Samba PDC and Win2000

0 pts.
Tags:
Enterprise Desktop
Linux
Networking
I have an issue I need help with I have a RedHat ES 3.0 Samba server setup and running as a PDC Testparm shows no problems with the smb.conf file and the system is working fine by itself. I am able to logon to the domain from a Win98 system and have the login script properly. The problem is with connecting from Win2000. I can connect and access the shares from windows explorer, I just can't get the Win2000 system to join the domain so the login script will run. Below is my smb.conf file with the share info edited out. Also, for security reasons I have made the shares not browsable and am connecting to the shares via "net use" within the login scripts. Once again even though I can get to the shares from both Win98 and Win2000 the domain access and the login script work in Win98 and not in Win2000. [global] workgroup = ptti-eng netbios name = Inventor server string = Inventor security = user encrypt passwords = yes socket options = TCP_NODELAY, IPTOS_LOWDELAY, SO_KEEPALIVE, SO_SNDBUF=14596, SO_RCVBUF=14596 domain logons = yes domain master = yes log file = /var/log/samba/log.%m max log size = 50 os level = 64 ; ensure this machine consulted 1st regarding current browse list preferred master = yes local master = yes domain master = yes logon drive = G: logon home = /ptti-eng/users/%U logon path = /ptti-eng/users/profiles/%U logon script = startup.bat username map = /etc/samba/users.map preserve case = yes short preserve case = yes case sensitive = no unix password sync = yes pam password change = yes passwd program = /usr/bin/passwd %u add user script = /usr/sbin/useradd -d /dev/null -g machines -s /bin/false -M %u add machine script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u #GGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGG [profiles] comment = users' profile directories path = /ptti-eng/login/profiles read only = no browseable = no create mask = 0600 ; rwx-xxx-xxx only the user can read/write files directory mask = 0700 ; rwx-xxx-xxx directories must be executable if they are to be navigated [NETLOGON] # required for Windows authentication path = /ptti-eng/login/%G read only = yes browseable = no [homes] # 'logon drive' won't work without this section path = /ptti-eng/users/%U read only = no browseable = no public = no create mode = 0700
ASKED: September 13, 2005  11:24 AM
UPDATED: September 14, 2005  10:26 AM

Answer Wiki

Thanks. We'll let you know when a new response is added.

I don’t see anything glaringly wrong with your smb.com. My guess would be that you either forgot to create the machine account on the samba server for the w2k machine, or you’re trying to join the domain as a user without the authority to do so from the win2k machine.

to check if the machine account exists:
cat /etc/passwd | grep -e “w$:.*”
look for the name of the win2k machine followed by a “$”
if you don’t see it there:
# useradd machinename -d /dev/null -s /bin/false
# vipw
locate the machine username and append the $ to the end of it (RHEL won’t let you create a user with a dollar sing in it) so you have an entry like:
machinename$:x:844:844::/dev/null:/bin/false

Then do:
# smbpasswd -a -m machinename
leave off the dollar sign
restart samba – just to be sure, you probably don’t really have to.

As to actually joining your domain, I don’t see where you have an admin user defined, so you’ll have to join the domain from the win2k machine as root (that is – the samba server’s root user – this is generally not a good idea, I usually define a user just for this task)

HTH

Discuss This Question:  

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following