Domain Controller Authentication under Samba not working!!
Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Domain Controller Authentication under Samba not working!!
Hi,
I have recently been transferring a network infrastructure from Server 2003 to CentOS and have setup DNS, DHCP, Samba.
I have nearly completed implementing a PDC under Samba and everything was going smoothly. The hitch I'm having is logging on from an XP client to the DC. It allows the logon to happen but gives me a temporary profile only, showing two errors at logon about not being able to load a roaming/local profile.
I have looked at the log file:
[2009/09/17 13:38:27, 0] auth/auth_util.c:create_builtin_administrators(844)
create_builtin_administrators: Failed to create Administrators
[2009/09/17 13:38:27, 2] auth/auth_util.c:create_local_nt_token(966)
create_local_nt_token: Failed to create BUILTIN\Administrators group!
[2009/09/17 13:38:27, 0] auth/auth_util.c:create_builtin_users(810)
create_builtin_users: Failed to create Users
As far as I know, the account database is correct on the Samba side. I know that for a first logon to the domain, a root account must be used, I have given this a try as well as several other user accounts. The computer account has a trust relationship with the domain. I'm guessing that a problem may exist in the permission side of things but have really only been plucking at straws to try and get it working.
I don't have too much Linux knowledge and would really appreciate your help!
I will give that a try tomorrow when I go into work.
What about the root account on Samba that I need to join the domain with first? When I join with a user on the XP client, the user is an account in Samba, not on the XP machine. So shouldn't it not matter??
And if I do need to join say the Administrator account, do I enter, 'BUILTIN\Administrator' with 'smbpasswd -a' or just 'Administrator'?
In this case it looks like it's trying to find information from the PDC about the local groups "Administrators" and "Users". You could try creating those two groups manually, or set Samba up to automatically create groups it doesn't know about using something like this in smb.conf:
Quote:
add group script = /usr/sbin/groupadd "%g"
(or whatever is appropriate for your flavor of Linux)
As far as adding users via smbpasswd, you don't need to specify a domain for that command.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
Domain Controller Authentication under Samba not working!!
