Tarjei Bitustøyl
2003-Nov-09 08:40 UTC
[Samba] samba 3 LDAP/PDC problem - adding WXP account
Hi, I've finally gotten my LDAP password backend up and running, and finally figured out the SID 1000/1001 thing for Samba admin. However I'm unable to join the workstation to my domain. Using any random user in the WXP dialogue, I get the "Access is Denied" error. Fair enough. Using the user with sambasid and sambagroupsid s-*-1000/s-*-1001, I get the error "The Username could not be found". This error is probably not referring to the login user, as that one is validated (I get another error if I type in a wrong password), so I assume it's the machine account user that it is looking for. I have however tried adding the machine account using both LAM and smbpasswd -a -m, but no difference. The debug log says everything is successful? I'm at a loss. Does anyone have a hint as to what is wrong here? Regards Tarjei
Andrew Bartlett
2003-Nov-09 09:08 UTC
[Samba] samba 3 LDAP/PDC problem - adding WXP account
On Sun, 2003-11-09 at 19:40, Tarjei Bitust?yl wrote:> Hi, > > I've finally gotten my LDAP password backend up and running, and finally figured out the SID 1000/1001 thing for Samba admin. > However I'm unable to join the workstation to my domain.I'm not sure what you mean about the '1000/1001' thing. Root should be given the special sid '-500' if at all possible, as that is 'administrator'.> Using any random user in the WXP dialogue, I get the "Access is Denied" error. Fair enough. > Using the user with sambasid and sambagroupsid s-*-1000/s-*-1001, I get the error "The Username could not be found". This error is probably not referring to the login user, as that one is validated (I get another error if I type in a wrong password), so I assume it's the machine account user that it is looking for. > > I have however tried adding the machine account using both LAM and smbpasswd -a -m, but no difference. > > The debug log says everything is successful? > I'm at a loss. Does anyone have a hint as to what is wrong here?Do you have the add user scripts in place? Andrew Bartlett -- Andrew Bartlett abartlet@pcug.org.au Manager, Authentication Subsystems, Samba Team abartlet@samba.org Student Network Administrator, Hawker College abartlet@hawkerc.net http://samba.org http://build.samba.org http://hawkerc.net -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.samba.org/archive/samba/attachments/20031109/9a534a8a/attachment.bin