Re: mit samba(lenny) in die Windows-Domain
Thomas Kosch schrieb:
> Falsche Credentials. Beim Passwort verschrieben? Bitte dreifach
> überprüfen. Ansonsten bitte testparm -s und die global section posten.
>
Ich werde dabei nicht nach dem Passwort gefragt, es kommt sofort die
Fehlermeldung "Failed to join domain: failed to lookup DC info for
domain 'OFFICE.MAY.CO.AT' over rpc: Logon failure"
dslin1:~# testparm -s
Load smb config files from /etc/samba/smb.conf
Processing section "[daten]"
Processing section "[test]"
Loaded services file OK.
Server role: ROLE_DOMAIN_MEMBER
[global]
workgroup = OFFICE
realm = OFFICE.MAY.CO.AT
server string = %h server
security = ADS
obey pam restrictions = Yes
passdb backend = tdbsam
pam password change = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\s*\spassword:* %n\n
*Retype\snew\s*\spassword:
* %n\n *password\supdated\ssuccessfully* .
unix password sync = Yes
syslog = 0
log file = /var/log/samba/log.%m
max log size = 1000
dns proxy = No
panic action = /usr/share/samba/panic-action %d
idmap uid = 10000-20000
idmap gid = 10000-20000
template shell = /bin/bash
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
winbind refresh tickets = Yes
winbind offline logon = Yes
valid users = %S
create mask = 0700
directory mask = 0700
>
> Der Kerberos Teil funktioniert schon mal. Trotzdem mal bitte die
> krb5.conf
>
dslin1:~# cat /etc/krb5.conf
[libdefaults]
default_realm = OFFICE.MAY.CO.AT
kdc_timesync = 1
ccache_type = 4
forwardable = true
proxiable = true
[realms]
UPL.NOVIRDATA.COM = {
kdc = srv01.office.may.co.at
admin_server = srv01.office.may.co.at
}
[domain_realm]
.office.may.co.at = OFFICE.MAY.CO.AT
office.may.co.at = OFFICE.MAY.CO.AT
Reply to: