I'm still getting near a thousand error messages a day on only one of my two samba servers that both participate in the same W2K domain: [2004/02/16 09:17:52, 0] rpc_client/cli_trust.c:change_trust_account_password(248) 2004/02/16 09:17:52 : change_trust_account_password: Failed to change password for domain ITS. The server getting the errors is version 2.2.7a-security-rollup-fix running on RedHat Linux. The server not receiving the error messages is version 2.2.0 running on SPARC Solaris. Both servers participate in the same domain, and neither act as a domain controller or WINS server. The technician that manages the microsoft domain itself has no idea since he doesn't see any problem on the microsoft side. I'm assuming, therefore, there is some fine tuning I need to do on the one samba server giving me the errors. Any ideas?? Thanks, Rob Rob Tanner UNIX Services Manager Linfield College, McMinnville OR
Andrew Bartlett
2004-Feb-29 06:42 UTC
[Samba] Problems with trust account passwords -- still
On Thu, 2004-02-19 at 03:34, Rob Tanner wrote:> I'm still getting near a thousand error messages a day on only one of my two > samba servers that both participate in the same W2K domain: > > [2004/02/16 09:17:52, 0] > rpc_client/cli_trust.c:change_trust_account_password(248) > 2004/02/16 09:17:52 : change_trust_account_password: Failed to change > password for domain ITS. > > The server getting the errors is version 2.2.7a-security-rollup-fix running > on RedHat Linux. The server not receiving the error messages is version > 2.2.0 running on SPARC Solaris. Both servers participate in the same domain, > and neither act as a domain controller or WINS server. The technician that > manages the microsoft domain itself has no idea since he doesn't see any > problem on the microsoft side. I'm assuming, therefore, there is some fine > tuning I need to do on the one samba server giving me the errors.Is your 'security=domain' setup working? If so, then you might just ignore this message as 'something weird is happening'. You could also upgrade to Samba 3.0, and run winbind (which has a lovely buggy behaviour that it will never try the change the trust account password :-) Andrew Bartlett -- Andrew Bartlett abartlet@pcug.org.au Manager, Authentication Subsystems, Samba Team abartlet@samba.org Student Network Administrator, Hawker College abartlet@hawkerc.net http://samba.org http://build.samba.org http://hawkerc.net -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.samba.org/archive/samba/attachments/20040229/2a6e3dc4/attachment.bin