Oops, forgot to put a subject... apologies for the repost... (newb!)
> Hi All,
>
> I'm trying to migrate from an NT4 domain to samba-3...
> sorry this is so long...
>
> when I run the "net rpc vampire" I get errors for users and
machines
> in uppercase or contain uppercase chars.
>
> I'm in a test env before I go live!
>
> I'm on a gentoo distro w/ shadow.
>
> useradd FOO errors, this might be the culprit...
>
> I set up some dummy accts and made them members of groups.
> 3 machines
> testpdc = nt4 pdc
> station1 = w2k workstation
> lynxpdc = gentoo linux w/ samba3.0.0
> I run winbind and do some net groupbind modify before I do the rpc net
> vampire.
> here is the output of net vampire:
>
> Fetching DOMAIN database
> SAM_DELTA_DOMAIN_INFO not handled
> Creating unix group: 'Domain Admins'
> Creating unix group: 'Domain Users'
> Creating unix group: 'Dwarfs'
> Creating unix group: 'Looneytunes'
> Creating unix group: 'Rockers'
> Creating unix group: 'Speedsters'
> Creating account: Administrator
> useradd: invalid user name 'Administrator'
> Could not create posix account info for 'Administrator'
> Creating account: Guest
> [2003/11/19 13:40:50, 0] passdb/pdb_tdb.c:tdbsam_getsampwrid(255)
> pdb_getsampwrid: Unable to open TDB rid database!
> usermod: user Guest does not exist
> Creating account: TESTPDC$
> usermod: user TESTPDC$ does not exist
> Creating account: IUSR_TESTPDC
> useradd: invalid user name 'IUSR_TESTPDC'
> Could not create posix account info for 'IUSR_TESTPDC'
> Creating account: STATION1$
> useradd: invalid user name 'STATION1$'
> Could not create posix account info for 'STATION1$'
> Creating account: grumpy
> Creating account: sleepy
> Creating account: sneezy
> Creating account: bashfull
> Creating account: bugs
> Creating account: cadmin
> Creating account: daffy
> Creating account: sammy
> Creating account: eddie
> Creating account: porsche
> Creating account: jeep
> Creating account: LYNXPDC$
> useradd: invalid user name 'LYNXPDC$'
> Could not create posix account info for 'LYNXPDC$'
> Group members of Domain Admins: cadmin,
> Adding user cadmin to group Domain Admins
> Group members of Domain Users:
> TESTPDC$(primary),grumpy(primary),sleepy(primary),sneezy(primary),bashfull
> (primary),bugs(primary),cadmin(primary),daffy(primary),sammy(primary),eddi
> e(primary),porsche(primary),jeep(primary),
> Group members of nobody: Guest(primary),
> Group members of Dwarfs: grumpy,sleepy,sneezy,bashfull,
> Adding user grumpy to group Dwarfs
> Adding user sleepy to group Dwarfs
> Adding user sneezy to group Dwarfs
> Adding user bashfull to group Dwarfs
> Group members of Looneytunes: bugs,daffy,
> Adding user bugs to group Looneytunes
> Adding user daffy to group Looneytunes
> Group members of Rockers: sammy,eddie,
> Adding user sammy to group Rockers
> Adding user eddie to group Rockers
> Group members of Speedsters: porsche,jeep,
> Adding user porsche to group Speedsters
> Adding user jeep to group Speedsters
> Fetching BUILTIN database
> SAM_DELTA_DOMAIN_INFO not handled
>
> here is my snb.conf
> [global]
> workgroup = LINUX
> netbios name = lynxpdc
> passdb backend = tdbsam
> os level = 33
> preferred master = yes
> ; domain master = yes
> domain master = No
> local master = yes
> security = user
> encrypt passwords = yes
> domain logons = yes
> logon path = \\%L\profiles\%U
> logon drive = H:
> logon home = \\%L\%U\.profile
> logon script = %m.bat
> add user script = /usr/sbin/useradd -s /bin/false '%u'
> delete user script = /usr/sbin/userdel '%s'
> add user to group script = /usr/bin/gpasswd -a '%u'
'%g'
> delete user from group script = /usr/bin/gpasswd -d '%u'
'%g'
> set primary group script = /usr/sbin/usermod -g '%g'
'%u'
> ;add group script = /usr/sbin/groupadd %g && getent group
> '%g'|awk -F: '{print $3}'
> add machine script = /usr/sbin/useradd -d /dev/null -g
> machines -c 'Machine Account' -s /bin/false -M %u
> delete group script = /usr/sbin/groupdel '%g'
> socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
> idmap uid = 15000-20000
> idmap gid = 15000-20000
> winbind separator = +
> wins support = yes
> ; log level = 10
>
> [netlogon]
> path = /var/lib/samba/netlogon
> read only = yes
> write list = ntadmin
>
> [profiles]
> path = /var/lib/samba/profiles
> read only = no
> create mask = 0600
> directory mask = 0700
>
> I commented out the addgroup line but the groups DO get created and
> the users are added to /etc/group
>
> Domain Admins:!:15000:cadmin
> Dwarfs:!:15002:grumpy,sleepy,sneezy,bashfull
> Looneytunes:!:15003:bugs,daffy
> Rockers:!:15004:sammy,eddie
> Speedsters:!:15005:porsche,jeep
>
> the users are added to /etc/passwd
> grumpy:x:1008:15001::/home/grumpy:/bin/false
> sleepy:x:1009:15001::/home/sleepy:/bin/false
> sneezy:x:1010:15001::/home/sneezy:/bin/false
> bashfull:x:1011:15001::/home/bashfull:/bin/false
> bugs:x:1012:15001::/home/bugs:/bin/false
> cadmin:x:1013:15001::/home/cadmin:/bin/false
> daffy:x:1014:15001::/home/daffy:/bin/false
> sammy:x:1015:15001::/home/sammy:/bin/false
> eddie:x:1016:15001::/home/eddie:/bin/false
> porsche:x:1017:15001::/home/porsche:/bin/false
> jeep:x:1018:15001::/home/jeep:/bin/false
>
> If I add the machines manually (in uppercase w/$) to /etc/passwd and
> try to run as a PDC the clients wont authenticate.
>
> Can anyone shed some light?
> thx,
> -chris
