Re: [Samba] 'net rpc join -U Administrator' on Samba + LDAP PDC
Hey again Craig, Considering your last comment about the problem over Pdbedit -Lv 'testuser,' I decided to start fresh. I paid close attention to what you have pointed out on my new installation.It took me only 1:30 to get to where I am at right now. I don't recieve the object class error anymore. However, I am where I startedjoining the domain. I will go over the samba (10) and ldap (256) log files and let you know the results tommorow afternoon. 'pdbedit -Lv 'testuser1' is working now. so the problem can not be the luck of samba's ability to get user information from ldap backend (highly unlikely). Oh well, I guess I have a lot of reading to do before tommorow afternoon :) Talk to you later, Ambex Ps: Even though I know it is not very helpful, here is the error message :) The following error occured attempting to join the domain "AGUILAS": the user name could not be found. __ Do you Yahoo!? Yahoo! Mail Address AutoComplete - You start. We finish. http://promotions.yahoo.com/new_mail -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 'net rpc join -U Administrator' on Samba + LDAP PDC
On Sun, 2004-07-11 at 10:55, abebe lsslp wrote: > You know, You have given me detailed steps for me to > take. I really appreciate that! It is still not > working though. Do you have any other ideas? See below > for more information :). If anybody else have any idea > how to fix this, pealse give it a try. > > I removed all the log files from '/var/log/samba/' > directory and tried to join Win XP pro (xppro) to the > domain. Two log files were created for the xp machine: > 192.168.1.18.log and xppro.log. xppro.log is empty, > but 192.168.1.18.log contains the following > > [2004/07/11 00:34:26, 1] > smbd/process.c:process_smb(1085) > [2004/07/11 00:34:26, 0] > lib/util_sock.c:get_peer_addr(1000) > getpeername failed. Error was Transport endpoint is > not connected > Connection denied from 0.0.0.0 > [2004/07/11 00:34:26, 0] > lib/util_sock.c:write_socket_data(430) > write_socket_data: write failure. Error = Connection > reset by peer > [2004/07/11 00:34:26, 0] > lib/util_sock.c:write_socket(455) > write_socket: Error writing 5 bytes to socket 22: > ERRNO = Connection reset by peer > [2004/07/11 00:34:26, 0] lib/util_sock.c:send_smb(647) > Error writing 5 bytes to client. -1. (Connection > reset by peer) I have seen this error and this seems to be a general networking error - in my case, it was a bad wire from one switch to another switch and the problem would temporarily disappear when I reset the switches (hubs) but it would come back. Just to make certain do these things... 1 - power cycle all the involved hubs/switches 2 - check all the link lights 3 - turn up log levels on both openldap and samba temporarily to log everything (i.e. level 256 on openldap and 10 on samba) 4 - make sure that firewall on both Linux machine and Windows machine are off 5 - make sure that you haven't attached to any resource on the PDC from the winXP Pro machine since the last restart of the WinXP Pro computer (i.e. to be certain, restart the machine and then immediately try to join) Craig -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 'net rpc join -U Administrator' on Samba + LDAP PDC
--- Craig White <[EMAIL PROTECTED]> wrote: > On Sat, 2004-07-10 at 22:54, abebe lsslp wrote: > > I am having trouble joining a Samba + LDAP PDC. > Here > > are the steps I took and the results I have > received. > > > > General Information: > > . Fedora Core 1 machine > > . Samba 3.0.0 > > . Openldap 2.1.22-8 > > . Netbios Name: EAGLEX > > . Domain name: AGUILAS > > > > Symptoms: > > Step 1: > > [EMAIL PROTECTED] root]# net rpc join > > -UAdministrator%xx > > The username or password was not correct. > > > > '/var/log/messages': > > Jul 10 12:30:47 eaglex smbd[9253]: [2004/07/10 > > 12:30:47, 0] > rpc_server/srv_netlog_nt.c:get_md4pw(201) > > Jul 10 12:30:47 eaglex smbd[9253]: get_md4pw: > > Workstation EAGLEX$: no account in domain Hey Craig, You know, You have given me detailed steps for me to take. I really appreciate that! It is still not working though. Do you have any other ideas? See below for more information :). If anybody else have any idea how to fix this, pealse give it a try. > It's so much easier to have LDAP working and > understood prior to > integration with samba. > > #1 what does... > ldapsearch -x -h localhost -D 'binddn' -W > '(uid=Administrator)' > give you (replace binddn with your binddn) [EMAIL PROTECTED] etc]# ldapsearch -x -h localhost -D "cn=Manager,dc=wbcoll,dc=edu" -W '(uid=Administrator)' # Administrator, Users, wbcoll.edu dn: uid=Administrator,ou=Users,dc=wbcoll,dc=edu cn: Administrator sn: Administrator objectClass: inetOrgPerson objectClass: sambaSAMAccount objectClass: posixAccount objectClass: shadowAccount gidNumber: 512 uid: Administrator uidNumber: 0 homeDirectory: /home/ sambaLogonTime: 0 sambaLogoffTime: 2147483647 sambaKickoffTime: 2147483647 sambaPwdCanChange: 1089477540 sambaHomePath: \\EAGLEX\home\%U sambaHomeDrive: H: sambaPrimaryGroupSID: S-1-5-21-952094410-1508517273-1204454084-512 sambaSID: S-1-5-21-952094410-1508517273-1204454084-2996 loginShell: /bin/false gecos: Netbios Domain Administrator sambaPwdMustChange: 2147483647 sambaAcctFlags: [U ] sambaPwdLastSet: 1089477540 sambaLMPassword: C7D36D999A7B2082AAD3B435B51404EE sambaNTPassword: 2176503CCD06D05BBCE3E934465C555A userPassword:: e1NNRDV9SnpzQmYxTHg0Q0ExMlVpSExnamp0ODRhRTRNPQ== > > #2 if uidNumber of Administrator is not 0, you will > probably have to use > root to add new users/machines (make sure that root > has SambaSamAccount > in this case) I guess #1 takes care of this step. > > #3 Much easier to join domain directly from an > NT/Win2K/XP Professional > machine. (see note 2) I removed all the log files from '/var/log/samba/' directory and tried to join Win XP pro (xppro) to the domain. Two log files were created for the xp machine: 192.168.1.18.log and xppro.log. xppro.log is empty, but 192.168.1.18.log contains the following [2004/07/11 00:34:26, 1] smbd/process.c:process_smb(1085) [2004/07/11 00:34:26, 0] lib/util_sock.c:get_peer_addr(1000) getpeername failed. Error was Transport endpoint is not connected Connection denied from 0.0.0.0 [2004/07/11 00:34:26, 0] lib/util_sock.c:write_socket_data(430) write_socket_data: write failure. Error = Connection reset by peer [2004/07/11 00:34:26, 0] lib/util_sock.c:write_socket(455) write_socket: Error writing 5 bytes to socket 22: ERRNO = Connection reset by peer [2004/07/11 00:34:26, 0] lib/util_sock.c:send_smb(647) Error writing 5 bytes to client. -1. (Connection reset by peer) > > #4 upgrade samba - samba/fedora core 1 is up to > 3.0.4 I upgraded samba 3.0.0 to samba 3.0.5 > > #5 if EAGLEX is the PDC, it doesn't need to join > domain Ok,thanks :) Ambex __ Do you Yahoo!? Yahoo! Mail - 50x more storage than other providers! http://promotions.yahoo.com/new_mail -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 'net rpc join -U Administrator' on Samba + LDAP PDC
On Sat, 2004-07-10 at 22:54, abebe lsslp wrote: > I am having trouble joining a Samba + LDAP PDC. Here > are the steps I took and the results I have received. > > General Information: > . Fedora Core 1 machine > . Samba 3.0.0 > . Openldap 2.1.22-8 > . Netbios Name: EAGLEX > . Domain name: AGUILAS > > Symptoms: > Step 1: > [EMAIL PROTECTED] root]# net rpc join > -UAdministrator%xx > The username or password was not correct. > > '/var/log/messages': > Jul 10 12:30:47 eaglex smbd[9253]: [2004/07/10 > 12:30:47, 0] rpc_server/srv_netlog_nt.c:get_md4pw(201) > Jul 10 12:30:47 eaglex smbd[9253]: get_md4pw: > Workstation EAGLEX$: no account in domain > > Step 2: > [EMAIL PROTECTED] root]#smbldap-useradd -w EAGLEX$ > [EMAIL PROTECTED] root]# > > Step 3: repeated step 1. Same problem > > Step 4: > [EMAIL PROTECTED] root]# net rpc join -U root%xx > Create of workstation account failed > Unable to join domain AGUILAS > > Step 5: > [EMAIL PROTECTED] root]# pdbedit -L -v Administrator > Unix username:Administrator > NT username: Administrator > Account Flags:[U ] > User SID: > S-1-5-21-952094410-1508517273-1204454084-2996 > Primary Group SID: > S-1-5-21-952094410-1508517273-1204454084-512 > Full Name:Administrator > Home Directory: \\EAGLEX\home\%U > HomeDir Drive:H: > Logon Script: logon.bat > Profile Path: > Domain: AGUILAS > Account desc: > Workstations: > Munged dial: > Logon time: 0 > Logoff time: Mon, 18 Jan 2038 21:14:07 GMT > Kickoff time: Mon, 18 Jan 2038 21:14:07 GMT > Password last set:Sat, 10 Jul 2004 11:39:00 GMT > Password can change: Sat, 10 Jul 2004 11:39:00 GMT > Password must change: Mon, 18 Jan 2038 21:14:07 GMT > > I have also tried everything on Google group ([samba] > "The username or password was not correct"). Nobody > really offered any real solution. I am sure for those > of you who have encountered this problem before > already know the symptoms and hopefully the solutions > as well. I am begging for help. I have been working on > this thing for the last 3 weeks now.:( It's so much easier to have LDAP working and understood prior to integration with samba. #1 what does... ldapsearch -x -h localhost -D 'binddn' -W '(uid=Administrator)' give you (replace binddn with your binddn) #2 if uidNumber of Administrator is not 0, you will probably have to use root to add new users/machines (make sure that root has SambaSamAccount in this case) #3 Much easier to join domain directly from an NT/Win2K/XP Professional machine. (see note 2) #4 upgrade samba - samba/fedora core 1 is up to 3.0.4 #5 if EAGLEX is the PDC, it doesn't need to join domain Craig -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] 'net rpc join -U Administrator' on Samba + LDAP PDC
I am having trouble joining a Samba + LDAP PDC. Here are the steps I took and the results I have received. General Information: . Fedora Core 1 machine . Samba 3.0.0 . Openldap 2.1.22-8 . Netbios Name: EAGLEX . Domain name: AGUILAS Symptoms: Step 1: [EMAIL PROTECTED] root]# net rpc join -UAdministrator%xx The username or password was not correct. '/var/log/messages': Jul 10 12:30:47 eaglex smbd[9253]: [2004/07/10 12:30:47, 0] rpc_server/srv_netlog_nt.c:get_md4pw(201) Jul 10 12:30:47 eaglex smbd[9253]: get_md4pw: Workstation EAGLEX$: no account in domain Step 2: [EMAIL PROTECTED] root]#smbldap-useradd -w EAGLEX$ [EMAIL PROTECTED] root]# Step 3: repeated step 1. Same problem Step 4: [EMAIL PROTECTED] root]# net rpc join -U root%xx Create of workstation account failed Unable to join domain AGUILAS Step 5: [EMAIL PROTECTED] root]# pdbedit -L -v Administrator Unix username:Administrator NT username: Administrator Account Flags:[U ] User SID: S-1-5-21-952094410-1508517273-1204454084-2996 Primary Group SID: S-1-5-21-952094410-1508517273-1204454084-512 Full Name:Administrator Home Directory: \\EAGLEX\home\%U HomeDir Drive:H: Logon Script: logon.bat Profile Path: Domain: AGUILAS Account desc: Workstations: Munged dial: Logon time: 0 Logoff time: Mon, 18 Jan 2038 21:14:07 GMT Kickoff time: Mon, 18 Jan 2038 21:14:07 GMT Password last set:Sat, 10 Jul 2004 11:39:00 GMT Password can change: Sat, 10 Jul 2004 11:39:00 GMT Password must change: Mon, 18 Jan 2038 21:14:07 GMT I have also tried everything on Google group ([samba] "The username or password was not correct"). Nobody really offered any real solution. I am sure for those of you who have encountered this problem before already know the symptoms and hopefully the solutions as well. I am begging for help. I have been working on this thing for the last 3 weeks now.:( Thanks Ambex __ Do you Yahoo!? Yahoo! Mail - 50x more storage than other providers! http://promotions.yahoo.com/new_mail -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba