Bartkowski, Hubertus
2003-Sep-15 09:28 UTC
[Samba] Samba 2.x servers can't join Samba 3.0 domain
Hi I updating my PDC from Samba-TNG to Samba 3.0 RC4 with LDAP. The Windows clients and servers work fine but the Samba 2.x servers are unable to join the domain. Samba 2.x server: [global] netbios name = smbold workgroup = MYDOMAIN security = domain encrypt passwords = yes password server = myserver I create the machine account on my Samba 3.0 PDC ./smbpasswd -a -m smbold$ Now I try to join the domain on my Samba 2.x server ./smbpasswd -j mydomain -r myserver -U administrator%passwd Joined domain mydomain Joining the domain seems to be OK on my PDC. log.smbd on the Samba 3.0 PDC: [2003/09/15 09:10:21, 2] lib/smbldap.c:smbldap_search_suffix(1068) smbldap_search_suffix: searching for:[(&(sambaSID=S-1-5-21-4032476932-67515532- 795018592-2774)(objectclass=sambaSamAccount))] [2003/09/15 09:10:21, 2] passdb/pdb_ldap.c:init_sam_from_ldap(460) Entry found for user: smbold$ [2003/09/15 09:10:21, 2] passdb/pdb_ldap.c:init_ldap_from_sam(782) Setting entry for user: smbold$ [2003/09/15 09:10:21, 2] passdb/pdb_ldap.c:ldapsam_update_sam_account(1421) successfully modified uid = smbold$ in the LDAP database [2003/09/15 09:10:21, 2] lib/smbldap.c:smbldap_search_suffix(1068) smbldap_search_suffix: searching for:[(&(sambaSID=S-1-5-21-4032476932-67515532- 795018592-2774)(objectclass=sambaSamAccount))] [2003/09/15 09:10:21, 2] passdb/pdb_ldap.c:init_sam_from_ldap(460) Entry found for user: smbold$ I get an error if I try to get access to my server. log.smbd on the Samba 2.x server: [2003/09/15 09:14:54, 0] rpc_client/cli_netlogon.c:cli_net_auth2(157) cli_net_auth2: Error NT_STATUS_ACCESS_DENIED [2003/09/15 09:14:54, 0] rpc_client/cli_login.c:cli_nt_setup_creds(72) cli_nt_setup_creds: auth2 challenge failed [2003/09/15 09:14:54, 0] smbd/password.c:connect_to_domain_password_server(1368) connect_to_domain_password_server: unable to setup the PDC credentials to machine MYSERVER. Error was : NT_STATUS_OK. [2003/09/15 09:14:54, 0] smbd/password.c:domain_client_validate(1601) domain_client_validate: Domain password server not available. [2003/09/15 09:14:54, 0] passdb/pdb_smbpasswd.c:pdb_getsampwnam(1369) unable to open passdb database. [2003/09/15 09:14:54, 1] smbd/password.c:pass_check_smb(545) Couldn't find user 'dummy' in passdb. What's going wrong? Thanks, Hubertus Bartkowski