|
Home > Archive > Samba > June 2004 > [Samba] samba 3.0.4 : cannot join domain with w2k clients.
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
[Samba] samba 3.0.4 : cannot join domain with w2k clients.
|
|
| Peter Ulrich Kruppa 2004-06-26, 12:02 pm |
| On Fri, 25 Jun 2004, HM wrote:
> Hello all.
>
> I'm trying since a few jours to get my w2k clients join my domain, managed by
> my samba 3.0.4 PDC, without success. I can browse the server, share files
> with it with my station, but i can't join the domain. When i try to, i get
> the following message (sorry for the poor translation) :
>
> The following error occurred while trying to join domain 'SLS' :
> Failed to open a session : username unknown or invalid password.
And another useful (?) hint:
1) Completely delete the samba machine account:
# smbpasswd -x machine$
2) Do check ../private/smbpasswd if it is really gone and
nothing like machine without $ is still in there.
3) Setup the account anew
# smbpasswd -a -m machine$
Good Luck,
Uli.
+-------------------------+
| Peter Ulrich Kruppa |
| - Wuppertal - |
| Germany |
+-------------------------+
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
| |
|
| Hello all.
I'm trying since a few jours to get my w2k clients join my domain,
managed by my samba 3.0.4 PDC, without success. I can browse the server,
share files with it with my station, but i can't join the domain. When i
try to, i get the following message (sorry for the poor translation) :
The following error occurred while trying to join domain 'SLS' :
Failed to open a session : username unknown or invalid password.
I the logs, i get the following :
[2004/06/25 17:57:42, 0] lib/util_sock.c:get_peer_addr(978)
getpeername failed. Error was Transport endpoint is not connected
[2004/06/25 17:57:42, 3] smbd/oplock.c:init_oplocks(1226)
open_oplock_ipc: opening loopback UDP socket.
[2004/06/25 17:57:42, 3] smbd/oplock_linux.c:linux_init_kernel_oplocks(303)
Linux kernel oplocks enabled
[2004/06/25 17:57:42, 3] smbd/oplock.c:init_oplocks(1257)
open_oplock ipc: pid = 3791, global_oplock_port = 1065
[2004/06/25 17:57:42, 3] smbd/process.c:process_smb(890)
Transaction 0 of length 72
[2004/06/25 17:57:42, 2] smbd/reply.c:reply_special(208)
netbios connect: name1=SERVEUR name2=SLS-PHY-14
[2004/06/25 17:57:42, 2] smbd/reply.c:reply_special(215)
netbios connect: local=serveur remote=sls-phy-14, name type = 0
[2004/06/25 17:57:42, 0] lib/util_sock.c:get_peer_addr(978)
getpeername failed. Error was Transport endpoint is not connected
[2004/06/25 17:57:42, 0] lib/util_sock.c:write_socket_data(413)
write_socket_data: write failure. Error = Connection reset by peer
[2004/06/25 17:57:42, 0] lib/util_sock.c:write_socket(438)
write_socket: Error writing 4 bytes to socket 5: ERRNO = Connection
reset by peer
[2004/06/25 17:57:42, 0] lib/util_sock.c:send_smb(630)
Error writing 4 bytes to client. -1. (Connection reset by peer)
[2004/06/25 17:57:42, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/06/25 17:57:42, 2] smbd/server.c:exit_server(568)
Closing connections
[2004/06/25 17:57:42, 3] smbd/connection.c:yield_connection(69)
Yielding connection to
[2004/06/25 17:57:42, 3] smbd/server.c:exit_server(611)
Server exit (process_smb: send_smb failed.)
Of course, the user root is correctly mapped in the username map, and
the password is correctly set.
Any idea ?
Thanks !
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
| |
|
| Sorry : i forgot my smb.conf  (((
Here it is :
[global]
netbios name = serveur
workgroup = sls
passdb backend = smbpasswd:/etc/samba/private/smbpasswd
os level = 255
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
security = user
preferred master = yes
domain logons = yes
domain master = yes
local master = yes
logon path = \\%L\%U\.profile
logon home = \\%L\%U
logon script = %G.cmd
logon drive = u:
encrypt passwords = yes
username map = /etc/samba/smbusers
add machine script = /usr/sbin/useradd -d /dev/null -s
/bin/false -c "compte machine - client w2k" -g machines %u
printing = cups
load printers = yes
printcap name = cups
#wins support = yes
#name resolve order = host bcast
log level = 3
#guest account = nobody
[netlogon]
path = /etc/samba/netlogon
read only = yes
write list = @wheel
guest ok = no
browseable = no
[profiles]
path = \\%L\%U/.profile
create mode = 0600
directory mode = 0700
read only = no
profile acls = no
browseable = no
HM a écrit :
> Hello all.
>
> I'm trying since a few jours to get my w2k clients join my domain,
> managed by my samba 3.0.4 PDC, without success. I can browse the
> server, share files with it with my station, but i can't join the
> domain. When i try to, i get the following message (sorry for the poor
> translation) :
>
> The following error occurred while trying to join domain 'SLS' :
> Failed to open a session : username unknown or invalid password.
>
> I the logs, i get the following :
>
> [2004/06/25 17:57:42, 0] lib/util_sock.c:get_peer_addr(978)
> getpeername failed. Error was Transport endpoint is not connected
> [2004/06/25 17:57:42, 3] smbd/oplock.c:init_oplocks(1226)
> open_oplock_ipc: opening loopback UDP socket.
> [2004/06/25 17:57:42, 3]
> smbd/oplock_linux.c:linux_init_kernel_oplocks(303)
> Linux kernel oplocks enabled
> [2004/06/25 17:57:42, 3] smbd/oplock.c:init_oplocks(1257)
> open_oplock ipc: pid = 3791, global_oplock_port = 1065
> [2004/06/25 17:57:42, 3] smbd/process.c:process_smb(890)
> Transaction 0 of length 72
> [2004/06/25 17:57:42, 2] smbd/reply.c:reply_special(208)
> netbios connect: name1=SERVEUR name2=SLS-PHY-14
> [2004/06/25 17:57:42, 2] smbd/reply.c:reply_special(215)
> netbios connect: local=serveur remote=sls-phy-14, name type = 0
> [2004/06/25 17:57:42, 0] lib/util_sock.c:get_peer_addr(978)
> getpeername failed. Error was Transport endpoint is not connected
> [2004/06/25 17:57:42, 0] lib/util_sock.c:write_socket_data(413)
> write_socket_data: write failure. Error = Connection reset by peer
> [2004/06/25 17:57:42, 0] lib/util_sock.c:write_socket(438)
> write_socket: Error writing 4 bytes to socket 5: ERRNO = Connection
> reset by peer
> [2004/06/25 17:57:42, 0] lib/util_sock.c:send_smb(630)
> Error writing 4 bytes to client. -1. (Connection reset by peer)
> [2004/06/25 17:57:42, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2004/06/25 17:57:42, 2] smbd/server.c:exit_server(568)
> Closing connections
> [2004/06/25 17:57:42, 3] smbd/connection.c:yield_connection(69)
> Yielding connection to
> [2004/06/25 17:57:42, 3] smbd/server.c:exit_server(611)
> Server exit (process_smb: send_smb failed.)
>
> Of course, the user root is correctly mapped in the username map, and
> the password is correctly set.
>
> Any idea ?
>
> Thanks !
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
| |
| Tomás Polák 2004-06-26, 12:31 pm |
| Hi,
I compared your smb.conf with mine.
I am running Samba 3 PDC with W2K clients very well.
My Samba version is 3.0.2a-1 (using Debian Sarge distribution)
After try to join domain, are there created new user and/or machine accounts
in /etc/smbpasswd?
Do you already have appropriate user account in /etc/passwd ?
When I am joining new computer to domain, I first creating user account on
Linux on both
/etc/passwd and /etc/samba/smbpasswd places (from console). Next log as
Administrator to W2K and join
domain with Samba "root" username and root's password from
/etc/samba/passwd. This
works well for me.
>From my remote view is seems, that you may try to add "add machine script"
directive
and check writability of your Samba system shares (netlogon, homes).
I this will not be helpful, do not hesitate to contanct me to send you my
whole /etc/smb.conf
And I am using WINS servers in my local network, but PDC was working for me
before
I have them, so they are not mandatory.
TP
So there are differences (regadless of importancy):
[global]
panic action = /usr/share/samba/panic-action %d
unix charset = iso8859-2
dos charset = CP852
netbios name = cartman
passdb backend = smbpasswd guest
not using logon script directive
logon drive = J: (capital letter)
time server = yes
remote announce = wins2.jaga.sk
remote browse sync = wins2.jaga.sk
add user script = I am using -g 50 instead of group name
add machine script = usr/sbin/useradd - /dev/null -s /bin/false %m\$
not using username map directive
log file = /var/log/samba/log.%m
syslog = 0
obey pam restrictions = yes
printer admin = I have there comma separated list of priter admin users
wins support = yes
unix password sync = yes
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\sUNIX\spassword:* %n\n
*Retype\snew\sUNIX\spassword:* %n\n *success*
passwd chat debug = true
min password lenght = 0
[netlogon]
path=/usr/local/samba/netlogon
writable = no
share mnodes = no
guest ok = yes
[profiles]
path=/home/samba-ntprof
writable = yes
create mask = 0700
directory mask = 0700
[homes]
comment = Home Directories
browseable = no
writable = yes
guest ok = no
create mask = 0775
directory mask = 0775
force group = staff
#this hide marks UNIX dot files with DOS hidden flag
hide dot files = yes
#this veto hiddes UNIX dot files, but leaves . as current directory
veto files = /.?*/
map archive = no
recycle:keeptree = true
recycle:touch = true
recycle:versions = true
recycle:exclude = *.tmp *.temp *.ldb ~$*
vfs object = recycle
--
Tato sprava bola prehladana na vyskyt virusov a nebezpecneho obsahu antivirovym systemom na serveri spolocnosti Jaga Group s.r.o. a zda sa byt cista. Info: postmaster@jaga.sk
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
| |
| Jonathan Johnson 2004-06-26, 12:31 pm |
| On Fri, 25 Jun 2004, HM wrote:
> Hello all.
>
> I'm trying since a few jours to get my w2k clients join my domain,
> managed by my samba 3.0.4 PDC, without success. I can browse the server,
> share files with it with my station, but i can't join the domain. When i
> try to, i get the following message (sorry for the poor translation) :
>
> The following error occurred while trying to join domain 'SLS' :
> Failed to open a session : username unknown or invalid password.
>
Just a hunch: from a command line on the w2k box, issue
net use * /delete
and try joining again.
-Jon
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
| |
|
| I'm back ;-)
Thanks a lot to all of you who take some time to help me. I finally
solved the problem : the add machine script option in smb.conf seems to
produce invalid machine accounts (?!).
workaround : disable this option in the smb.conf file and manually
create both system account AND smbpasswd entry.
Hope this will help.
HM a écrit :
> Hello all.
>
> I'm trying since a few jours to get my w2k clients join my domain,
> managed by my samba 3.0.4 PDC, without success. I can browse the
> server, share files with it with my station, but i can't join the
> domain. When i try to, i get the following message (sorry for the poor
> translation) :
>
> The following error occurred while trying to join domain 'SLS' :
> Failed to open a session : username unknown or invalid password.
>
> I the logs, i get the following :
>
> [2004/06/25 17:57:42, 0] lib/util_sock.c:get_peer_addr(978)
> getpeername failed. Error was Transport endpoint is not connected
> [2004/06/25 17:57:42, 3] smbd/oplock.c:init_oplocks(1226)
> open_oplock_ipc: opening loopback UDP socket.
> [2004/06/25 17:57:42, 3]
> smbd/oplock_linux.c:linux_init_kernel_oplocks(303)
> Linux kernel oplocks enabled
> [2004/06/25 17:57:42, 3] smbd/oplock.c:init_oplocks(1257)
> open_oplock ipc: pid = 3791, global_oplock_port = 1065
> [2004/06/25 17:57:42, 3] smbd/process.c:process_smb(890)
> Transaction 0 of length 72
> [2004/06/25 17:57:42, 2] smbd/reply.c:reply_special(208)
> netbios connect: name1=SERVEUR name2=SLS-PHY-14
> [2004/06/25 17:57:42, 2] smbd/reply.c:reply_special(215)
> netbios connect: local=serveur remote=sls-phy-14, name type = 0
> [2004/06/25 17:57:42, 0] lib/util_sock.c:get_peer_addr(978)
> getpeername failed. Error was Transport endpoint is not connected
> [2004/06/25 17:57:42, 0] lib/util_sock.c:write_socket_data(413)
> write_socket_data: write failure. Error = Connection reset by peer
> [2004/06/25 17:57:42, 0] lib/util_sock.c:write_socket(438)
> write_socket: Error writing 4 bytes to socket 5: ERRNO = Connection
> reset by peer
> [2004/06/25 17:57:42, 0] lib/util_sock.c:send_smb(630)
> Error writing 4 bytes to client. -1. (Connection reset by peer)
> [2004/06/25 17:57:42, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2004/06/25 17:57:42, 2] smbd/server.c:exit_server(568)
> Closing connections
> [2004/06/25 17:57:42, 3] smbd/connection.c:yield_connection(69)
> Yielding connection to
> [2004/06/25 17:57:42, 3] smbd/server.c:exit_server(611)
> Server exit (process_smb: send_smb failed.)
>
> Of course, the user root is correctly mapped in the username map, and
> the password is correctly set.
>
> Any idea ?
>
> Thanks !
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
| |
| Tomás Polák 2004-06-29, 3:03 am |
| Some Unix systems by default dont allow $ character as valid part of user
name
and these special cases must be typically handled by forcing via special
switch
in passwd program or somewhere in /etc/... configurations files.
But this is system depended.
TP
----- Original Message -----
From: "HM" <mercier@msi.unilim.fr>
Cc: <samba@lists.samba.org>
Sent: Monday, June 28, 2004 5:34 PM
Subject: Re: [Samba] samba 3.0.4 : cannot join domain with w2k clients.
> I'm back ;-)
>
> Thanks a lot to all of you who take some time to help me. I finally
> solved the problem : the add machine script option in smb.conf seems to
> produce invalid machine accounts (?!).
>
> workaround : disable this option in the smb.conf file and manually
> create both system account AND smbpasswd entry.
>
> Hope this will help.
>
>
>
> HM a écrit :
>
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: http://lists.samba.org/mailman/listinfo/samba
>
> --
> Tato sprava bola prehladana na vyskyt virusov a nebezpecneho obsahu
antivirovym systemom na serveri spolocnosti Jaga Group s.r.o. a zda sa byt
cista. Info: postmaster@jaga.sk
>
>
>
--
Tato sprava bola prehladana na vyskyt virusov a nebezpecneho obsahu antivirovym systemom na serveri spolocnosti Jaga Group s.r.o. a zda sa byt cista. Info: postmaster@jaga.sk
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
|
|
|
|
|