Scott D. Webster
2002-May-01 14:23 UTC
[Samba] Problems w/ samba 2.2.3a as PDC for Win2KPro
Samba-Meisters,
I've been try in vain to get a Windows 2000 Pro workstation to
join my
domain. I'm someone else can figure out what's going wrong.
My server (galileo) in running samba 2.2.3a (compiled from the
Red Hat
rawhide samba-2.2.3a-6.src.rpm) on RedHat 7.0. My workstation
(descartes) is running Red Hat 7.2 (can also boot to Win98SE &
Win2kPro). I'm running Windows 2000 Pro in VMware
(VMwareWorkstation-3.1.1-1790). The Win2k machine is called vm-win2k.
In Windows 2000 Pro I go [Control Panel]->[System]->[Network
Identification]->[Network ID], I check "This computer is part of a
buiness network, and I use it to connect to other computers at work" and
click "next", then check "My company uses a network with a
domain" and
click next. In the "User Account and Domain Information" dialog I
root's username and password and my domain "ETC SERVICES" and
click
next. I then get a message saying "Windows cannot find an account for
your computer on the ETC SERVICES domain." What am I doing wrong here?
BTW, I have tried it from non-vmware Windows 2000 Pro and I get the same
result.
Here's my configuration info:
galileo:~ # grep \$: /etc/{passwd,shadow}
/etc/passwd:vm-win2k$:x:999:999:vm-win2k:/dev/null:/bin/false
/etc/passwd:descartes$:x:998:999:descartes:/dev/null:/bin/false
/etc/shadow:vm-win2k$:!!:11752::99999:::11751:
/etc/shadow:descartes$:!!:11752::99999:::11751:
galileo:~ # grep machine /etc/{group,gshadow}
/etc/group:machine:x:999:
/etc/gshadow:machine:!::
Pertinent directories in /var/samba:
drwxr-x--x 2 root users 4096 Apr 20 14:12 netlogon
drwxr-xr-x 7 root root 4096 May 1 15:36 ntprofile
Pertinent records from smbpasswd:
root:0:<removed>:<removed>:[U ]:LCT-3CCF3196:
VM-WIN2K$:999:<removed>:<removed>:[W ]:LCT-3CCF06E5:
descartes$:998:<removed>:<removed>:[W ]:LCT-3CD011CA:
my smb.conf (minus non-pertinent shares):
---8<--------------------------------------------------------------
# Samba config file created using SWAT
# from descartes.etcservices.com (192.168.9.5)
# Date: 2002/05/01 16:28:43
# Global parameters
[global]
workgroup = ETC SERVICES
netbios name = GALILEO
server string = The Server - Samba %v on %$(OS)
encrypt passwords = Yes
min passwd length = 6
map to guest = Bad User
passwd program = /usr/bin/passwd
unix password sync = Yes
log level = 2
log file = /var/log/samba/log.%m
debug pid = Yes
debug uid = Yes
large readwrite = Yes
announce version = 4.2
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
load printers = No
domain admin group = root swebster
domain guest group = smbguest
logon script = %U.bat
logon path = \\galileo\profiles\%U
logon drive = h:
logon home = \\galileo\%U\profile
domain logons = Yes
os level = 255
preferred master = True
domain master = True
dns proxy = No
wins support = Yes
default service = public
socket address =
guest account = smbguest
printer admin = swebster
hosts allow = 192.168.9. 127.
hosts deny = 192.168.9.254
printing = lprng
lppause command = lpc hold %p %j
lpresume command = lpc release %p %j
queuepause command = lpc disable %p
queueresume command = lpc enable %p
[homes]
comment = Home Directories
read only = No
browseable = No
fstype = Samba
[netlogon]
comment = NetLogon Service
path = /var/samba/netlogon
guest account =
browseable = No
locking = No
[profiles]
comment = Windows NT/2000/XP Profiles
path = /var/samba/ntprofile
read only = No
create mask = 0600
directory mask = 0700
browseable = No
-------------------------------------------------------------->8---------
--
Scott D. Webster, RHCE mailto:SWebster@EtcServices.com
Etc Services http://www.EtcServices.com
Voice: 201.439.1900 Fax: 201.439.0366 Pager: 800.379.2402
Linux, UNIX, Internet Technology,
& Open Source Software Consulting
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: This is a digitally signed message part
Url :
http://lists.samba.org/archive/samba/attachments/20020501/14419776/attachment.bin
With win2k/xp you need to add an account for the machine as well as the user. Check the docs on samba.org for a better explanation. /r --- "Scott D. Webster" <SWebster@EtcServices.com> wrote:> Samba-Meisters, > > I've been try in vain to get a Windows 2000 Pro workstation to > join my > domain. I'm someone else can figure out what's going wrong. > My server (galileo) in running samba 2.2.3a (compiled from the > Red Hat > rawhide samba-2.2.3a-6.src.rpm) on RedHat 7.0. My workstation > (descartes) is running Red Hat 7.2 (can also boot to Win98SE & > Win2kPro). I'm running Windows 2000 Pro in VMware > (VMwareWorkstation-3.1.1-1790). The Win2k machine is called vm-win2k. > In Windows 2000 Pro I go [Control Panel]->[System]->[Network > Identification]->[Network ID], I check "This computer is part of a > buiness network, and I use it to connect to other computers at work" and > click "next", then check "My company uses a network with a domain" and > click next. In the "User Account and Domain Information" dialog I > root's username and password and my domain "ETC SERVICES" and click > next. I then get a message saying "Windows cannot find an account for > your computer on the ETC SERVICES domain." What am I doing wrong here? > BTW, I have tried it from non-vmware Windows 2000 Pro and I get the same > result. > > Here's my configuration info: > > galileo:~ # grep \$: /etc/{passwd,shadow} > /etc/passwd:vm-win2k$:x:999:999:vm-win2k:/dev/null:/bin/false > /etc/passwd:descartes$:x:998:999:descartes:/dev/null:/bin/false > /etc/shadow:vm-win2k$:!!:11752::99999:::11751: > /etc/shadow:descartes$:!!:11752::99999:::11751: > > galileo:~ # grep machine /etc/{group,gshadow} > /etc/group:machine:x:999: > /etc/gshadow:machine:!:: > > Pertinent directories in /var/samba: > drwxr-x--x 2 root users 4096 Apr 20 14:12 netlogon > drwxr-xr-x 7 root root 4096 May 1 15:36 ntprofile > > Pertinent records from smbpasswd: > root:0:<removed>:<removed>:[U ]:LCT-3CCF3196: > VM-WIN2K$:999:<removed>:<removed>:[W ]:LCT-3CCF06E5: > descartes$:998:<removed>:<removed>:[W ]:LCT-3CD011CA: > > my smb.conf (minus non-pertinent shares): > ---8<-------------------------------------------------------------- > # Samba config file created using SWAT > # from descartes.etcservices.com (192.168.9.5) > # Date: 2002/05/01 16:28:43 > > # Global parameters > [global] > workgroup = ETC SERVICES > netbios name = GALILEO > server string = The Server - Samba %v on %$(OS) > encrypt passwords = Yes > min passwd length = 6 > map to guest = Bad User > passwd program = /usr/bin/passwd > unix password sync = Yes > log level = 2 > log file = /var/log/samba/log.%m > debug pid = Yes > debug uid = Yes > large readwrite = Yes > announce version = 4.2 > socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 > load printers = No > domain admin group = root swebster > domain guest group = smbguest > logon script = %U.bat > logon path = \\galileo\profiles\%U > logon drive = h: > logon home = \\galileo\%U\profile > domain logons = Yes > os level = 255 > preferred master = True > domain master = True > dns proxy = No > wins support = Yes > default service = public > socket address = > guest account = smbguest > printer admin = swebster > hosts allow = 192.168.9. 127. > hosts deny = 192.168.9.254 > printing = lprng > lppause command = lpc hold %p %j > lpresume command = lpc release %p %j > queuepause command = lpc disable %p > queueresume command = lpc enable %p > > [homes] > comment = Home Directories > read only = No > browseable = No > fstype = Samba > > [netlogon] > comment = NetLogon Service > path = /var/samba/netlogon > guest account = > browseable = No > locking = No > > [profiles] > comment = Windows NT/2000/XP Profiles > path = /var/samba/ntprofile > read only = No > create mask = 0600 > directory mask = 0700 > browseable = No > -------------------------------------------------------------->8--------- > > -- > Scott D. Webster, RHCE mailto:SWebster@EtcServices.com > Etc Services http://www.EtcServices.com > Voice: 201.439.1900 Fax: 201.439.0366 Pager: 800.379.2402 > Linux, UNIX, Internet Technology, > & Open Source Software Consulting >> ATTACHMENT part 2 application/pgp-signature name=signature.asc__________________________________________________ Do You Yahoo!? Yahoo! Health - your guide to health and wellness http://health.yahoo.com
Check your logs and see what domain your windoze box is trying to join.
I suspect the space in the your Samba domain name may be the problem.
Try ETC_SERVICES instead. Also, try adding "administrator" to your
doamin admin group. Also, I don't see a "security = " line in
your smb.conf.
^
-- Bob --
On 1 May 2002, Scott D. Webster wrote:
> Samba-Meisters,
>
> I've been try in vain to get a Windows 2000 Pro workstation to
> join my
> domain. I'm someone else can figure out what's going wrong.
> My server (galileo) in running samba 2.2.3a (compiled from the
> Red Hat
> rawhide samba-2.2.3a-6.src.rpm) on RedHat 7.0. My workstation
> (descartes) is running Red Hat 7.2 (can also boot to Win98SE &
> Win2kPro). I'm running Windows 2000 Pro in VMware
> (VMwareWorkstation-3.1.1-1790). The Win2k machine is called vm-win2k.
> In Windows 2000 Pro I go [Control Panel]->[System]->[Network
> Identification]->[Network ID], I check "This computer is part of a
> buiness network, and I use it to connect to other computers at work"
and
> click "next", then check "My company uses a network with a
domain" and
> click next. In the "User Account and Domain Information" dialog
I
> root's username and password and my domain "ETC SERVICES" and
click
> next. I then get a message saying "Windows cannot find an account for
> your computer on the ETC SERVICES domain." What am I doing wrong
here?
> BTW, I have tried it from non-vmware Windows 2000 Pro and I get the same
> result.
>
> Here's my configuration info:
>
> galileo:~ # grep \$: /etc/{passwd,shadow}
> /etc/passwd:vm-win2k$:x:999:999:vm-win2k:/dev/null:/bin/false
> /etc/passwd:descartes$:x:998:999:descartes:/dev/null:/bin/false
> /etc/shadow:vm-win2k$:!!:11752::99999:::11751:
> /etc/shadow:descartes$:!!:11752::99999:::11751:
>
> galileo:~ # grep machine /etc/{group,gshadow}
> /etc/group:machine:x:999:
> /etc/gshadow:machine:!::
>
> Pertinent directories in /var/samba:
> drwxr-x--x 2 root users 4096 Apr 20 14:12 netlogon
> drwxr-xr-x 7 root root 4096 May 1 15:36 ntprofile
>
> Pertinent records from smbpasswd:
> root:0:<removed>:<removed>:[U ]:LCT-3CCF3196:
> VM-WIN2K$:999:<removed>:<removed>:[W ]:LCT-3CCF06E5:
> descartes$:998:<removed>:<removed>:[W ]:LCT-3CD011CA:
>
> my smb.conf (minus non-pertinent shares):
> ---8<--------------------------------------------------------------
> # Samba config file created using SWAT
> # from descartes.etcservices.com (192.168.9.5)
> # Date: 2002/05/01 16:28:43
>
> # Global parameters
> [global]
> workgroup = ETC SERVICES
> netbios name = GALILEO
> server string = The Server - Samba %v on %$(OS)
> encrypt passwords = Yes
> min passwd length = 6
> map to guest = Bad User
> passwd program = /usr/bin/passwd
> unix password sync = Yes
> log level = 2
> log file = /var/log/samba/log.%m
> debug pid = Yes
> debug uid = Yes
> large readwrite = Yes
> announce version = 4.2
> socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
> load printers = No
> domain admin group = root swebster
> domain guest group = smbguest
> logon script = %U.bat
> logon path = \\galileo\profiles\%U
> logon drive = h:
> logon home = \\galileo\%U\profile
> domain logons = Yes
> os level = 255
> preferred master = True
> domain master = True
> dns proxy = No
> wins support = Yes
> default service = public
> socket address =
> guest account = smbguest
> printer admin = swebster
> hosts allow = 192.168.9. 127.
> hosts deny = 192.168.9.254
> printing = lprng
> lppause command = lpc hold %p %j
> lpresume command = lpc release %p %j
> queuepause command = lpc disable %p
> queueresume command = lpc enable %p
>
> [homes]
> comment = Home Directories
> read only = No
> browseable = No
> fstype = Samba
>
> [netlogon]
> comment = NetLogon Service
> path = /var/samba/netlogon
> guest account =
> browseable = No
> locking = No
>
> [profiles]
> comment = Windows NT/2000/XP Profiles
> path = /var/samba/ntprofile
> read only = No
> create mask = 0600
> directory mask = 0700
> browseable = No
>
-------------------------------------------------------------->8---------
>
>
--
________________________________________
Bob Sully - Simi Valley, California, USA
http://www.malibyte.net
"The weather is here - wish you were beautiful." - J. Buffett