samba - Feb 2003 - winxppro/nt4 cant find my samba pdc

hi all

i tryed to add winxppro/nt4 machines to my samba domain
"pinguin.local"
dns is configured and wins lookup works
authentification per user works fine

but when i try to join my win boxes to the domain "pinguin.local" the
nt4 box
cant find the domaincontroller and winxp starts to search for the dns service
record of the domaincrontroller.

hans-peter

#rh 80, samba-2.2.5
#/etc/samba/smb.conf
[global]
	workgroup = PINGUIN.LOCAL
   server string = Samba Server
   printcap name = /etc/printcap
   printing = lprng
   log file = /var/log/samba/%m.log
   max log size = 0
	security = DOMAIN
   encrypt passwords = yes
   smb passwd file = /etc/samba/smbpasswd
   unix password sync = Yes
   passwd program = /usr/bin/passwd %u
   passwd chat = *New*password* %n\n *Retype*new*password* %n\n 
*passwd:*all*authentication*tokens*updated*successfully*
   pam password change = yes
  username map = /etc/samba/smbusers
  obey pam restrictions = yes
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
	local master = yes
	os level = 64
   domain master = yes
	preferred master = yes
	domain logons = yes
   wins support = yes
   wins support = yes
   dns proxy = no
add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u

[homes]
   comment = Home Directories
   browseable = no
   writable = yes
   valid users = %S
   create mode = 0664
   directory mode = 0775

[netlogon]
   comment = Network Logon Service
   path = /export/smb/netlogon
   guest ok = yes
   writable = no
   share modes = no

[files]
	comment = test share
	path = /export/smb/files
	public = yes
	writeable = yes
#END /etc/samba/smb.conf


#named START
$TTL 86400
@       IN      SOA     samba01.pinguin.local. office.pinguin.local. (
                        2003013101 ; serial
                        28800 ; refresh
                        7200 ; retry
                        604800 ; expire
                        86400 ; ttl
                        )


                NS      samba01

                MX      10      samba01

samba01		A	192.168.0.4	;the samba server
test01		A	192.168.0.101	;the nt4 client
#named END

On Sat, 1 Feb 2003, earthtirol wrote:
> hi all
>
> i tryed to add winxppro/nt4 machines to my samba domain
"pinguin.local"
Putting a '.' in a Windows domain name is a bad karma thing to do!
Suggest you keep the domain name to plain text and NO spaces either.
> dns is configured and wins lookup works
> authentification per user works fine
>
> but when i try to join my win boxes to the domain "pinguin.local"
the nt4 box
> cant find the domaincontroller and winxp starts to search for the dns
service
> record of the domaincrontroller.
>
> hans-peter
>
> #rh 80, samba-2.2.5
> #/etc/samba/smb.conf
> [global]
> 	workgroup = PINGUIN.LOCAL
>    server string = Samba Server
>    printcap name = /etc/printcap
>    printing = lprng
>    log file = /var/log/samba/%m.log
>    max log size = 0
> 	security = DOMAIN
        ^^^^^^^^^^^^^^^^^
Ok. So this box is a member of a domain called 'PINGUIN.LOCAL' for which
the domain controller is another machine. That is what this means!

If you want this machine to BE the domain controller you need:

	security = USER

You also need:

	domain logons = Yes
	os level = 32            (actually 32 or higher)
>    encrypt passwords = yes
>    smb passwd file = /etc/samba/smbpasswd
>    unix password sync = Yes
>    passwd program = /usr/bin/passwd %u
>    passwd chat = *New*password* %n\n *Retype*new*password* %n\n
> *passwd:*all*authentication*tokens*updated*successfully*
>    pam password change = yes
>   username map = /etc/samba/smbusers
>   obey pam restrictions = yes
>    socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
> 	local master = yes
> 	os level = 64
>    domain master = yes
> 	preferred master = yes
> 	domain logons = yes
>    wins support = yes
>    wins support = yes
>    dns proxy = no
> add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u
>
> [homes]
>    comment = Home Directories
>    browseable = no
>    writable = yes
>    valid users = %S
>    create mode = 0664
>    directory mode = 0775
>
> [netlogon]
>    comment = Network Logon Service
>    path = /export/smb/netlogon
>    guest ok = yes
>    writable = no
>    share modes = no
>
> [files]
> 	comment = test share
> 	path = /export/smb/files
> 	public = yes
> 	writeable = yes
> #END /etc/samba/smb.conf
>
>
> #named START
> $TTL 86400
> @       IN      SOA     samba01.pinguin.local. office.pinguin.local. (
>                         2003013101 ; serial
>                         28800 ; refresh
>                         7200 ; retry
>                         604800 ; expire
>                         86400 ; ttl
>                         )
>
>
>                 NS      samba01
>
>                 MX      10      samba01
>
> samba01		A	192.168.0.4	;the samba server
> test01		A	192.168.0.101	;the nt4 client
> #named END

Suggest you read the Entire-HOWTO-Collection link off the samba SWAT home
page. SWAT can be contacted on your local system (if it is installed and
enable), using a web browser pointed at: http://localhost:901


- John T.
-- 
John H Terpstra
Email: jht@samba.org