Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back > Forums > Linux Forums > Linux - Server
User Name
Linux - Server This forum is for the discussion of Linux Software used in a server related context.


  Search this Thread
Old 02-15-2007, 04:07 PM   #1
LQ Newbie
Registered: Aug 2006
Location: Western PA
Distribution: PCLinuxOS 2007
Posts: 16

Rep: Reputation: 0
Angry Samba as a PDC help!

I can't for the life of me get samba to work properly as a PDC. It's driving me nuts, everytime I try to join the domain on windows it asks for the username and password I type in root for username and the password and it says it's wrong! I added the machine name to the smbusers and still no go, can someone please helpme here is my smb.conf down below:

# Sample configuration file for the Samba suite for Debian GNU/Linux.
# This is the main Samba configuration file. You should read the
# smb.conf(5) manual page in order to understand the options listed
# here. Samba has a huge number of configurable options most of which
# are not shown in this example
# Any line which starts with a ; (semi-colon) or a # (hash)
# is a comment and is ignored. In this example we will use a #
# for commentary and a ; for parts of the config file that you
# may wish to enable
# NOTE: Whenever you modify this file you should run the command
# "testparm" to check that you have not many any basic syntactic
# errors.

#======================= Global Settings =======================

force user = root
force group = desktop
log file = /var/log/samba/log.%m
passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n .
map to guest = Bad User
guest ok = yes
passwd program = /usr/bin/passwd %u
passdb backend = tdbsam guest
unix extensions = no
dns proxy = no
server string = %h (Linspire %v)
workgroup = cadatest
syslog = 0
panic action = /usr/share/samba/panic-action %d
max log size = 1000
restrict anonymous = no
domain master = yes
preferred master = yes
os level = 65
max protocol = NT
ldap ssl = No
server signing = Auto
logon drive = H:
domain logons = yes
logon path = \\%L\profiles\%u\%mlogon script = logon.bat
paranoid server security = no
disable netbios = yes
local master = no
update encrypted = yes
unix password sync = yes

force user = root
force group = desktop
comment = Home Directories
read only = no

# File creation mask is set to 0700 for security reasons. If you want to
# create files with group=rw permissions, set next parameter to 0775.
create mask = 0700

# Directory creation mask is set to 0700 for security reasons. If you want to
# create dirs. with group=rw permissions, set next parameter to 0775.
directory mask = 0700

path = /usr/local/samba/lib/netlogon
browseable = no

; you might wish to use a different directory for your
; Windows NT/2000/XP roaming profiles
path = /home/sambaprofiles
browseable = no
read only = no
create mask = 0600
directory mask = 0700
Am I missing something here? anyone have experience with this, help would be appreciated thanks.
Old 03-13-2007, 07:03 PM   #2
Registered: Jan 2005
Location: germany
Distribution: suse, opensuse, debian, others for testing
Posts: 307

Rep: Reputation: 32
did you add root as a samba user ?

did you enable wins support ?
i had to run samba as a wins server for the xp clients to find the PDC + add samba as a wins server in the clients' tcp settings (this is usually done via DNS and special microsoft zone entries, but wins will do the trick for small offices).

have a look at:
Old 03-14-2007, 04:59 AM   #3
Registered: Jul 2006
Location: Balen, Belgium
Distribution: Suse 10, Centos, Open Solaris
Posts: 76

Rep: Reputation: 15

It's easier to automatically add your workstations to samba then manually. You can do this with parameters in your smb.conf file.

You also have to ad root to smbpasswd.

Further you need to modify your nsswitch.conf file.
change to following setting:

passwd: compat winbind
group: compat winbind

Please see my smb.conf file which works for Suse.

workgroup = PBDS.COM
netbios name = NLHOL1D2
passdb backend = tdbsam
add user script = /usr/sbin/useradd -m %u
delete user script = /usr/sbin/userdel -r %u
add group script = /usr/sbin/groupadd %g
delete group script = /usr/sbin/groupdel %g
add user to group script = /usr/sbin/groupmod -G %g %u
delete user from group script = /usr/sbin/groupmod -R %g %u
add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s /bin/false %m$
os level = 65
preferred master = auto
domain master = yes
local master = yes
security = user
domain logons = yes
encrypt passwords = yes
logon drive = P:
logon home = \\%L\%U
hosts allow =
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
name resolve order = wins lmhosts host bcast dns
logfile = /var/log/samba/log.%m
idmap uid = 15000-20000
idmap gid = 15000-20000
wins support = yes
time server = yes
logon script = %U.bat
printing = cups
load printers = yes
printcap name = /etc/printcap
printer admin = root
max print jobs = 100
lpq cache time = 20
show add printer wizard = yes
winbind separator = +

comment = Home Directories
valid users = %S
browseable = No
read only = No
inherit acls = Yes

comment = All printers
printable = yes
admin users = root
path = /var/spool/samba
guest ok = yes

comment = Printer download section
path = /etc/samba/drivers
browseable = yes
guest ok = yes
write list = root
read only = no
create mask = 775
directory mask = 775
Old 03-16-2007, 09:59 PM   #4
Registered: Nov 2004
Location: Townsville, Australia
Distribution: Fedora Core 5, CentOS 4, RHEL 4
Posts: 855

Rep: Reputation: 30
I have a how-to on my website for setting up samba as a primary domain controller (PDC)

OpenLDAP LAM Samba as PDC

and if you feeling a little bit more adventurous later on you could try getting into the policies with samba

Samba Primary Domain Controller with Group Policies

I try and make all my how-to's as simple as possible if you wanna check it out, that might help you.


samba windows

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
samba member server as fileserver authenticating samba PDC activeq Linux - Networking 0 11-17-2006 09:44 AM
samba 3 problem - samba PDC can not join to the domain ananthak Linux - Networking 1 05-21-2006 10:39 AM
Samba domain member server (DMS) group permissions in network with a Samba PDC srosa Linux - Networking 0 05-01-2006 05:55 PM
Samba As A PDC steve007 Linux - Newbie 1 06-13-2005 11:27 AM
samba pdc HELP! freezer Linux - Networking 5 12-15-2003 08:44 AM > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 11:22 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration