[Samba] authentication problem with samba4 as a dcerpc server

Andrew Bartlett abartlet at samba.org
Sat Jun 8 02:20:21 MDT 2013

On Thu, 2013-06-06 at 09:44 -0700, eric gou wrote:
> I made a mistake in the previous letter. I use the command “net ads join”, looks that’s not for the samba4,
> now I use the “samba-tool” to join a DC domain as a member, and it succeed, I can see some info stored in 
> secrets.ldb.
> ./samba-tool domain join SMB3.COM MEMBER -Uadministrator --realm=SMB3.COM
> unfortunately, when I start the “samba”, it still fails to find the domain info, so as to the latter authenticating for msrpc:
> task_server_terminate: [dreplsrv: no DSDB replication required in domain member configuration]
> single_terminate: reason[dreplsrv: no DSDB replication required in domain member configuration]
> ldb_wrap open of secrets.ldb
> task_server_terminate: [Cannot start Winbind (domain member): Failed to find record for SMB3 in /usr/local/samba/private/secrets.ldb: No such object: (null): Have you joined the SMB3 domain?]
> any one can help?

I think it's the same issue in both cases.  Are you sure you joined the
domain by the correct netbios domain name?

I think your workgroup=  setting might not match the netbios domain name
of the domain, which is why it isn't being found.

Andrew Bartlett

Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org

More information about the samba mailing list