[Samba] NT4 PDC -> Samba/LDAP PDC failing to work

Andrew Bartlett abartlet at samba.org
Mon Sep 17 02:41:11 GMT 2007

On Fri, 2007-09-14 at 12:11 -0500, Alan Silver wrote:
> Hi all:
> I am trying to migrate my NT4 domain to a samba server which uses an 
> LDAP server on the backend for authentication
> This machine that I want to be the new PDC is running RHEL5 with samba 
> 3.0.23c and an openldap 2.3.27 running on the same machine.
> I used the by-example page
> http://us3.samba.org/samba/docs/man/Samba-Guide/ntmigration.html
> as my guide
> I set this up in a test environment first and it worked  seamlessly.
> Then I tried it out on the production environment........
> My problems arose when I shut down the NT4 controllers and my samba 
> server became the PDC. The samba machine became the PDC, but I was not 
> able to log into the domain from any machine. It appears (at least to 
> me) that the machine accounts are set up correctly.
> The ldap entry looks like

> sambaNTPassword: 079999334444AB6666BBBBB2C2BB1AA

This password looks wrong.  The value is an MD4 hash of a password, and
either you have obscured it for the mail, or something has munged it,
because the chances of it being so regular (9999...BBBBBB) are
staggeringly remote.

Andrew Bartlett

Andrew Bartlett
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20070917/3a29f8e7/attachment.bin

More information about the samba mailing list