[Samba] Unable to join to Windows 2003 PDC using samba 3.5.8 from a linux machine!!

Rick Gates rick123.gates at gmail.com
Fri Apr 1 12:09:48 MDT 2011 

Hi Gaiseric,

To answer some of the questions in the last mail:

>Is the ADS domain in "NT4 compatibility" mode or "windows 2003 native"
mode?

will need to check that out. Will check out how can I do so (googling should
help here) and post the outcome.

> Did you try adding the kerberos realm info for ABCDOM.PQR.COM into the
samba clients krb5?

Yeah. I did try to configure kerberos.
In fact, "kinit Administrator" succeeds. Correct me if I am mistaken, but I
believe that indicates that kerberos configuration has no issues.
(Missed including krb5.conf in my original post. Will do that soon (probably
in my next post))

Will check the remaining points and post the outcome.

Thanks,
Rick

On Fri, Apr 1, 2011 at 10:00 PM, Gaiseric Vandal
<gaiseric.vandal at gmail.com>wrote:

> So your samba server thinks it is  joining an NT4 domain.
> Is the ADS domain in "NT4 compatibility" mode or "windows 2003 native"
> mode?    I think that "NT4" machines can still join ADS domains even if the
> ADS domains are in 2000/2003 mode.
>
> Did you try adding the kerberos realm info for ABCDOM.PQR.COM into the
> samba clients krb5?
>
> Also check
>
>    testparm -v | grep resolve
>
> By default
>    name resolve order = lmhosts wins host bcast
>
> I think it is better to have hosts and wins first.
>
> Is the ADS server your DNS server?  Is the samba server using the ADS
> server as the DNS server?  DNS should include "resource records" to help
> locate an ADS DC.  I don't think you can have lmhosts entry for an ADS
> server.
>
>
>
>
> On 04/01/2011 11:59 AM, Rick Gates wrote:
>
>> Hi all,
>>
>> I am using samba 3.5.8 on a linux machine.
>> I am not able to join the domain of a windows 2003 server in ADS mode.
>>
>> I am getting the following error message:
>>
>> # /usr/local/samba/bin/net ads join -U Administrator%password -I
>> 10.25.66.71
>>
>> Failed to join domain: failed to find DC for domain ABCDOM.PQR.COM
>> #
>>
>> I am not sure what the issue here.
>> It works absolutely fine when I try to join the domain in rpc mode.
>>
>> # /usr/local/samba/bin/net rpc join -U Administrator%password
>> Joined domain ABCDOM.
>> #
>>
>> The smb.conf used is:
>>
>> # /usr/local/samba/bin/testparm
>> Load smb config files from /usr/local/samba/lib/smb.conf
>> rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
>> Processing section "[homes]"
>> Processing section "[printers]"
>> Processing section "[Linux]"
>> Loaded services file OK.
>> Server role: ROLE_DOMAIN_MEMBER
>> Press enter to see a dump of your service definitions
>>
>> [global]
>>         workgroup = ABCDOM
>>         realm = ABCDOM.PQR.COM
>>         server string = Samba Server - Research
>>         security = ADS
>>         password server = 10.25.66.71
>>         log level = 10
>>         log file = /var/log/samba/%m.log
>>         max log size = 50
>>         add user script = /usr/sbin/useradd %u
>>         delete user script = /usr/sbin/userdel %u
>>         add group script = /usr/sbin/groupadd %g
>>         delete group script = /usr/sbin/groupdel %g
>>         add user to group script = /usr/sbin/usermod -a -G %g %u
>>         delete user from group script = /usr/sbin/deluser %u %g
>>         add machine script = /usr/sbin/adduser -n -g machines -c Machine
>> -d
>> /dev/null -s /bin/false %u
>>         domain master = No
>>         dns proxy = No
>>         wins server = 10.25.66.71
>>         idmap uid = 200-120000
>>         idmap gid = 200-120000
>>         admin users = root
>>         cups options = raw
>>
>> [homes]
>>         comment = Home Directories
>>         read only = No
>>         browseable = No
>>
>> [printers]
>>         comment = All Printers
>>         path = /usr/spool/samba
>>         printable = Yes
>>         browseable = No
>>
>> [Linux]
>>         comment = Share on this linux machine
>>         path = /tmp/linux
>>         read only = No
>> #
>>
>> NOTE: 10.25.66.71 is the IP of my 2003 windows server.
>>
>> My lmhosts file is:
>>
>> # cat lmhosts.
>> 10.25.66.71 ABC3
>> 10.25.66.71 ABCDOM#1b
>> 10.25.66.71 ABCDOM#1c
>>
>> #
>>
>> It would be great, if any one can tell me if there is anything wrong here
>> and probably help me sort out this issue.
>> Thanks in advance!!
>>
>> Thanks,
>> Rick
>>
>>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>

More information about the samba mailing list