samba - Jan 2012 - winbind active directory credentials

I am trying to integrate Samba with our Active Directory server and map
Active Directory groups to local unix groups.

The problem is that our AD server does not allow anonymous users or
computer objects to query infomation about users or groups. For this
reason, using the net command to join the AD is not helpful. I am seeing a
lot of "NT_STATUS_ACCESS_DENIED" lines in the winbind log because of
this.

Is there a way to specify a username and password for winbind to use
when connecting to the AD server?

I am running Samba 3.5.9 and 32bit RHEL5

If any portion of the samba configs or logs would be useful I will be
happy to provide them.

Thanks in advance for you help.

Regards,
Dylan Canfield
dylan.canfield at colorado.edu

On Fri, Jan 13, 2012 at 12:48:12AM +0000, Dylan Canfield
wrote:
> I am trying to integrate Samba with our Active Directory server and map
> Active Directory groups to local unix groups.
> 
> The problem is that our AD server does not allow anonymous users or
> computer objects to query infomation about users or groups. For this
> reason, using the net command to join the AD is not helpful. I am seeing a
> lot of "NT_STATUS_ACCESS_DENIED" lines in the winbind log because
of this.
> 
> Is there a way to specify a username and password for winbind to use
> when connecting to the AD server?
> 
> I am running Samba 3.5.9 and 32bit RHEL5
> 
> If any portion of the samba configs or logs would be useful I will be
> happy to provide them.
> 
> Thanks in advance for you help.
Check out the:

net setauthuser

command. This should do what you need.