[Samba] winbind and smb tries to auth as pdc$ rather than local name when using ADS

Jonathan Petersson jpetersson at garnser.se
Wed Sep 23 20:38:30 MDT 2009


This specific instance is intended to host shares for which users
authenticate with their AD credentials, the normal authentication for
the system works fine and so does joining the domain. As mentioned
earlier initializing kinit and wbinfo returns the expected results and
the server shows up as a member in AD.

I'll try to replace the workgroup with the realm-data.

Thanks

/Jonathan

On Wed, Sep 23, 2009 at 7:02 PM, Adam Nielsen <adam.nielsen at uq.edu.au> wrote:
>> As it seams the server tries to authenticate as pdc$ rather than
>> presidio3$ which is the hostname of the server and the name it's
>> registered as. What could the cause of this be?
>>
>> smb.conf:
>>    workgroup = PRESIDIO
>>    password server = pdc.domain.com
>>    realm = DOMAIN.COM
>>    security = ads
>>       netbios name = presidio3
>
> I think the workgroup is meant to be the short version of the domain, so
> if your realm is DOMAIN.COM your workgroup should be DOMAIN.
>
> Are you trying to join Samba to the domain?  If so, you shouldn't need
> to specify a password server, that's only used to check passwords when
> Samba isn't part of the domain (IIRC.)  If you intend to add Samba as a
> normal PC inside the domain then password authentication will work
> (perhaps courtesy of winbind) without specifying a password server.
>
> Cheers,
> Adam.
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>


More information about the samba mailing list