[Samba] not able to log on (PDC with ldap backend)

ingo.schmitt at binarysignals.net ingo.schmitt at binarysignals.net
Tue Dec 18 02:06:26 MST 2012


Hi Gaiseric,

I was able to see the PDC in the network neighborhood
till I joined to the Domain. Now, since I'm set up the WINS server at the
client, I can also log on the PDC, so everthing is fine now :)

Thx for your support ;)



> But do you see  "Account Flags: [W          ] " for the Vista machine
> account?
>
> Did you also see a machine account for the samba PDC  itself?  It should
> include
>
>      Account Flags:        [S          ]
>
>
>
> Are is the Vista client configured to use WINS?
>
>
>
>
> On 12/17/12 10:29, ingo.schmitt at binarysignals.net wrote:
>> Hi, I just posted my smb.conf to pastebin: http://pastebin.com/r29mgMcK
>>
>> I haven't specified ports - I assumed the default ones should do.
>> I guess I ran more into a client side issue but I actually don't know.
>>
>> pdbedit -Lv shows the Administrator and the respective machine account.
>> The only attribute I miss is the [A] for the Administrator account, it
>> shows a [U] only. But thats cannot be the reason why I cannot logon. Im
>> also able to ping the client from the server. So the client is basically
>> able to connect.
>>
>> Thx,
>> Ingo
>>
>>> Hi
>>>
>>> Attachments are not supported on the mailing list.
>>>
>>>
>>> Does the  "pdbedit -Lv /machinename$/" command on the samba server show
>>> the machine account?    The account flags should be [W          ] only.
>>>
>>> In LDAP, you should see the following attributes
>>>
>>> objectClass=sambaSamAccount
>>> sambaNTPassword
>>> samabSID
>>> sambaAccountFlags= [W ]
>>> sambaPrimaryGroupSID
>>>
>>>
>>> I found that with Samba 3.5.x some of the ldap attributes were not set
>>> correctly and I had to manually fix the sambaAccountFlags entry.
>>>
>>>
>>> Have you specified any ports in the smb.conf.  You should stay with the
>>> default
>>>
>>>       smb ports = 445 139
>>>
>>>
>>> Windows clients may try initially connecting on port 445 (SMB over TCP)
>>> then connect to 139 (SMB over Netbios over TCP.)      In theory, you
>>> shouldn't need 445 but  find disabling in on samba sometimes "confuses"
>>> windows clients.
>>>
>>>
>>>
>>>
>>>
>>> On 12/17/12 04:31, ingo.schmitt at binarysignals.net wrote:
>>>> Hello,
>>>>
>>>> I set up my first PDC with LDAP as backend. I'm able to join a vista
>>>> client to the domain. However, when want to log onto after rebooting
>>>> the
>>>> client, it claims that the logon server is n/a. My smb and slapd.confs
>>>> are
>>>> attached.
>>>>
>>>> Any ideas what i did wrong or missed to configure?
>>>>
>>>> Thx,
>>>> Ingo
>>>>
>>>>
>>>> My samba Version is: 3.5.4-5.11.1-2573-SUSE-SL11.3
>>>>
>>>>
>>> --
>>> To unsubscribe from this list go to the following URL and read the
>>> instructions:  https://lists.samba.org/mailman/options/samba
>>>
>>
>
>




More information about the samba mailing list