After a bit of effort I managed to get CentOS 5.3 server up and running to act as a PDC on a LAN. All the users can log in properly and the XP machines have been successfully added to the directory. Roaming profiles work fine and of course shares are up and available.
The only two remaining issues are: root has been aliased with Administrator on the Domain and while this account is able to perform all tasks on the server side, it doesn't have all privileges on the XP clients.
To address this I'm trying to add the user to the "Domain Admins" group on the server, but ran into this:
[root@gonzales ~]# net rpc group
[root@gonzales ~]# net rpc group ADDMEM Domain\ Admins root
Could not add root to Domain Admins: NT_STATUS_NO_SUCH_GROUP
What gives? I don't understand why i first get confirmation that the group does exist and then when adding the user to it, samba complains the group doesn't exist.
Relevant lines of config:
# Specifying ldapsam backend database
passdb backend = ldapsam:ldap://127.0.0.1
username map = /etc/samba/smbusers
# OpenLDAP stuff is defined here
ldap suffix = dc=XXXXX,dc=com,dc=au
ldap machine suffix = ou=machines
ldap user suffix = ou=People
ldap group suffix = ou=Groups
ldap idmap suffix = ou=People
ldap admin dn = cn=root,dc=XXXXX,dc=com,dc=au
ldap ssl = no
ldap passwd sync = Yes
idmap uid = 10000-20000
idmap gid = 500-20000
# ldap ssl = start_tls
Any help will be greatly appreciated.