I think that even with out that explicitly set domain members should be
able to locate the domain controller.
Does this problem exist with Windows clients that are joined to the
domain? In smb.conf, have you set the ports? By default 139 and
445 are listening- if you disable 445 it doesn't seem to affect Windows
clients joined to the domain but it does affect non-domain windows clients.
I user to have a setup with 1 PDC and 2 domain members- all machines
had a common unix user backend (NIS then LDAP.) Which I thought would
make everything work AOK. Long and short, was that I still needed
winbind running on the member servers and even though I had unix and
samba user's both in LDAP, the idmapping (unix id's to windows sids) was
not consisent. I converted the member servers to BDC's so that
everything was consistent across machines.
On 10/05/2010 08:30 AM, Daniel Müller wrote:
You are missing "password server=yourpdc" on your member server. How should
your member server know about your users?
Daniel
-----------------------------------------------
EDV Daniel Müller
Leitung EDV
Tropenklinik Paul-Lechler-Krankenhaus
Paul-Lechler-Str. 24
72076 Tübingen
Tel.: 07071/206-463, Fax: 07071/206-499
eMail: [email protected]
Internet: www.tropenklinik.de
-----------------------------------------------
-----Ursprüngliche Nachricht-----
Von: [email protected] [mailto:[email protected]] Im
Auftrag von Michel Correge
Gesendet: Dienstag, 5. Oktober 2010 13:43
An: [email protected]
Betreff: [Samba] Windows 7 cannot connect to domain member
Hi,
I have installed Samba 3.5.5 on a Sparc Solaris 10 system and it's the PDC
of a domain mainly consisting of other Sun boxes.
On the other hand, I have a PC with Windows 7 that I don't want to put in
the same domain (it's in a
workgroup)
When I try to connect some share (user's home) from the Windows box, I get
strange results :
- If the share is on the PDC, I can connect giving Username and Password
- If the share is on a member of the domain different from the PDC,
connection fails.
Configuration for PDC :
Load smb config files from /usr/local/samba-3.5.4/lib/smb.conf
rlimit_max: rlimit_max (256) below minimum Windows limit (16384) Processing
section "[netlogon]"
Processing section "[profiles]"
Processing section "[print$]"
Processing section "[printers]"
Processing section "[homes]"
Loaded services file OK.
Server role: ROLE_DOMAIN_PDC
Press enter to see a dump of your service definitions
[global]
unix charset = iso8859-1
workgroup = DCSD-T
interfaces = bge0
map to guest = Bad Password
passdb backend = tdbsam:/var/samba-3.5.4/private/passdb.tdb
username map = /usr/local/samba-%v/lib/usermap
log file = /var/samba-%v/log/samba-%m.log
printcap name = /usr/local/samba-3.5.4/lib/printcap
disable spoolss = Yes
logon path =
logon drive = Q:
logon home = \\%L\%U
domain logons = Yes
os level = 32
preferred master = Yes
domain master = Yes
[netlogon]
comment = Network Logon Service
path = /var/samba-%v/netlogon
browseable = No
[profiles]
comment = Profiles Service
path = /var/samba-%v/profiles
read only = No
create mask = 0600
directory mask = 0700
[print$]
comment = Printer Driver Download Area
path = /var/samba-%v/drivers
write list = root
guest ok = Yes
[printers]
comment = All Printers
path = /var/samba-%v/spool
create mask = 0700
guest ok = Yes
printable = Yes
browseable = No
[homes]
comment = Home Directory
read only = No
create mask = 0640
directory mask = 0750
browseable = No
Configuration for a domain member :
Load smb config files from /usr/local/samba-3.5.4/lib/smb.conf
rlimit_max: rlimit_max (256) below minimum Windows limit (16384) Processing
section "[PC_Softs]"
Processing section "[homes]"
Loaded services file OK.
Server role: ROLE_DOMAIN_MEMBER
Press enter to see a dump of your service definitions
[global]
unix charset = iso8859-1
workgroup = DCSD-T
security = DOMAIN
passdb backend = tdbsam:/var/samba-%v/private/passdb.tdb
log file = /var/samba-%v/log/samba-%m.log
load printers = No
local master = No
[PC_Softs]
comment = Logiciels PC
path = /local/PC_SOFTS
write list = correge
guest ok = Yes
[homes]
comment = Home Directory
read only = No
create mask = 0640
directory mask = 0750
browseable = No
Result of an attempt of connection on the member :
[2010/10/05 13:25:47.648076, 2] libsmb/namequery.c:801(name_query)
Got a positive name query response from 134.212.240.15 ( 134.212.240.15 )
[2010/10/05 13:25:47.940835, 2] auth/auth.c:314(check_ntlm_password)
check_ntlm_password: Authentication for user [admin] -> [admin] FAILED
with error NT_STATUS_NO_SUCH_USER
[2010/10/05 13:25:55.915986, 2] smbd/sesssetup.c:1390(setup_new_vc_session)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all
old resources.
[2010/10/05 13:25:55.917166, 2] smbd/sesssetup.c:1390(setup_new_vc_session)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all
old resources.
[2010/10/05 13:25:55.939908, 2] auth/auth.c:314(check_ntlm_password)
check_ntlm_password: Authentication for user [correge] -> [correge]
FAILED with error NT_STATUS_NO_SUCH_USER
[2010/10/05 13:26:00.436250, 2] smbd/sesssetup.c:1390(setup_new_vc_session)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all
old resources.
Any idea of what is wrong ?
Thanks
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
