[Samba] Unable to rejoin domain, LDAP error 50
kylo at kimpa.pl
Tue Apr 3 16:09:18 UTC 2018
There was lack of membership in Administrators domain/Builtin group.
I had only:
Group Policy Creator Owners
I've added and I'll try. Thank you.
Any hint with the recreation of keytab file?
From: samba [mailto:samba-bounces at lists.samba.org] On Behalf Of Rowland Penny via samba
Sent: Tuesday, April 3, 2018 5:53 PM
To: samba at lists.samba.org
Subject: Re: [Samba] Unable to rejoin domain, LDAP error 50
On Tue, 3 Apr 2018 17:36:35 +0200
Krzysztof Paszkowski via samba <samba at lists.samba.org> wrote:
> I'm sorry, you're absolutely right. I'm not sure why I didn't follow
> your hint. My fault.
> Now, it seems I have exactly the same output as you:
> [root at dc private]# net rpc rights list accounts -U Administrator
The above is the relevant set of rights for the Administrator.
Administrator is a member of the following groups:
memberOf: CN=Domain Admins,CN=Users,DC=samdom,DC=example,DC=com
memberOf: CN=Enterprise Admins,CN=Users,DC=samdom,DC=example,DC=com
memberOf: CN=Group Policy Creator Owners,CN=Users,DC=samdom,DC=example,DC=com
memberOf: CN=Schema Admins,CN=Users,DC=samdom,DC=example,DC=com
Amongst which is 'Administrators', so could (for whatever reason) Administrator have been removed from the 'Administrators' group ?
Another thought, have you given 'Administrator' a uidNumber attribute ?
Or has 'Administrator' been removed from idmap.ldb ?
To unsubscribe from this list go to the following URL and read the
More information about the samba