Share your knowledge at the LQ Wiki.
Go Back > Forums > Linux Forums > Linux - Distributions > Red Hat
User Name
Red Hat This forum is for the discussion of Red Hat Linux.


  Search this Thread
Old 11-01-2004, 10:45 AM   #1
Senior Member
Registered: Apr 2004
Location: Surprise, AZ
Distribution: Debian | CentOS | Arch
Posts: 1,103

Rep: Reputation: 45
Can linux join (as a client) Windows 2000 domain??

I have been google-ing all over the place... and as far as I can tell... the answer is: no, no it can't.... It seems that it will tease you with things that appear as though it should... but in the end... it just wont...

If anyone knows how to do this I would be forever in debted...

Here is my exact situation...

I work in a mid-size network environment (structly windows right now)

We have several Windows 2000 Server domain controllers with Active Directory...

I am trying to get us to slowly start moving the way of Linux... first on desktops though.. and also as our intranet server...

I am running a notebook with RHEL 4 beta on it... (I was also runnign RHEL 3 WS before this) And I cannot for the life of me.. figure how to join Active Directory.... If ANYONE can help PLEASE DO!
Old 11-01-2004, 08:38 PM   #2
Registered: Sep 2004
Location: Raleigh NC
Distribution: Fedora / RHEL
Posts: 171

Rep: Reputation: 30
This is specific to Samba 3, earlier versions may operate differently.

After configuring your /etc/samba/smb.conf and your /etc/krb5.conf files, enter the following command:

net ads join –UAdministrator

You will then be prompted to enter the domain administrator’s password. The domain name used will be what you set the workgroup = field to in your smb.conf. To verify that you have joined successfully, look for the server in your directory controller’s server manager.
Old 11-01-2004, 08:40 PM   #3
Registered: Sep 2004
Location: Raleigh NC
Distribution: Fedora / RHEL
Posts: 171

Rep: Reputation: 30
Other stuff to look out for...this has been a nagging problem in RHEL 3 but it might be fixed in 4:

If your Windows 2000/2003 Active Directory (AD) Domain Controller (DC) is functioning in Mixed mode, it is recommend that you join your Samba server to the domain in RPC mode. The RPC (Remote Procedure Call) mode of domain membership is the "NT4" style of domain membership and works quite well with Windows 2000/2003 DC's, so long as the DC is still operating in Mixed Mode (which is the default mode).

ADS (Active Directory Services) mode is the other option for joining a Samba server to a 2000/2003 domain.

At this time, avoid joining a Samba server to a Windows 2000 or 2003 Domain Controller in ADS mode. There are known compatibility problems with Microsoft's proprietary implementation of Kerberos and LDAP in AD and the versions of the MIT Kerberos packages available for Red Hat Enterprise Linux 3 systems.

While you may be successful in initially joining a domain in "ADS" mode, it is a known issue that eventually the domain controller will start issuing Kerberos tickets that the Samba server cannot understand. This has been known to take as long as three months to occur, but once it starts happening, the Samba server will not be able to function properly on the domain. At this point, the only options available for re-joining the Samba server to the domain are:

* To remove the Samba server from the domain (on the Windows domain controller), reconfigure the Samba server to be an RPC-type member of the domain, and rejoin the domain in RPC mode.

Note: A 2000/2003 DC must be functioning in Mixed Mode to be able to join a Samba server to the domain in RPC mode


* If the DC has already been changed to operate in Native mode, unfortunately, the only option is to rebuild the DC.

Since Mixed Mode is the default mode of operation, the system administrator would have to choose to set a 2000/2003 DC into Native mode for it to be functioning this way. Once a DC has been set to Native mode, the only way to get it back to Mixed mode is to rebuild the domain controller.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Join linux to Windows domain CalibraTeam Slackware 8 10-20-2005 03:35 AM
windows 2003 can't join linux domain niggersak Linux - Networking 1 08-10-2005 07:25 AM
How join a Linux PC to a domain in Windows spurs_adr Linux - Networking 5 07-18-2005 05:11 PM
Linux box not able to join win 2000 domain jomy Linux - Networking 0 12-13-2004 03:59 AM
Cannot join a Linux computer to a Windows 2000 server domain Linh Linux - Networking 10 08-13-2003 12:10 PM > Forums > Linux Forums > Linux - Distributions > Red Hat

All times are GMT -5. The time now is 05:55 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration