[Samba] Cant correctly join windows 2K3 domain with Gentoo

Tue Sep 26 15:52:25 GMT 2006

Help me please, I am getting desparate.
I have tried to the follow the following how-to for joining a Gentoo
Linux samba server to a windows 2003 domain and cant seem to get the the
"getent passwd" command to any domain users.

Here is the document that I was following:
http://gentoo-wiki.com/HOWTO_Adding_a_Samba_Server_into_an_existing_AD_D
omain

Here is my smb.conf as well:

# Global Configurations
[global]
        # Netbios Identification
        netbios name = Solidus
        workgroup = marketscan
        realm = MARKETSCAN.COM
        server string = %h, Gentoo Samba Server %v

        # Logging Options
        log file = /var/log/samba/log.%m
        max log size = 50
        log level = 5

        # smb password backend
        # commented out to see if changing it to ldapsam works any
better
	 ; passdb backend = tdbsam
	 passdb backend = ldapsam:ldap://10.11.3.177

        # Winbind, Domain Options
        password server = *
        encrypt passwords = yes
        security = ads
        client signing = yes
        template homedir = /home/MARKETSCAN/%U
        template shell = /bin/bash
        winbind enum users = yes
        winbind enum groups = yes
        winbind use default domain = yes
        idmap uid = 10000-20000
        idmap gid = 10000-20000

        # Network Settings
        socket options = TCP_NODELAY
        interfaces = eth0 lo
        bind interfaces only = yes
        socket address = 10.11.3.210

        # Master Browser options
        local master = no
        os level = 2

        # WINS and DNS Options
        wins server = 10.11.3.177
        dns proxy = yes

# Share level configuration settings
#
# Public share
[public]
        comment = Public Volume on %h
        path = /home/samba/public
        valid users = +users
        writeable = yes
        public = yes
        force create mode = 0766
        force directory mode = 0766
        guest ok = no

# Home directory for valid users.
[homes]
        comment = Home Folder for %u
        valid users = %S
        browseable = no
        writeable = yes
        force create mode = 0700
        force directory mode = 0700

Please do point out any and all flaws in my config or the document that
I mentioned above.

Thanks,

Guillermo Gutierrez
Network Administrator
Market Scan Information Systems, Inc
(818) 575-2000 x2017
ggutierrez at marketscan.com