Well, this is what I did: I removed secrets.tdb, joined the domain again
-- and then I got this error....
Is there a chance to sniff details of the credentials the member-server
uses to connect to the PDC?
-------- Weitergeleitete Nachricht --------
Von: Gerald (Jerry) Carter <jerry@samba.org>
An: Jochen Witte <devnull@alpha-lab.net>
Kopie: samba@lists.samba.org
Betreff: Re: [Samba] Problem with domain membership
Datum: Wed, 23 Mar 2005 08:14:27 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Jochen Witte wrote:
| Hello - can anybody explain, what this means in detail?
|
| ---snip---
| 000010 smb_io_rpc_hdr_resp rpc_hdr_resp
| 0010 alloc_hint: 00000010
| 0014 context_id: 0000
| 0016 cancel_ct : 00
| 0017 reserved : 00
| rpc_api_pipe: len left: 0 smbtrans read: 40
| rpc_api_pipe: fragment first and last both set
| 000018 net_io_r_auth_2
| 000018 smb_io_chal
| 0018 data: c8 d8 ff bf 3b 5f 0e 08
| 000020 net_io_neg_flags
| 0020 neg_flags: 400001ff
| 0024 status: NT_STATUS_ACCESS_DENIED
| cli_net_auth2: Error NT_STATUS_ACCESS_DENIED
| cli_nt_setup_creds: auth2 challenge failed
| connect_to_domain_password_server: unable to setup the PDC credentials
| to machine PDC-SERVER. Error was : NT_STATUS_OK.
| write_socket(19,45)
| write_socket(19,45) wrote 45
| ---snip---
It means the machine trust account password on the Samba
server is invalid. Rejoining the domain should clear things
up.
cheers, jerry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCQXnDIR7qMdg1EfYRApUlAJ4lVmZnrztddnlgNW7XlBI6q0UXvACg6bsU
uqDMmTuLegaooWduO+ZKApY=qakP
-----END PGP SIGNATURE-----
--
Jochen Witte <devnull@alpha-lab.net>
