Visit Jeremy's Blog.
Go Back > Forums > Linux Forums > Linux - Software
User Name
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.


  Search this Thread
Old 09-22-2008, 03:52 PM   #1
Registered: Dec 2004
Location: Raleigh, NC
Distribution: CentOS 2.6.18-53.1.4.el5
Posts: 770

Rep: Reputation: 44
error joining windows 2003 domain

I have a server that I was able to join a domain, but after a reboot I am having problems authenticating mail. Im not really sure where the problem is but here are some errors and some results of commands:

cat /var/log/secure

Sep 22 16:13:44 hostname authdaemond: pam_winbind(imap:auth): request failed: No such user, PAM error was User not known to the underlying authentication module (10), NT error was NT_STATUS_NO_SUCH_USER
Sep 22 16:13:51 hostname authdaemond: pam_unix(imap:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= user=myuser

*hostname and *myuser are valid names, changed for security reasons

wbinfo -u

wbinfo -g also comes back with correct group names

The box is on the domain. But it's not authenticating correctly. I remember when I originally put it on the domain I had to make some changes to the "net ads join -Umyuser" command to get it to join correctly. I can't remember what I did and I cant find it in my notes

When I try to do a net ads leave -Umyusername
I get this

[2008/09/22 16:46:14, 0] libads/kerberos.c:ads_kinit_password(228)
kerberos_kinit_password hostname$@domain.COM failed: Preauthentication failed
[2008/09/22 16:46:14, 0] libads/kerberos.c:ads_kinit_password(228)
kerberos_kinit_password hostname$@domain.COM failed: Preauthentication failed

maillog reference to me logging into my mail
Sep 22 16:03:07 mailserver imapd-ssl: LOGIN FAILED, user=myuser, ip=[::ffff:myip]

using my username and PW and myusername does have admin rights on the DC.

net ads join -Umyuser
myuser's password:
[2008/09/22 16:50:54, 0] libads/kerberos.c:ads_kinit_password(228)
kerberos_kinit_password hostname$@DOMAIN.COM failed: Preauthentication failed
Failed to join domain: Logon failure

Ticket cache: FILE:/tmp/krb5cc_0
Default principal: myuser@DOMAIN.COM

Valid starting Expires Service principal
09/22/08 16:38:04 09/23/08 02:37:57 krbtgt/DOMAIN.COM@DOMAIN.COM
renew until 09/23/08 16:38:04

Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached

Why would it break on a server reboot?

What else can I post?

uname -r


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Joining fedora 9 to windows 2003 ADS domain sukalyan_g Linux - Networking 1 07-13-2008 12:26 PM
Joining a linux machine to a windows domain having a wndows 2003 as domain contoller sukalyan_g SUSE / openSUSE 1 03-28-2008 01:31 AM
joining a windows 2003 domain with suse10.2 obscure-shadow Linux - Server 3 05-09-2007 01:37 AM
Joining a Windows 2003 domain from Fedora matt_zetterholm Linux - Newbie 1 12-22-2005 02:26 PM
Joining Linux Distro's to Windows 2003 Domain klawh Linux - Networking 1 12-10-2003 05:46 PM > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 04:56 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration