Eddie Lania
2004-Apr-14 08:08 UTC
[Samba] samba-latest and tdbsam - unable to logon to domain?
Dear list members,
I am unable to logon to the domain.
I have created the tdbsam using the "smbpasswd -a root" command.
I also added User Administrator as unix and samba account.
I also mapped groups "Domain Admins", "Domain users" and
"Domain Guests" to
unix groups domadmins, domusers and domguests using the "net groupmap
modify" command.
But is doesn't work.
I cannot join a XP professional ws to the domain, I keep getting the message
that the domain controller cannot be found.
I am able to open the netlogon share from the ws when I am logged on the ws
as a local Administrator, but that's about all I can do.
Please help me!
See below my smb.conf:
[global]
netbios name = C733LINUX
workgroup = TECHDREAM
server string = "Samba 3.0 server"
security = user
passdb backend = tdbsam
encrypt passwords = Yes
null passwords = Yes
admin users = @"Domain Admins"
guest account = Guest
socket address = 192.168.169.192
interfaces = 192.168.169.192/24
bind interfaces only = True
hosts allow = 127.0.0.1, 192.168.169.0/24, 192.168.168.0/24
; add user script = /usr/sbin/useradd %u
; add group script = /usr/sbin/groupadd %g
add machine script = /usr/sbin/adduser -n -g computers -c
Computer -d /dev/null -s /bin/false %u
; delete user script = /usr/sbin/userdel %u
; delete user from group script = /usr/sbin/deluser %u %g
; delete group script = /usr/sbin/groupdel %g #
wins partners = 192.168.168.150
wins support = Yes
name resolve order = wins lmhosts host bcast
os level = 64
prefered master = True
domain master = True
local master = Yes
browse list = Yes
enhanced browsing = Yes
remote announce = 192.168.168.150
domain logons = Yes
logon path = \\%L\profiles\%U
logon drive = q:
logon home = \\%L\%U\.profile
logon script = login.bat
socket options = TCP_NODELAY=1
debug uid = Yes
log file = /var/log/samba/%m.log
; log level = 0
max log size = 0
pid directory = /var/run
printing = cups
printer admin = @"Domain Admins"
[netlogon]
comment = Network Logon Service
path = /home/netlogon
nt acl support = No
read only = Yes
guest only = Yes
[homes]
path = /home/users/%U
valid users = @"Domain Users", @"Domain Admins"
read only = No
browseable = No
inherit acls = Yes
inherit permissions = Yes
csc policy = disable
[profiles]
comment = User Profiles share
path = /home/profiles
valid users = @"Domain Users", @"Domain Admins"
read only = No
inherit acls = Yes
inherit permissions = Yes
csc policy = disable
[printers]
path = /var/spool/samba
valid users = @"Domain Users", @"Domain Admins"
browseable = No
printable = Yes
guest ok = Yes
; print command = lpr -P %p -o raw %s -r
; lpq command = lpstat -o %p
; lprm command = cancel %p-%j
[print$]
path = /usr/local/samba/printers
read only = Yes
valid users = @"Domain Admins"
write list = @"Domain Admins", root
guest ok = Yes
[users]
comment = Users directories
path = /home/users
valid users = @"Domain Users", @"Domain Admins"
read only = Yes
write list = @"Domain Admins"
inherit acls = Yes
inherit permissions = Yes
[public]
comment = Public Files share
path = /mnt/big_f32/public
valid users = @"Domain Users", @"Domain Admins"
force user = nobody
read only = No
[apps]
comment = Applications share
path = /mnt/big_f32/apps
valid users = @"Domain Users", @"Domain Admins"
force user = nobody
read only = No
Marcus White
2004-Apr-15 04:58 UTC
[Samba] samba-latest and tdbsam - unable to logon to domain?
Try setting the "bind interfaces only" to "no" Marcus O. On Wed, 2004-04-14 at 04:07, Eddie Lania wrote:> Dear list members, > > I am unable to logon to the domain. > I have created the tdbsam using the "smbpasswd -a root" command. > I also added User Administrator as unix and samba account. > I also mapped groups "Domain Admins", "Domain users" and "Domain Guests" to > unix groups domadmins, domusers and domguests using the "net groupmap > modify" command. > But is doesn't work. > > I cannot join a XP professional ws to the domain, I keep getting the message > that the domain controller cannot be found. > I am able to open the netlogon share from the ws when I am logged on the ws > as a local Administrator, but that's about all I can do. > > Please help me! > > See below my smb.conf: > > [global] > netbios name = C733LINUX > workgroup = TECHDREAM > server string = "Samba 3.0 server" > security = user > passdb backend = tdbsam > encrypt passwords = Yes > null passwords = Yes > admin users = @"Domain Admins" > guest account = Guest > socket address = 192.168.169.192 > interfaces = 192.168.169.192/24 > bind interfaces only = True > hosts allow = 127.0.0.1, 192.168.169.0/24, 192.168.168.0/24 > ; add user script = /usr/sbin/useradd %u > ; add group script = /usr/sbin/groupadd %g > add machine script = /usr/sbin/adduser -n -g computers -c > Computer -d /dev/null -s /bin/false %u > ; delete user script = /usr/sbin/userdel %u > ; delete user from group script = /usr/sbin/deluser %u %g > ; delete group script = /usr/sbin/groupdel %g # > wins partners = 192.168.168.150 > wins support = Yes > name resolve order = wins lmhosts host bcast > os level = 64 > prefered master = True > domain master = True > local master = Yes > browse list = Yes > enhanced browsing = Yes > remote announce = 192.168.168.150 > domain logons = Yes > logon path = \\%L\profiles\%U > logon drive = q: > logon home = \\%L\%U\.profile > logon script = login.bat > socket options = TCP_NODELAY=1 > debug uid = Yes > log file = /var/log/samba/%m.log > ; log level = 0 > max log size = 0 > pid directory = /var/run > printing = cups > printer admin = @"Domain Admins" > > [netlogon] > comment = Network Logon Service > path = /home/netlogon > nt acl support = No > read only = Yes > guest only = Yes > > [homes] > path = /home/users/%U > valid users = @"Domain Users", @"Domain Admins" > read only = No > browseable = No > inherit acls = Yes > inherit permissions = Yes > csc policy = disable > > [profiles] > comment = User Profiles share > path = /home/profiles > valid users = @"Domain Users", @"Domain Admins" > read only = No > inherit acls = Yes > inherit permissions = Yes > csc policy = disable > > [printers] > path = /var/spool/samba > valid users = @"Domain Users", @"Domain Admins" > browseable = No > printable = Yes > guest ok = Yes > ; print command = lpr -P %p -o raw %s -r > ; lpq command = lpstat -o %p > ; lprm command = cancel %p-%j > > [print$] > path = /usr/local/samba/printers > read only = Yes > valid users = @"Domain Admins" > write list = @"Domain Admins", root > guest ok = Yes > > [users] > comment = Users directories > path = /home/users > valid users = @"Domain Users", @"Domain Admins" > read only = Yes > write list = @"Domain Admins" > inherit acls = Yes > inherit permissions = Yes > > [public] > comment = Public Files share > path = /mnt/big_f32/public > valid users = @"Domain Users", @"Domain Admins" > force user = nobody > read only = No > > [apps] > comment = Applications share > path = /mnt/big_f32/apps > valid users = @"Domain Users", @"Domain Admins" > force user = nobody > read only = No
Apparently Analagous Threads
- Samba 3.0-alpha 18 with ldapsam backend and primary gid of user?
- Fw: Samba 3.0-alpha 18 with ldapsam backend and primary gid of user?
- does a pdc need to be in the domain itself?
- logon.bat: switching from smbpasswd to tdbsam
- tattooing of tdbsam backend with logon script value