I have been beta testing 2003 server for a bit in a home lab, when I try to
join the domain using any of the folling commands I get the following
errors. My domain is in mixed mode, is there something im missing?? as far
as i know I have my smb.conf setup correctly. Can anyone shed any light on
this??
[root@lemming webmin]# smbpasswd -j death -r mox
cli_net_auth2: Error NT_STATUS_ACCESS_DENIED
cli_nt_setup_creds: auth2 challenge failed
modify_trust_password: unable to setup the PDC credentials to machine MOX.
Error was : NT_STATUS_ACCESS_DENIED.
2003/03/25 12:59:38 : change_trust_account_password: Failed to change
password for domain DEATH.
Unable to join domain DEATH.
----------------------------------------------------------------------------
----------------------------------------------------------------------------
----------------------------------
[root@lemming root]# smbpasswd -D 4 -r mox -j death
Initialising global parameters
params.c:pm_process() - Processing configuration file
"/etc/samba/smb.conf"
Processing section "[global]"
doing parameter log file = /var/log/samba/%m.log
doing parameter load printers = yes
doing parameter smb passwd file = /etc/samba/smbpasswd
doing parameter passwd chat = *New*password* %n\n *Retype*new*password* %n\n
*passwd:*all*authentication*tokens*updated*successfully*
doing parameter obey pam restrictions = yes
doing parameter socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
doing parameter encrypt passwords = yes
doing parameter passwd program = /usr/bin/passwd %u
doing parameter dns proxy = no
doing parameter netbios name = lemming
handle_netbios_name: set global_myname to: LEMMING
doing parameter server string = Samba Server
doing parameter printing = lprng
doing parameter unix password sync = Yes
doing parameter workgroup = death
doing parameter os level = 20
doing parameter printcap name = /etc/printcap
doing parameter security = domain
doing parameter max log size = 0
doing parameter pam password change = yes
pm_process() returned Yes
added interface ip=X.X.X.X bcast=X.X.X.X nmask=255.255.255.0
resolve_lmhosts: Attempting lmhosts lookup for name mox<0x20>
getlmhostsent: lmhost entry: 127.0.0.1 localhost
resolve_hosts: Attempting host lookup for name mox<0x20>
resolve_wins: Attempting wins lookup for name mox<0x20>
resolve_wins: WINS server resolution selected and no WINS servers listed.
name_resolve_bcast: Attempting broadcast lookup for name mox<0x20>
bind succeeded on port 0
nmb packet from X.X.X.X(137) header: id=27762 opcode=Query(0) response=Yes
header: flags: bcast=No rec_avail=No rec_des=Yes trunc=No auth=Yes
header: rcode=0 qdcount=0 ancount=1 nscount=0 arcount=0
answers: nmb_name=MOX<20> rr_type=32 rr_class=1 ttl=300000
answers 0 char ..B]P. hex 0000425D50F2
Got a positive name query response from X.X.X.X ( X.X.X.X )
Connecting to X.X.X.X at port 445
lsa_io_sec_qos: length c does not match size 8
resolve_lmhosts: Attempting lmhosts lookup for name MOX<0x20>
getlmhostsent: lmhost entry: 127.0.0.1 localhost
resolve_hosts: Attempting host lookup for name MOX<0x20>
resolve_wins: Attempting wins lookup for name MOX<0x20>
resolve_wins: WINS server resolution selected and no WINS servers listed.
name_resolve_bcast: Attempting broadcast lookup for name MOX<0x20>
bind succeeded on port 0
nmb packet from X.X.X.X(137) header: id=13001 opcode=Query(0) response=Yes
header: flags: bcast=No rec_avail=No rec_des=Yes trunc=No auth=Yes
header: rcode=0 qdcount=0 ancount=1 nscount=0 arcount=0
answers: nmb_name=MOX<20> rr_type=32 rr_class=1 ttl=300000
answers 0 char ..B]P. hex 0000425D50F2
Got a positive name query response from X.X.X.X ( X.X.X.X )
Connecting to X.X.X.X at port 445
cli_net_req_chal: LSA Request Challenge from MOX to LEMMING:
DED0C877FF2E3322
cred_session_key
cred_create
cli_net_auth2: srv:\\MOX acct:LEMMING$ sc:2 mc: LEMMING chal
B79A7BB8AA8A6646 neg: 1ff
cli_net_auth2: Error NT_STATUS_NO_TRUST_SAM_ACCOUNT
cli_nt_setup_creds: auth2 challenge failed
modify_trust_password: unable to setup the PDC credentials to machine MOX.
Error was : NT_STATUS_NO_TRUST_SAM_ACCOUNT.
2003/03/25 15:22:58 : change_trust_account_password: Failed to change
password for domain DEATH.
Unable to join domain DEATH.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 25 Mar 2003, Mau, Kevin wrote:> I have been beta testing 2003 server for a bit in a home lab, when I try > to join the domain using any of the folling commands I get the following > errors. My domain is in mixed mode, is there something im missing?? as > far as i know I have my smb.conf setup correctly. Can anyone shed any > light on this??Win2k3 requires Sign&Seal by default (i tested in native mode; not sure if this the case in mixed mode but could be). It also enables RestrictAnonymous=0x2 by default (which is another problem). cheers, jerry ---------------------------------------------------------------------- Hewlett-Packard ------------------------- http://www.hp.com SAMBA Team ---------------------- http://www.samba.org GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc "You can never go home again, Oatman, but I guess you can shop there." --John Cusack - "Grosse Point Blank" (1997) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.0 (GNU/Linux) Comment: For info see http://quantumlab.net/pine_privacy_guard/ iD8DBQE+iyZ8IR7qMdg1EfYRAk1sAKDPfNZyM7lE70cyiKqbnxqKuebOIQCfVdNy S7/IxjXJAQsb/4bCtFnyKiw=T9St -----END PGP SIGNATURE-----