Thanks for your input.
girkers:
Thanks, I suspect I have not correctly configured my systems.
You link is very informative, if a bit over my head....
RayMitchell:
G'day again Ray. I suspect it's going to be a bug with me, than a bug with sme8. Either way, I may have go down that path anyway.
I think my problem is that i havent joined the second sme to the first's domain.
I came across the following link that deals with using a sme server with domain authentication using a windows domain controller.
http://forums.contribs.org/index.php?topic=24087.msg96198#msg96198I thought that if I modified the instructions there I could get the second sme to log into and validate against the domain. From there I believe it should then accept domain passwords.
The link in girkers' post above is probably the best way to go, but appeared very complicated
The gist of the above link's instructions were to:
------------------------------------------------------------------
2 Log in as root.
3 Copy /etc/samba/smb.conf to /etc/e-smith/templates-custom/etc
4 Add/Change following lines to smb.conf in templates directory.
netbios name = {SME computer name}
security = domain
workgroup = {your domain}
encrypt passwords = yes
password server = {your PDC}
5 stop samba (/etc/rc.d/init.d/smb stop)
6 Join your domain. Use following command
smbpasswd -j {your domain} -r {your PDC (use name instead of IP address)}
7 Apply template. (/sbin/e-smith/expand-template /etc/smb.conf)
8 Restart Samba
-------------------------------------------------------------------------
Is this a correct way to do it?I realise that some of the items added/changed in smb.conf template is specific for a win dc.
should I change any of this? eg encrypt passwords = yes
Last night I tried this proceedure.
However, when I tried to join the domain using
smbpasswd -j domainname -r DCname, I get the following message:
"see 'net join' for this functionality"
Personally I would have liked to use smbpasswd for this functionality:)
after reading up on net join, i tried
"net join -S dcname -w domainname -U admin"
and put in my password as requested, and it returns:
"utils/net_rpc_join.c:net_rpc_join_newstyle(350)
Error in domain join verification (credential setup failed) : NT_STATUS_ACCESS_DENIED
unable to join domain domainname"
So, despite the errors, I of course continued, expanded the template and attempted to restart samba.
/etc/re.d/init.d/smb restart
and smb does not appear to start...
i get
shutting down SMB services OK
shutting down NMB services OK
starting SMB services
starting NMB services OK
if I do a "service samba status"
"samba is not a valid service name
if I do a "service smb status"
run: /service/nmbd: (pid 8736) 184s, normally down; run: log: (pid 2718) 60345s
run: /service/smbd: (pid 8722) 184s, normally down; run: log: (pid 2722) 60345s
Is samba running? ,sorry for my lack of unix, but when I saw starting smb services without an OK, i was concerned. I'm guessing the smb service is samba, and it is running.
I guess I can reset samba by removing the smb.conf from the templates-custom directory and rebooting.
Any ideas what needs to be modified in smb.conf so I can join the domain.
It appears to correctly authenticate to the dc when I type "net join", by itself.
It prompts for a password, and if I put in the wrong one it says 'could not connect to server dcname'
'The username or password was incorrect', if I put in the right one it gives "Error in domain join verification (credential setup failed)", so it appears to verify the password correctly.
Sorry to come back with more questions.
Any help appreciated.
9 Replies
3183 Views