[Samba] Winbind - Domain Join Failed
Joe Stuart
joe.stuart at gmail.com
Tue Nov 9 08:01:22 MST 2010
Here is the smb.conf
[global]
# Global parameters
workgroup = MYDOMAIN.QA
realm = MYDOMAIN.QA
preferred master = no
server string = Samba file and print server
security = domain
encrypt passwords = yes
log level = 3
log file = /var/log/samba/%m
max log size = 50
idmap uid = 10000-20000
idmap gid = 10000-20000
password server = 10.16.100.200
On Tue, Nov 9, 2010 at 2:45 AM, Oliver Weinmann <oliver.weinmann at vega.de> wrote:
> Hey stuart, can you maybe post you smb.conf?
>
> -----Original Message-----
> From: samba-bounces at lists.samba.org [mailto:samba-bounces at lists.samba.org] On Behalf Of Joe Stuart
> Sent: Montag, 8. November 2010 18:20
> To: samba at lists.samba.org
> Subject: [Samba] Winbind - Domain Join Failed
>
> Hi,
> I'm trying to setup winbind on Solaris 10 update 6 and am having an issue joining the domain. I'm running this command
>
> net ads join -U admin -d10
>
> Here is the last paragraph or so of the debug output.
>
> [2010/11/08 11:12:37, 3] libsmb/cliconnect.c:1176(cli_session_setup)
> SPNEGO login failed: Invalid parameter
> [2010/11/08 11:12:37, 1] libsmb/cliconnect.c:2132(cli_full_connection)
> failed session setup with NT_STATUS_INVALID_PARAMETER
> [2010/11/08 11:12:37, 1] libnet/libnet_join.c:1903(libnet_Join)
> libnet_Join:
> libnet_JoinCtx: struct libnet_JoinCtx
> out: struct libnet_JoinCtx
> account_name : NULL
> netbios_domain_name : NULL
> dns_domain_name : NULL
> forest_name : NULL
> dn : NULL
> domain_sid : NULL
> domain_sid : (NULL SID)
> modified_config : 0x00 (0)
> error_string : 'failed to lookup DC info for domain 'MYDOMAIN.QA' over rpc: Invalid parameter'
> domain_is_ad : 0x00 (0)
> result : WERR_INVALID_PARAM Failed to join domain: failed to lookup DC info for domain 'MYDOMAIN.QA' over rpc: Invalid parameter
>
> I'm really stumped on this one, since I can run net ads info just fine. I also get no errors when running the kinit command.
>
> root# net ads info
> LDAP server: 10.16.100.200
> LDAP server name: server1.mydomain.qa
> Realm: MYDOMAIN.QA
> Bind Path: dc=MYDOMAIN,dc=QA
> LDAP port: 389
> Server time: Mon, 08 Nov 2010 11:16:57 CST KDC server: 10.16.100.200 Server time offset: 0
>
> Thanks for any help in advance.
>
>
> -Joe
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
>
> ______________________________________________________________________
> This email has been scanned by the MessageLabs Email Security System.
> For more information please visit http://www.messagelabs.com/email ______________________________________________________________________
>
More information about the samba
mailing list