[Samba] Samba and AD login Problem
Chad
masterclc at gmail.com
Mon Dec 31 16:46:57 GMT 2007
On Dec 31, 2007 7:59 AM, Volker Lendecke <Volker.Lendecke at sernet.de> wrote:
> On Mon, Dec 31, 2007 at 04:41:16PM +0200, Serbulent UNSAL wrote:
> > I am trying to join an AD domain due to the this (
> > http://gentoo-wiki.com/HOWTO_Active_Directory_with_Samba_and_Winbind
> > ) document.
> >
> > but when i try to add my computer to AD i get these error messages.
> >
> > haploit srb # net ads join -U Administrator
> > Administrator's password:
> > Using short domain name -- ISTANBUL
> > Failed to set servicePrincipalNames. Please ensure that
> > the DNS domain of this server matches the AD domain,
> > Or rejoin with using Domain Admin credentials.
> > Deleted account for 'HAPLOIT' in realm 'ISTANBUL'
> > Failed to join domain: Type or value exists
>
> Make sure that the fully qualified domain name and your host
> name differ in the sense that you actually have a domain
> appended.
>
> Under Linux, "hostname" and "hostname -f" need to return
> different things, hostname -f should preferrably show your
> AD domain name appended.
>
> Volker
In addition, make sure that "Administrator" is your Domain Admin. I
used my Domain Admin account (an actual account not Administrator) and
it worked great. Also a piece of information that seems to be
floating around is that the krb5.conf doesn't need to exist and may
actually cause problems if configured incorrectly. Samba will get the
Kerberos info from AD if it's configured correctly.
-Chad
More information about the samba
mailing list