Hello All,

I´m having a little bit of a pickle configuring the Samba and any help would be appreciated.

Here is the setup:

I have an OpenSuse 11.3 that I´m using as server (PDC) and I need to make it so Windows 7 clients are able to join the domain and authenticate in samba.

The authentication source for now is the local database of OpenSuse. Once I get this working, I may "upgrade" it to LDAP.

I was able to make the Win7 join the domain using the user "root". I got the expected error

"Changing the Primary Domain DNS name of this computer to "" failed.
The name will remain "MYDOM". The error was:

The specified domain either does not exist or could not be contacted"

and then I rebooted the Win7.

Now I´m trying to login using a local user (other than root) and this is the log from the server when I try to do it:

[2010/10/19 17:13:38.821792, 2] smbd/sesssetup.c:1390(setup_new_vc_session)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2010/10/19 17:13:38.825065, 2] smbd/sesssetup.c:1390(setup_new_vc_session)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2010/10/19 17:13:38.827753, 2] auth/auth.c:304(check_ntlm_password)
check_ntlm_password: authentication for user [jleal] -> [jleal] -> [jleal] succeeded
[2010/10/19 17:13:41.388708, 2] rpc_server/srv_samr_nt.c:4124(_samr_LookupDomain)
Returning domain sid for domain TESTE.LOCAL -> S-1-5-21-2571761598-2761918735-140538678
[2010/10/19 17:13:41.392983, 2] rpc_server/srv_samr_nt.c:4124(_samr_LookupDomain)
Returning domain sid for domain TESTE.LOCAL -> S-1-5-21-2571761598-2761918735-140538678

To me this looks like it worked, but then I get an alert window still in the login screen of Win7 stating:

"The connection was denied because the user account is not authorized for remote login"

Any ideas?

Thanks in advance

Just a thought- why you expected
Did you make the change as Administrator? Or as a user supposedly with administrative power?

Hello, thanks for your answer.

I did the change using the user "root". I expected that message because I read in a few pages that this usually happens when you try to join a Win7 in a Samba PDC domain (for example, in http://wiki.samba.org/index.php/Windows7)

Thanks

Just as additional information, this is what happened when it successfully joined the domain:

[2010/10/20 09:58:35.801252, 2] smbd/sesssetup.c:1390(setup_new_vc_session)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2010/10/20 09:58:35.803222, 2] smbd/sesssetup.c:1390(setup_new_vc_session)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2010/10/20 09:58:35.804943, 2] auth/auth.c:304(check_ntlm_password)
check_ntlm_password: authentication for user [root] -> [root] -> [root] succeeded
[2010/10/20 09:58:38.314315, 2] rpc_server/srv_samr_nt.c:4124(_samr_LookupDomain)
Returning domain sid for domain TESTE.LOCAL -> S-1-5-21-2571761598-2761918735-140538678
Oct 20 09:58:38 servidor useradd[9626]: new account added - account=win7client$, uid=1002, gid=100, home=/var/lib/nobody, shell=/bin/false, by=0
Oct 20 09:58:39 servidor useradd[9626]: account added to group - account=win7client$, group=video, gid=33, by=0
Oct 20 09:58:39 servidor useradd[9626]: running USERADD_CMD command - script=/usr/sbin/useradd.local, account=win7client$, uid=1002, gid=100, home=/var/lib/nobody, by=0
Oct 20 09:58:44 servidor dhcpd: DHCPREQUEST for 172.22.110.150 from 00:50:56:9e:00:0d (WIN7CLIENT) via eth0
Oct 20 09:58:44 servidor dhcpd: DHCPACK on 172.22.110.150 to 00:50:56:9e:00:0d (WIN7CLIENT) via eth0
Oct 20 09:58:46 servidor smbd[9621]: [2010/10/20 09:58:46.120222, 0] rpc_server/srv_netlog_nt.c:714(_netr_ServerAuthenticate3)
Oct 20 09:58:46 servidor smbd[9621]: _netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client WIN7CLIENT machine account WIN7CLIENT$
[2010/10/20 09:58:46.120144, 2] ../libcli/auth/credentials.c:306(netlogon_creds_server_check_internal)
credentials check failed
[2010/10/20 09:58:46.120222, 0] rpc_server/srv_netlog_nt.c:714(_netr_ServerAuthenticate3)
_netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client WIN7CLIENT machine account WIN7CLIENT$
[2010/10/20 09:58:53.628223, 2] auth/auth.c:314(check_ntlm_password)
check_ntlm_password: Authentication for user [WIN7CLIENT] -> [WIN7CLIENT] FAILED with error NT_STATUS_NO_SUCH_USER

Then the "expected error" appeared and windows requested the reboot, for the changes to take place, as usual.

Hello again,

It seems to be working already. As I am using both server and client in VMWare, I was trying to log the windows client via Remote Desktop, and the error was concerning that. Once I tried using the VM console, it worked just fine.

Sorry to waste your time.

Glad you got it working, just for future reference, when I asked about "Administrator" I was referring to Win 7, which doesn't have a "root" account. In other words root is not equal to Administrator. Second, did you use the hotfix or fiddle the registry keys?

When I made the change I was logged as Administrator, but I used the user "root" to join the domain when it asked for it.

And I did a little bit of fiddling in the registry, yes.
Used mainly this settings: http://www.linuxquestions.org/questi...-3-pdc-830385/

Some entries in that link I couldn´t find in my Windows registry, so I skipped those and yet it worked.