samba - Oct 2008 - Samba PDC, can't login into WinXP without network connection

I've setup a Samba PDC (3.0.28a). I can join the domain
with a Windows XP sp3 laptop and logon with no problems,
but if I try to logon while the laptop is not connected to
the network, it will not allow it.

"The system cannot log you on now because the domain
DOMAIN is not available."

I have the following policies set on the windows machine:

Interactive logon: Number of previous logons to cache (in
case domain controller is not available)     10 logons

Interactive logon: Require Domain Controller
authentication to unlock workstation        Disabled

I know that there should be a way for windows to cache the
logon so that the PDC does not have to be available.

Samba config attached.

Any help would be appreciated.

-- 
Fashion is a form of ugliness so intolerable that we have
to alter it every six months. - Oscar Wilde

Have a great day and don't forget to laugh!

http://www.gcfl.net (The Good, Clean Funnies List): Good,
clean daily funnies you can safely tell your Mom!
-------------- next part --------------
[global]
	workgroup = HOME
	server string = %h server
	obey pam restrictions = Yes
	passdb backend = tdbsam
	pam password change = Yes
	passwd program = /usr/bin/passwd %u
	passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n
*password\supdated\ssuccessfully* .
	unix password sync = Yes
	syslog = 0
	log file = /var/log/samba/log.%m
	max log size = 1000
	socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
	printcap name = cups
	logon script = scripts\%U.cmd
	logon path = 
	logon drive = H:
	domain logons = Yes
	domain master = Yes
	dns proxy = No
	wins support = Yes
	panic action = /usr/share/samba/panic-action %d
	idmap uid = 10000-20000
	idmap gid = 10000-20000
	template shell = /bin/bash
	winbind enum users = Yes
	winbind enum groups = Yes

[homes]
	comment = Home Directories
	valid users = %S
	read only = No
	create mask = 0660
	directory mask = 0660
	browseable = No

[share]
	comment = Share Directory
	path = /home/share
	force group = allusers
	read only = No
	create mask = 0660
	force create mode = 0660
	directory mask = 0770
	force directory mode = 0770

[netlogon]
	comment = Network Logon Service
	path = /home/samba/netlogon
	admin users = jp
	guest ok = Yes
	share modes = No

[printers]
	comment = All Printers
	path = /var/spool/samba
	read only = No
	create mask = 0777
	guest ok = Yes
	printable = Yes
	use client driver = Yes
	browseable = No

[print$]
	comment = Printer Drivers
	path = /var/lib/samba/printers
	write list = @users

[cdrom]
	comment = Server CD-ROM
	path = /cdrom
	guest ok = Yes
	locking = No
	preexec = /bin/mount /cdrom
	postexec = /bin/umount /cdrom

John Price wrote:
> I've setup a Samba PDC (3.0.28a). I can join the domain
> with a Windows XP sp3 laptop and logon with no problems,
> but if I try to logon while the laptop is not connected to
> the network, it will not allow it.
>
> "The system cannot log you on now because the domain
> DOMAIN is not available."
>
> I have the following policies set on the windows machine:
>
> Interactive logon: Number of previous logons to cache (in
> case domain controller is not available)     10 logons
>
> Interactive logon: Require Domain Controller
> authentication to unlock workstation        Disabled
>
> I know that there should be a way for windows to cache the
> logon so that the PDC does not have to be available.
>
> Samba config attached.
>
> Any help would be appreciated.
>
>   
Do a |pdbedit -Lv username and make sure that the DOMAIN line contains 
the correct domain name, if it doesn't do the following and it should 
fix it for you
|

|pdbedit -i tdbsam -e smbpasswd
pdbedit -i smbpasswd -e tdbsam
|