[Samba] Samba PDC

Robert Fitzpatrick lists at webtent.net
Thu Jan 13 07:41:35 MST 2011 

On 1/13/2011 6:42 AM, TAKAHASHI Motonobu wrote:
>>> Read at:
>>> http://wiki.samba.org/index.php/Windows7
>>>
>>> And remember Samba 3 PDC is compatible with Windows NT Server, not with
>>> Active Directory.
>>
>> Thanks, I was able to join the domain, but when trying to logon, I get
>> another error...
>>
>>> the trust relationship between this workstation and the primary domain
>>> failed
>>
>> What can cause this? I have the computer name in LDAP, it was created when I
>> joined the domain.
>
> Actually the error message shows that joining the domain is failed,
> though joining itself
> was succeeded.
>
> If your Samba's version is under 3.3.1, then you cannot avoid this
> error message,
> upgrading Samba is needed.
>
> If your Samba's version is 3.3.2 - 3.3.4, then the additional settings
> below are needed:
>
>         HKLM\System\CCS\Services\Netlogon\Parameters
>             DWORD  RequireSignOrSeal = 0
>             DWORD  RequireStrongKey = 0
>

I am using Samba 3.5.6 and the registry entries above are as you show 
currently. I removed the computer and smbldap-userdel the computer name 
from LDAP, restarted the workstation and tried again. This is what I see 
in the workstation log...

> [2011/01/13 09:24:48.031223,  0] rpc_server/srv_netlog_nt.c:714(_netr_ServerAuthenticate3)
>   _netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client COLUMBUS-LAPTOP machine account COLUMBUS-LAPTOP$
> [2011/01/13 09:24:48.048892,  0] rpc_server/srv_netlog_nt.c:714(_netr_ServerAuthenticate3)
>   _netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client COLUMBUS-LAPTOP machine account COLUMBUS-LAPTOP$
> [2011/01/13 09:24:58.405131,  0] lib/util_sock.c:474(read_fd_with_timeout)
> [2011/01/13 09:24:58.405404,  0] lib/util_sock.c:1432(get_peer_addr_internal)
>   getpeername failed. Error was Socket is not connected
>   read_fd_with_timeout: client 0.0.0.0 read error = Socket is not connected.

I also get the following in the IP address log, but this may be shortly 
before re-joining...

> [2011/01/13 09:24:38.228048,  0] lib/util_sock.c:1626(get_peer_name)
>   Matchname failed on COLUMBUS-LAPTOP.WEBTENT 192.168.1.72

Can you help me understand these errors or what else I should check?

Thanks again, Robert

More information about the samba mailing list