While I wait for an answer to my last question, allow me to ask another.
When we upgraded a samba server from 2.x to 3.0.0-2mdk using LDAP, we managed
to change the domain SID. Instead of fixing the SIDs on the sever, I re-added
the hosts to the domain. Although it was a lot of work, it was successful on
most of the systems on the network. However, we have one old NT4 box on the
network which will not rejoin the domain. Instead it reports: "This
computer
name is already configured as a domain controller on the domain."
We've deleted and re-added the user object for the machine several times.
This is what it currently looks like:
[root@Border samba3]# pdbedit3 -u ntbox$ -v
Unix username: ntbox$
NT username: ntbox$
Account Flags: [ ]
User SID: S-1-5-21-3970570929-2603547963-1902127304-2152
Primary Group SID: S-1-5-21-3970570929-2603547963-1902127304-513
Full Name: nt computer
Home Directory: \\border\ntbox_
HomeDir Drive: U:
Logon Script: login.bat
Profile Path: \\border\profiles\ntbox_
Domain: BORDERENT
Account desc:
Workstations:
Munged dial:
Logon time: 0
Logoff time: Mon, 18 Jan 2038 21:14:07 GMT
Kickoff time: Mon, 18 Jan 2038 21:14:07 GMT
Password last set: 0
Password can change: 0
Password must change: Mon, 18 Jan 2038 21:14:07 GMT
I'm suspecting that the old SID is cached on the NT box somewhere, probably
in
the registry, but I have no idea where to look. Any ideas?
Chris
--
Chris Garrigues http://www.DeepEddy.Com/~cwg/
Trinsic Solutions http://www.trinsics.com
1611-B West 6th Street
Austin, TX 78703-5074 512-322-0180
If you don't apply what you've learned, you haven't
learned anything.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 235 bytes
Desc: not available
Url :
http://lists.samba.org/archive/samba/attachments/20040326/fc65eb5e/attachment.bin