Mccrory, Kevin B
2005-Mar-14 23:03 UTC
[Samba] W2K Server and Workstation can't join SMB/LDAP domain
I have a SMB Domain set up with a PDC and BDC. The BDC is joined to the PDC domain fine and shows up in the LDAP directory. I can add and delete users to the LDAP directory. I can use the user accounts to access the Linux boxes. My W2K boxes see the domain and domain servers when browsing. I can access the shared drive on the PDC. I cannot join the Windows servers to the domain. I get an error that the domain mphq-cops can't be located. I've run an nbtstat that shows the domain name listed and its resolving to the correct IP address. In fact I turned off the BDC for a while so that there would only be one DC in the mix in case my config was wrong. The W2K machines showed the domain with the PDC IP address. When I turned the BDC back on nbstat showed the domain name resolving to the BDC ip address which is what I would expect would happen. I've tried adding the workstation accounts manually using smbldap-useradd -w . The machine name correctly appears when I do a ldapsearch -x -b however using getent group does not show the machine names in the Domain Computers group. Is this normal? I've checked and rechecked the Administrator account and made sure the password is correct for the account. Not sure where to go from here... Some pointers on what to look at would be greatly appreciated... Thanks Kevin B. McCrory Network Engineer - COPS US Government Solutions 13600 EDS Drive Mail stop: A4S-B21 Herndon, VA 20171 * phone: +01-703-733-3255 * mailto:kevin.mccrory@eds.com <mailto:kevin.mccrory@eds.com> * AKO mailto:kevin.mccrory@us.army.mil <mailto:kevin.mccrory@us.army.mil>
Mccrory, Kevin B
2005-Mar-15 19:31 UTC
[Samba] W2K Server and Workstation can't join SMB/LDAP domain
I found the error. MS Windows Domain names can't have special characters in them. I forgot about that little wrinkle. Changed Domain mphq-cops.opmg.local to mphqcops.opmg.local and everything is working fine. Kevin B. McCrory Network Engineer - COPS US Government Solutions 13600 EDS Drive Mail stop: A4S-B21 Herndon, VA 20171 * phone: +01-703-733-3255 * mailto:kevin.mccrory@eds.com * AKO mailto:kevin.mccrory@us.army.mil -----Original Message----- From: samba-bounces+kevin.mccrory=eds.com@lists.samba.org [mailto:samba-bounces+kevin.mccrory=eds.com@lists.samba.org] On Behalf Of Mccrory, Kevin B Sent: Monday, March 14, 2005 6:02 PM To: samba@lists.samba.org Subject: [Samba] W2K Server and Workstation can't join SMB/LDAP domain I have a SMB Domain set up with a PDC and BDC. The BDC is joined to the PDC domain fine and shows up in the LDAP directory. I can add and delete users to the LDAP directory. I can use the user accounts to access the Linux boxes. My W2K boxes see the domain and domain servers when browsing. I can access the shared drive on the PDC. I cannot join the Windows servers to the domain. I get an error that the domain mphq-cops can't be located. I've run an nbtstat that shows the domain name listed and its resolving to the correct IP address. In fact I turned off the BDC for a while so that there would only be one DC in the mix in case my config was wrong. The W2K machines showed the domain with the PDC IP address. When I turned the BDC back on nbstat showed the domain name resolving to the BDC ip address which is what I would expect would happen. I've tried adding the workstation accounts manually using smbldap-useradd -w . The machine name correctly appears when I do a ldapsearch -x -b however using getent group does not show the machine names in the Domain Computers group. Is this normal? I've checked and rechecked the Administrator account and made sure the password is correct for the account. Not sure where to go from here... Some pointers on what to look at would be greatly appreciated... Thanks Kevin B. McCrory Network Engineer - COPS US Government Solutions 13600 EDS Drive Mail stop: A4S-B21 Herndon, VA 20171 * phone: +01-703-733-3255 * mailto:kevin.mccrory@eds.com <mailto:kevin.mccrory@eds.com> * AKO mailto:kevin.mccrory@us.army.mil <mailto:kevin.mccrory@us.army.mil> -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba