[Samba] Fwd: correction - Frustrated with "there are currently no logon servers available"

Dewayne Geraghty dewayne.geraghty at heuristicsystems.com.au
Fri Feb 1 19:04:01 MST 2013


Bottom posted. 

> -----Original Message-----
> From: samba-bounces at lists.samba.org 
> [mailto:samba-bounces at lists.samba.org] On Behalf Of Morgan Toal
> Sent: Saturday, 2 February 2013 10:12 AM
> To: samba at lists.samba.org
> Subject: Re: [Samba] Fwd: correction - Frustrated with "there 
> are currently no logon servers available"
> 
> OK,
> 
> How do I confirm the sid that the windows box is using?
> 
> I can get the domain sid from net getlocalsid I can get the 
> user sid of a local user no problem
> 
> In reference to unjoining and rejoining...
> does this require something more than :
> 1) userdel machine$
> 2) pdbedit --delete machine$
> 
> ADditional Information:
> 
> when I join the domain, and the message "welcome to the 
> domain" appears I get the following message immediately 
> appear inb my logs:
> 
>   _netr_ServerAuthenticate3: netlogon_creds_server_check failed. 
> Rejecting auth request from client WIN7 machine account WIN7$
> 
> Arrrrgh!!!!!
> 
> 
> 
> On 2/1/2013 10:44 AM, Mike Howard wrote:
> > On 01/02/2013 15:59, Morgan Toal wrote:
> >>
> >> On 2/1/2013 8:54 AM, Morgan Toal wrote:
> >>
> >> OK I feel even dumber now...  I pasted the wrong text into 
> my email 
> >> due to my frustration level.
> >>
> >> The error is: "there are currently no logon servers available"
> >> as opposed to: "the network name is no longer available"
> >>
> > That error has always meant to me that the client in question has 
> > somehow become unjoined (for all intents and purposes). 
> That is, it's 
> > SID no longer matches that held by the PDC.
> >
> > Have you tried unjoining the domain, ensuring the client record has 
> > actually been removed and rejoining?
> >
> 
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba

These are very frustrating.  I've found that playing with server/client signing and schannel a great way to waste a weekend; though
in this case, can I suggest that you comment out the line:
server signing = auto

>From my notes in 201107, 
# With signing=auto & schannel=auto;can join domain and can access fileshares; CANT login
# With signing=no & schannel=auto; can join and login; CANT access fileshare
Regards, Dewayne.



More information about the samba mailing list