samba ads integration krb problem
 

trying to integrate samba 3.0.2a on solaris 8 into AD.
basically I'd like a samba share that users can access using their AD credentials.

I've managed to successfully set this up back at the office, but on this particular install I'm having nothing but trouble. About the only difference between the two is the fact I had to install openldap here as the solaris install didn't have ldaplib by default which the install at the office did.

anyway anyone got any ideas on this:-

brief outline...
installed samba 3.0.2a, krb, and openldap
configured pam, nsswitch.conf, smb.conf, krb5.conf, services.
created krb database with kdb5_util create -r REALM command as per install guide
created krb principle with kadmin.local commands as per install guide

symptoms:-
every time I run "net ads join -U administrator" or even a kinit <username> I get a "client not found in kerberos database" error.
I can't see where I'm going wrong, so any thoughts or pointers would be appreciated!

As I said, I've had it working before on another site, and didn't see any of these errors, and googling has proved fruitless due to the nature of the error message being somewhat "catch-all".

Thanks in advance :-)

Steve

interestingly...

at the working install a wbinfo -u brings back a list of users but without the DOMAIN+ bit.
at the install I'm having trouble with wbinfo -u brings back users in the form DOMAIN+username as would normally be expected.

Can this behaviour be attributed to openldap ldaplib vs solaris ldaplib ?