Hi all,
last night I joined a samba 3 fileserver in my domain (samba 3.0.5 PDC with
ldap)
now domain logons sometimes fail because the client tries to logon to the
fileserver ?!?!?!
Logs on fileserver say:
get_md4pw: Workstation KURWAHN$: no account in domain
---
If I reboot the client it logs on to the PDC properly
The ldap directory is replicated on the fileserver but i did not configure
it for passdb backend because the PDC does the authentification.
Thanks in advance, Andre
Smb.conf on the fileserver:
[global]
server string = juwimm fileserver
netbios name = juwifs01
netbios aliases = worklxn
workgroup = JUWIDC
security = domain
password server = 10.0.0.169
encrypt passwords = yes
null passwords = yes
guest ok = no
wins support = no
wins proxy = no
wins server = 10.0.0.169
domain master = no
local master = no
domain logons = no
preferred master = no
os level = 0
loglevel = 1
socket options = TCP_NODELAY
#####################################################################
################# shares ############################################
#####################################################################
[juwi]
comment = Juwi Verzeichnis
path = /data/shares/juwi
read only = no
public = no
valid users = @ntusers
create mode = 664
force create mode = 664
directory mode = 775
force directory mode = 775
# oplocks = no
[www]
comment = WWW Verzeichnis
path = /data/shares/www
read only = no
public = no
valid users = @ntusers
create mode = 664
force create mode = 664
directory mode = 775
force directory mode = 775
# oplocks = no
----------------------------------------------
Smb.conf on pdc:
[global]
workgroup = juwidc
interfaces = 127.0.0.1 eth0
bind interfaces only = true
load printers = no
server string = Primary Domain Controller - JuwiMM
netbios name = juwidc01
# netbios aliases = worklx-clone
ldap passwd sync = yes
passwd chat debug = yes
map to guest = Bad User
security = user
encrypt passwords = yes
null passwords = yes
passdb backend = ldapsam:ldap://localhost
# add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s
/bin/false %m$
domain master = yes
domain logons = yes
local master = yes
preferred master = yes
os level = 85
loglevel = 1
logonpath = \\%N\profiles\%U
logondrive = U:
logon script = LOGON.BAT
browseable = yes
# wins server = 10.0.0.10
wins support = yes
socket options = TCP_NODELAY
ldap admin dn = cn=root,dc=juwimm,dc=local
ldap suffix = ou=sso,dc=juwimm,dc=local
ldap user suffix = ou=users
ldap group suffix = ou=groups
ldap machine suffix = ou=machines
# ldap ssl = start tls
#####################################################################
################# shares ############################################
#####################################################################
[phpldapadmin]
comment = phpldapadmin devel
path = /data/phpldapadmin
browseable = yes
valid users = @allmighty
write list = @allmighty
read only = no
create mode = 0660
force create mode = 0660
directory mode = 0770
force directory mode = 0770
[netlogon]
path = /data/samba/netlogon
locking = no
read only = yes
write list = ntadmins
; share for storing user profiles
[profiles]
path = /data/samba/profiles/
read only = no
writeable = yes
create mask = 0600
directory mask = 0700
nt acl support = yes
[homes]
comment = Home Directories
valid users = %S
browseable = no
read only = No
guest ok = no
printable = no
[groups]
comment = All groups
path = /home/groups
writeable = Yes
inherit permissions = Yes
browseable = yes
guest ok = no
printable = no
[pdf]
comment = PDF creator
path = /var/tmp
printable = Yes
print command = /usr/bin/smbprngenpdf -J '%J' -c %c -s %s -u
'%u' -z
%z
create mask = 0600
[printers]
comment = All Printers
path = /var/tmp
printable = Yes
create mask = 0600
browseable = No
[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = @ntadmin root
force group = ntadmin
create mask = 0664
directory mask = 0775
