzbbInEJ60=
=0Tdt
-----END PGP SIGNATURE-----


More information about the samba mailing list