-   Linux - Wireless Networking (
-   -   Am having problems creating a machine account from XP WS to Samba 3 Domain Controller (

robertomason 02-14-2004 11:07 AM

Am having problems creating a machine account from XP WS to Samba 3 Domain Controller
I'm about to give up. It's been months now that I've been playing around with Samba 3.0. I've downloaded their documentation. Tried to follow it as much as possible, but I'm getting no where with adding machine accounts to a Domain, real fast.

I've asked this question a couple of times at the Samba Mailing list, but have gotten now reply. So here goes. I'm a home user, with some Knowledge of NT 4 Domain Controllers. Years ago a set one up for a company I worked for. So when I got exposed to Linux, I naturally gravitated to Samba 2.2xx.

Took me a while to figure it out, but I managed to setup a simple domain at home, with a few shares. Was able to add both Win XP and Linux machines to my domain.

Now they came out with Samba 3. I did an upgrade several times to version 3. All machines that were already members of the domain I have no problem with. But when I try to add new machines (actually 1 new machine) if I try to use root in adding the domain, I get user/password not found (something or other like that).

If I try to use my log in name Roberto (Domain Admin) set up according to the Doc, I get access denied. Considering myself still a newbie, I asking you guys for help. HELP!!!!

jjohnston62 02-15-2004 09:31 AM

Okay, so you're asking for help, but providing very little information about your environment., i.e., smb.conf, what password backend you're using, etc.

run "net groupmap list" and, if you don't have the output as shown in the TOSHARG book, you need to investigate that area of samba.

robertomason 02-15-2004 04:00 PM

Sorry about that, the back end I use is tdbsam. Here is a copy of my smb.conf

# Samba config file created using SWAT
# from (
# Date: 2004/02/14 13:40:54

# Global parameters
server string = Samba Server %v (Wish me luck)
passdb backend = tdbsam
passwd program = /usr/bin/passwd %u
passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *passwd:*all*authentication*tokens*updated*successfully*
username map = /etc/samba/smbusers
unix password sync = Yes
log file = /var/log/samba/log.%m
max log size = 50
name resolve order = wins lmhosts bcast
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
logon script = %U.bat
domain logons = Yes
os level = 62
preferred master = Yes
domain master = Yes
dns proxy = No
wins support = Yes
ldap ssl = no

comment = Home Directories
read only = No
browseable = No

path = /home/netlogon
guest ok = Yes
share modes = No

comment = All Printers
path = /var/spool/samba
printable = Yes
browseable = No

path = /home/storage/work
write list = @storage
read only = No

path = /home/storage/Movie
write list = @storage
read only = No

path = /home/storage/anonymous
valid users = @storage
write list = @storage
read only = No

path = /var/log

path = /home/storage/Installations
valid users = @installation, @storage
read list = @anonymous
write list = @storage
read only = No
create mask = 0774
directory mask = 0774

path = /home/storage/Documents
force user = roberto
force group = documentation
read only = No
create mask = 0664
directory mask = 0664
inherit permissions = Yes

path = /home/storage
valid users = @storage, @installation
read list = @installation
write list = @storage
force user = root
force group = storage
force create mode = 0775
force directory mode = 0775

path = /usr/share/doc

This is what my net groupmap list gives

[root@posta root]# net groupmap list
System Operators (S-1-5-32-549) -> -1
Replicators (S-1-5-32-552) -> -1
Guests (S-1-5-32-546) -> -1
Domain Admins (S-1-5-21-517848066-3869322434-1176822426-512) -> domadmin
Domain Guests (S-1-5-21-517848066-3869322434-1176822426-514) -> -1
Domain Users (S-1-5-21-517848066-3869322434-1176822426-513) -> domusers
Power Users (S-1-5-32-547) -> -1
Print Operators (S-1-5-32-550) -> -1
Administrators (S-1-5-32-544) -> -1
Account Operators (S-1-5-32-548) -> -1
Backup Operators (S-1-5-32-551) -> -1
Users (S-1-5-32-545) -> -1

Vincent_Vega 03-13-2004 04:37 PM

Are you adding a Windows or linux machine? What errors are you seeing? What is the machine's workgroup name and what is the domain name? They shouldn't be the same...

All times are GMT -5. The time now is 04:52 AM.