[Samba] Machine-level shares on Windows server
Jeremy Evans
Jeremy.Evans at pertronic.co.nz
Mon Aug 11 21:11:13 GMT 2008
That's just it - as I mentioned, I *have* joined the domain OK. At what
point am I supposed to receive a machine password?
A full transcript to illustrate the problem better:
----
root at bugzilla:~# net ads join -U administrator
administrator's password:
Using short domain name -- MYCOMPANY
Joined 'BUGZILLA' to realm 'MYCOMPANY.LOCAL'
root at bugzilla:~# net ads testjoin
Join is OK
root at bugzilla:~# smbclient -P -L //sbs
ERROR: Unable to fetch machine password
----
My smb.conf has the following setup:
----
security = ADS
realm = MYCOMPANY.LOCAL
workgroup = mycompany
password server = sbs.mycompany.local
wins support = no
wins server = sbs
invalid users = root
# Winbind settings
idmap uid = 10000-20000
idmap gid = 10000-20000
# For testing
debuglevel = 2
----
I'm sure there's something small & stupid I've overlooked, but what???
Jeremy
> -----Original Message-----
> From: Gerald (Jerry) Carter [mailto:jerry at samba.org]
> Sent: Tuesday, 12 August 2008 03:30
> To: Jeremy Evans
> Cc: samba at lists.samba.org
> Subject: Re: [Samba] Machine-level shares on Windows server
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Jeremy Evans wrote:
>
> > I realise that. I *did* give a 2nd example in my original post:
> >
> > $sudo smbclient -P -L //sbs
> > ERROR: Unable to fetch machine password
> >
> >
> > "net ads testjoin" returns an OK result at my end & the PDC shows
the
> > machine as joined to the domain at the other.
> >
> > What I don't seem to be able to find out is just how the Windows PDC
> &
> > Samba interact to ensure that the Samba machine is a [trusted?]
> member
> > of the domain & therefore how to use that fact to allow
machine-level
> > shares without having to perform a user-level login.
>
> In that case, did you join the domain? Unless, this is just a bug,
> that seems the obvious explanation.
>
>
>
>
> cheers, jerry
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.6 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iD8DBQFIoFsQIR7qMdg1EfYRAlTCAKCqYd29MWtR2u+HQ5d2iJ4brcoxQwCg5Cwj
> riGXI8QLCxKz1D86icciU3M=
> =jpEz
> -----END PGP SIGNATURE-----
>
> Scanned by Bizo Email Filter
More information about the samba
mailing list