Im trying to add a w2k machine to a samba pdc. This is the output of my logs: [2002/11/22 11:01:17, 2] passdb/pdb_ldap.c:ldapsam_open_connection(267) ldap_open_connection: connection opened [2002/11/22 11:01:17, 2] passdb/pdb_ldap.c:ldapsam_connect_system(419) ldap_connect_system: succesful connection to the LDAP server [2002/11/22 11:01:17, 2] passdb/pdb_ldap.c:ldapsam_search_one_user(431) ldapsam_search_one_user: searching for:[(&(uid=support$)(objectclass=sambaAccount))] [2002/11/22 11:01:18, 2] passdb/pdb_ldap.c:ldapsam_open_connection(267) ldap_open_connection: connection opened [2002/11/22 11:01:18, 2] passdb/pdb_ldap.c:ldapsam_connect_system(419) ldap_connect_system: succesful connection to the LDAP server [2002/11/22 11:01:18, 2] passdb/pdb_ldap.c:ldapsam_search_one_user(431) ldapsam_search_one_user: searching for:[(&(uid=support$)(objectclass=sambaAccount))] [2002/11/22 11:01:18, 0] passdb/pdb_ldap.c:ldapsam_add_sam_account(1619) User already in the base, with samba properties [2002/11/22 11:01:18, 0] rpc_server/srv_samr_nt.c:_api_samr_create_user(2301) could not add user/computer support$ to passdb. Check permissions? ------ My add machine script adds all the info to the ldap directory. So i'm assuming it tries to add it again and fails because its already there. Should I leave some info out of the add machine script? If so what? I've tried it with and without the ldap machine suffix. I'm also using pam_ldap. Here is a snippet of my conf file: [global] workgroup = XXX netbios name = XXX null passwords = Yes passdb backend = ldapsam:ldap://localhost log file = /usr/local/samba/var/logs.%m log level = 2 add user script = /usr/local/sbin/smbldap-useradd.pl -a -m -d /dev/null -g 100 - s /bin/false %u add machine script = /usr/local/sbin/smbldap-useradd.pl -w -d /dev/null -g 100 - s /bin/false %u add user to group script = /usr/local/sbin/smbldap-groupmod.pl -m %u %g delete user from group script /usr/local/sbin/smbldap-groupmod.pl -x %u %g #logon path = \\%N\%U\profile #logon home = \\%N\%U logon path logon home logon drive domain logons = Yes os level = 255 preferred master = True domain master = True wins support = True ldap suffix = "dc=xxx,dc=com" ldap machine suffix = "ou=Computers,dc=xxx,dc=com" ldap user suffix = "ou=Users,dc=xxx,dc=com" ldap admin dn = "cn=Manager, dc=xxx,dc=com" ldap ssl = no