samba - Apr 2006 - authentication with Active Directory domain failure

Hello,

I am trying to set up Samba 2.2.8a.2 on a IRIX 6.5 box
to authenticate with a Active Directory domain, and to
connect users via their windows password to their UNIX
folder.
I have set up all the options described in the
documentation but i keep getting this error when I try
to log in with the command "smbclient
//UNIXBOX_NAME/tmp -Ujohndoe%secret " : 
session setup failed: NT_STATUS_LOGON_FAILURE.
With the guest account or without a password for the
user it connects to the tmp share as in the TEST 7 of
the samba documentation.

The output for the log.nmbd file is this :

[2006/04/04 14:35:56, 0] nmbd/nmbd.c:(502)
  Got SIGHUP dumping debug info.
[2006/04/04 14:35:56, 0] nmbd/nmbd_workgroupdb.c:(289)
  dump_workgroups()
   dump workgroup on subnet   192.168.0.1: netmask= 
255.255.255.0:
        DOMAIN(1) current master browser = UNKNOWN
                UNIXBOX_NAME 40009b03 (Samba 2.2.8a.2)
[2006/04/04 14:35:56, 0] nmbd/nmbd_workgroupdb.c:(289)
  dump_workgroups()
   dump workgroup on subnet  UNICAST_SUBNET: netmask= 
192.168.0.1:
        DOMAIN(1) current master browser = UNKNOWN
                UNIXBOX_NAME 40009b03 (Samba 2.2.8a.2)


The output of the log.smbd file is the following:

2006/04/04 14:36:12, 0] smbd/server.c:(791)
  smbd version 2.2.8a.2 started.
  Copyright Andrew Tridgell and the Samba Team
1992-2002
[2006/04/04 14:36:15, 0] smbd/password.c:(1601)
  domain_client_validate: Domain password server not
available.


The smb.conf file looks like this :

; Configuration file for smbd.
;
===========================================================================; For
the format of this file and comprehensive
descriptions of all the
; configuration option, please refer to the man page
for smb.conf(5).

; This is a sample configuration for IRIX 6.x systems
;
; The following configuration should suit most systems
for basic usage and
; initial testing. It gives all clients access to
their home directories and
; /usr/tmp and allows access to all printers returned
by lpstat.
;
[global]
   comment = Samba %v
   workgroup = "WORKGROUP"
   encrypt passwords = Yes
   security = domain
   password server = *
   wins proxy = yes

; this tells Samba to use a separate log file for each
machine
; that connects - default is single file named
/usr/samba/var/log.smb
;   log file = /usr/samba/var/log.%m

;  Set a max size for log files in Kb
   max log size = 50

;  You will need a world readable lock directory
;  if you want to support the file sharing modes for
multiple users
;  of the same files
   locking = yes
   lock directory = /usr/samba/var/locks

;  You need to test to see if this makes a difference
on your system
;   socket options = TCP_NODELAY SO_BROADCAST

;  Set the os level to > 32 if there is no NT server
for your workgroup
   os level = 0
   preferred master = no
   domain master = no
   local master = no
   wins support = no
   wins server = WINS_SRV_NAME

   preserve case = yes
   short preserve case = yes

;  These are the settings required for IRIX password
sync
   passwd program = /usr/bin/passwd %u
   passwd chat = *ew*password:* %n\n
*e-enter*new*password:* %n\n

;  Uncomment the following if you wish to use
encrypted passwords.
;   encrypt passwords = yes

;  Uncomment the following if you wish to sync unix
and smbpasswd
   unix password sync = yes

;  Sample winbindd configuration parameters -
uncomment and
;  change if necessary for your desired configuration
;   winbind uid = 50000-60000
;   winbind gid = 50000-60000
;   winbind separator = +
;   winbind cache time = 10
;   password server = *

;  Sample add user command for automatically adding
machine accounts
;   add user script = /usr/sbin/passmgmt -a
-h/dev/null -g20 -s/usr/bin/false %u
[homes]
   comment = Home Directories
   path=/home/%U
   browseable = no
   writeable = yes

[tmp]
  comment = Temporary file space
  path = /usr/tmp
  writeable = yes
  guest ok = yes

Any suggestion will be greatly appreciated.

Petrica

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

Another important thing : when I type the command
"smbclient -L SERVERNAME -U%" I get a list of shares,
but if I use the "-U username" and I specify the
password the answer is "session setup failed:
NT_STATUS_LOGON_FAILURE".

I think there is a problem with the authentication but
I cannot realise what.
Maybe this information is useful to someone who knows
how to solve the problem.

Regards,

Petrica

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com