[Samba] unable to connect to KDC Server

agustin cruz agustincruz at live.com
Tue Jun 3 18:24:07 GMT 2008


I'm trying to connect my FreeBSD 6.2 machine to Windows 2008 Server AD. 
this is what I get. 

rock# kinit Administrator
Administrator at LAB.NET's Password: 
kinit: NOTICE: ticket renewable lifetime is 1 week
rock# klist
Credentials cache: FILE:/tmp/krb5cc_0
        Principal: Administrator at LAB.NET

  Issued           Expires          Principal           
Jun  3 11:19:44  Jun  3 21:19:44  krbtgt/LAB.NET at LAB.NET
rock# net ads join -U Administrator
Administrator's password: 
[2008/06/03 11:20:01, 0] utils/net_ads.c:ads_startup(281)
  ads_connect: Server not found in Kerberos database
rock# 

*****my krb5.conf***********
[libdefaults]
        default_realm = lab.net
        clockskew = 300
        v4_instance_resolve = false
        v4_name_convert = {
                host = {
                        rcmd = host
                        ftp = ftp
                }
                plain = {
                        something = something-else
                }
        }

[realms]
        SAFAD.LAB.NET  = {
                kdc = SAFAD.LAB.NET
        }
        SAFAD.LAB.NET  = {
                v4_instance_convert = {
                        kerberos = kerberos
                        computer = SAFAD.LAB.NET
                }
        }
[domain_realm]
        .lab.net  = LAB.NET
[kdc]
profile = /usr/src/crypto/heimdal/krb5.conf


***********my smb.conf ***********
[global]
        workgroup = LAB
        realm = LAB.NET
        server string = SambaServer
        security = ADS
        password server = SAFAD.LAB.NET    ####*
        guest account = pcguest
        use kerberos keytab = Yes
        log file = /var/log/samba/log.%m
        max log size = 50
        socket options = SO_RCVBUF=8192 SO_SNDBUF=8192
        printcap name = lpstat
        os level = 33
        local master = No
        domain master = No
        dns proxy = No
        wins server = SAFAD.LAB.NET
        idmap uid = 1000-29999
        idmap gid = 1000-29999
        winbind separator = /
        winbind enum users = Yes
        winbind enum groups = Yes
        winbind use default domain = Yes
        hosts allow = 192.168.124., 192.168.1., 127.

Thanks in advance, 
Augustin. 


_________________________________________________________________
Search that pays you back! Introducing Live Search cashback.
http://search.live.com/cashback/?&pkw=form=MIJAAF/publ=HMTGL/crea=srchpaysyouback


More information about the samba mailing list