[Samba] Fwd: net ads join -> "The connection was refused"

Artur Moor digunit24 at gmail.com
Fri Dec 16 11:08:05 UTC 2016

I don't want to join samba as DC, i am trying to join samba as member to AD.

My setup ist:
DC: dc1.ad.interdekor.com.ua (

root at samba:~# uname -nrs
FreeBSD samba.ad.interdekor.com.ua 11.0-RELEASE

root at samba:~# samba-tool -V

root at samba:~# cat /etc/resolv.conf
search ad.interdekor.com.ua

root at samba:~# cat /etc/krb5.conf
  default_realm = AD.INTERDEKOR.COM.UA
  dns_lookup_realm = true
  dns_lookup_kdc = true

root at samba:~# cat /usr/local/etc/smb4.conf
  netbios name = SAMBA
  security = ads
  workgroup = INTERDEKOR

  nmbd bind explicit broadcast = no

  use sendfile = true

  idmap config * : backend = tdb
  idmap config * : range = 60000-69999
  idmap config INTERDEKOR : backend = ad
  idmap config INTERDEKOR : schema_mode = rfc2307
  idmap config INTERDEKOR : range = 10000-59999

  winbind separator = +
  winbind enum users = yes
  winbind enum groups = yes
  winbind use default domain = yes
  winbind refresh tickets = yes

  restrict anonymous = 2

  log file = /var/log/samba4/log.%m

---------- Forwarded message ----------
From: Rowland Penny via samba <samba at lists.samba.org>
Date: 2016-12-16 10:26 GMT+01:00
Subject: Re: [Samba] net ads join -> "The connection was refused"
To: samba at lists.samba.org

On Fri, 16 Dec 2016 10:10:51 +0100
"L.P.H. van Belle via samba" <samba at lists.samba.org> wrote:

> Hai,
> You need to use samba-tool to join the DC.
> The info can be found here :
> https://wiki.samba.org/index.php/Joining_a_Samba_DC_to_an_

I am not sure that the OP is trying to join a DC, but if he is, then
Louis is correct, otherwise, is everything setup correctly? Especially,
does the machine that is trying to join the domain use the DC as its
nameserver ?


To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list