[Samba] Interdomain Trust and Logging In

[Matt Hyclak]

I'm having problems getting Interdomain trusts set up. Both servers are
running samba-3.0.10-1.4E.9 (one RHEL 4, the other CentOS 4). The two
domains are SOCIALWORK and MATH, servers swserver and bing respectively.

On bing, I created a socialwork$ account with the -i option to smbpasswd.
On swserver, I created a math$ account with the -i option to smbpasswd.

The trust relationships seem to be there:

[root at www samba]# net rpc trustdom list
Password:
Trusted domains list:

MATH                S-1-5-21-902756538-3544332907-460370930

Trusting domains list:

MATH                S-1-5-21-902756538-3544332907-460370930

[root at bing bing]# net rpc trustdom list
Password:
Trusted domains list:

SOCIALWORK          S-1-5-21-1822452546-1660970903-4126480946

Trusting domains list:

SOCIALWORK          S-1-5-21-1822452546-1660970903-4126480946


I have winbindd started on both servers. If I try to log in to a machine
that is associated with the MATH domain using a SOCIALWORK account, I get
the "The system could not log you on. Make sure your username and domain are
correct..." error. Likewise, if I am logged into a SOCIALWORK machine with a
SOCIALWORK account and attempt to access a resource on bing, I am
continually prompted for username and password. All of the above holds for
the opposite direction as well.

I can't find anything in the logs indicating what might be happing. Could
someone point out anything I've missed, suggest debug levels and which logs
to look at (and what to look for)? I've been fighting with this for a week
now and I think I just need a fresh set of eyeballs.

Thanks,
Matt

-- 
Matt Hyclak
Department of Mathematics 
Department of Social Work
Ohio University
(740) 593-1263