[Samba] Windows 7 cannot connect to domain member

Gaiseric Vandal gaiseric.vandal at gmail.com
Tue Oct 5 07:06:35 MDT 2010


I think that even with out that explicitly set domain members should be 
able to  locate the domain controller.


Does this problem exist with Windows clients that are joined to the 
domain?      In smb.conf,  have you set the ports?  By default 139 and 
445 are listening-  if you disable 445 it doesn't seem to affect Windows 
clients joined to the domain but it does affect non-domain windows clients.


I user to have a setup with 1 PDC and 2 domain members-   all machines 
had a common unix user backend (NIS then LDAP.)  Which I thought would 
make everything work AOK.      Long and short, was that I still needed 
winbind running on the member servers and even though I had unix and 
samba user's both in LDAP, the idmapping (unix id's to windows sids) was 
not consisent.  I converted the member servers to BDC's  so that 
everything was consistent across machines.




On 10/05/2010 08:30 AM, Daniel Müller wrote:
> You are missing "password server=yourpdc" on your member server. How should
> your member server know about your users?
>
> Daniel
>
> -----------------------------------------------
> EDV Daniel Müller
>
> Leitung EDV
> Tropenklinik Paul-Lechler-Krankenhaus
> Paul-Lechler-Str. 24
> 72076 Tübingen
>
> Tel.: 07071/206-463, Fax: 07071/206-499
> eMail: mueller at tropenklinik.de
> Internet: www.tropenklinik.de
> -----------------------------------------------
>
> -----Ursprüngliche Nachricht-----
> Von: samba-bounces at lists.samba.org [mailto:samba-bounces at lists.samba.org] Im
> Auftrag von Michel Correge
> Gesendet: Dienstag, 5. Oktober 2010 13:43
> An: samba at lists.samba.org
> Betreff: [Samba] Windows 7 cannot connect to domain member
>
> Hi,
>
> I have installed Samba 3.5.5 on a Sparc Solaris 10 system and it's the PDC
> of a domain mainly consisting of other Sun boxes.
>
> On the other hand, I have a PC with Windows 7 that I don't want to put in
> the same domain (it's in a
> workgroup)
>
> When I try to connect some share (user's home) from the Windows box, I get
> strange results :
>
> - If the share is on the PDC, I can connect giving Username and Password
> - If the share is on a member of the domain different from the PDC,
> connection fails.
>
> Configuration for PDC :
>
> Load smb config files from /usr/local/samba-3.5.4/lib/smb.conf
> rlimit_max: rlimit_max (256) below minimum Windows limit (16384) Processing
> section "[netlogon]"
> Processing section "[profiles]"
> Processing section "[print$]"
> Processing section "[printers]"
> Processing section "[homes]"
> Loaded services file OK.
> Server role: ROLE_DOMAIN_PDC
> Press enter to see a dump of your service definitions
>
> [global]
>           unix charset = iso8859-1
>           workgroup = DCSD-T
>           interfaces = bge0
>           map to guest = Bad Password
>           passdb backend = tdbsam:/var/samba-3.5.4/private/passdb.tdb
>           username map = /usr/local/samba-%v/lib/usermap
>           log file = /var/samba-%v/log/samba-%m.log
>           printcap name = /usr/local/samba-3.5.4/lib/printcap
>           disable spoolss = Yes
>           logon path =
>           logon drive = Q:
>           logon home = \\%L\%U
>           domain logons = Yes
>           os level = 32
>           preferred master = Yes
>           domain master = Yes
>
> [netlogon]
>           comment = Network Logon Service
>           path = /var/samba-%v/netlogon
>           browseable = No
>
> [profiles]
>           comment = Profiles Service
>           path = /var/samba-%v/profiles
>           read only = No
>           create mask = 0600
>           directory mask = 0700
>
> [print$]
>           comment = Printer Driver Download Area
>           path = /var/samba-%v/drivers
>           write list = root
>           guest ok = Yes
>
> [printers]
>           comment = All Printers
>           path = /var/samba-%v/spool
>           create mask = 0700
>           guest ok = Yes
>           printable = Yes
>           browseable = No
>
> [homes]
>           comment = Home Directory
>           read only = No
>           create mask = 0640
>           directory mask = 0750
>           browseable = No
>
> Configuration for a domain member :
>
> Load smb config files from /usr/local/samba-3.5.4/lib/smb.conf
> rlimit_max: rlimit_max (256) below minimum Windows limit (16384) Processing
> section "[PC_Softs]"
> Processing section "[homes]"
> Loaded services file OK.
> Server role: ROLE_DOMAIN_MEMBER
> Press enter to see a dump of your service definitions
>
> [global]
>           unix charset = iso8859-1
>           workgroup = DCSD-T
>           security = DOMAIN
>           passdb backend = tdbsam:/var/samba-%v/private/passdb.tdb
>           log file = /var/samba-%v/log/samba-%m.log
>           load printers = No
>           local master = No
>
> [PC_Softs]
>           comment = Logiciels PC
>           path = /local/PC_SOFTS
>           write list = correge
>           guest ok = Yes
>
> [homes]
>           comment = Home Directory
>           read only = No
>           create mask = 0640
>           directory mask = 0750
>           browseable = No
>
> Result of an attempt of connection on the member :
> [2010/10/05 13:25:47.648076,  2] libsmb/namequery.c:801(name_query)
>     Got a positive name query response from 134.212.240.15 ( 134.212.240.15 )
> [2010/10/05 13:25:47.940835,  2] auth/auth.c:314(check_ntlm_password)
>     check_ntlm_password:  Authentication for user [admin] ->  [admin] FAILED
> with error NT_STATUS_NO_SUCH_USER
> [2010/10/05 13:25:55.915986,  2] smbd/sesssetup.c:1390(setup_new_vc_session)
>     setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all
> old resources.
> [2010/10/05 13:25:55.917166,  2] smbd/sesssetup.c:1390(setup_new_vc_session)
>     setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all
> old resources.
> [2010/10/05 13:25:55.939908,  2] auth/auth.c:314(check_ntlm_password)
>     check_ntlm_password:  Authentication for user [correge] ->  [correge]
> FAILED with error NT_STATUS_NO_SUCH_USER
> [2010/10/05 13:26:00.436250,  2] smbd/sesssetup.c:1390(setup_new_vc_session)
>     setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all
> old resources.
>
> Any idea of what is wrong ?
>
> Thanks
>
>    



More information about the samba mailing list