[Samba] Problem joining windows clients to Samba AD

Rowland Penny rpenny at samba.org
Wed Aug 21 12:28:05 UTC 2024


On Wed, 21 Aug 2024 14:11:52 +0200
Léo <dlopoel at gmail.com> wrote:

> Hello Rowland,
> 
> Here it is:
> 
> smb.conf:
> ---
> [global]
> dns forwarder = 9.9.9.9
> netbios name = DC1
> realm = AD.EXAMPLE.COM
> server role = active directory domain controller
> workgroup = AD
> idmap_ldb:use rfc2307  = yes
> 
> min protocol = SMB2

The above line is the default.

> ntlm auth = mschapv2-and-ntlmv2-only

Why do you need the line above ?

> 
> restrict anonymous = 2
> disable netbios = yes

I am not sure that is the correct way to do it on a DC, I do know that
the 'nbt' server (the DC variant of nmbd) is running.
 
> smb ports = 445
> 
> printcap name = /dev/null
> load printers = no
> disable spoolss = yes
> printing = bsd
> 
> tls enabled = yes

The above line is the default

> 
> [sysvol]
> path = /var/lib/samba/sysvol
> read only = No
> 
> [netlogon]
> path = /var/lib/samba/sysvol/ad.example.com/scripts
> read only = No
> ---
> 

There isn't anything there that should be stopping you joining
computers, which sounds like a dns problem, so I would start by
checking your dns.
The other question I should have asked is, what are the Windows clients
?

Rowland
PS, please do not 'CC' me, just reply to the list.



More information about the samba mailing list