[Samba] winbind and smb tries to auth as pdc$ rather than local name when using ADS

Andrew Masterson Andrew.Masterson at nuvistaenergy.com
Mon Sep 28 05:14:59 MDT 2009

> [root at presidio3 ~]# net ads join -U Administrator
> Enter Administrator's password:
> [2009/09/23 23:58:48,  0] libads/kerberos.c:ads_kinit_password(362)
>   kerberos_kinit_password Administrator at GARNSER.SE failed: Cannot find
> KDC for requested realm
> Failed to join domain: failed to connect to AD: Cannot find KDC for
> requested realm
> Any idea why this is?

Do you have 
kdc = pdc.domain.name:88
In your krb5.conf?  Is your firewall allowing traffic to/from on port 88? Or do you have 
dns_lookup_kdc = no
in your krb5.conf file? (the default is supposed to be "yes")
And can you ping the kdc from your box?  Is DNS resolving properly?

More information about the samba mailing list