Re: [Samba] XP join and logon
Well, for joining a win2k/xp mashine to a samba domain the user MUST be "root", because just root can add the new user "$" to /etc/passwd. the smb- password for root is what ever you like! On 11 Dec 2003 at 8:46, I Wayan Widi Pradnyana wrote: > > > I'm still confused with "The parameter is incorrect", when joining the XPs > to Samba server. > I guess that was some problem at channging computer name at Linux DNS, or > at the XP. Where was the log files ? > > Widi Pradnyana > > > Thats right, change the domain field to be the name of your domain/server. > > > > the problem then is to add your machine to the samba server it needs to > use a smb account with the correct permissions to do so. > > > > I dont know if an account can be modified to work but root is an account > that will work. The problem is root is not part or smbpasswd or rather > it doesnt have an account with samba. > > > > to add it to samba smbpasswd -a root will do so. then change the > smbpassword for root to whatever password you want. > > > > once you have this done you will then have an account with the correct > permissions to add your computer to the domain. > > > > Ross > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba Andre Klocke Linux Developer Cologne, Germany -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] XP join and logon
I'm still confused with "The parameter is incorrect", when joining the XPs to Samba server. I guess that was some problem at channging computer name at Linux DNS, or at the XP. Where was the log files ? Widi Pradnyana > Thats right, change the domain field to be the name of your domain/server. > > the problem then is to add your machine to the samba server it needs to use a smb account with the correct permissions to do so. > > I dont know if an account can be modified to work but root is an account that will work. The problem is root is not part or smbpasswd or rather it doesnt have an account with samba. > > to add it to samba smbpasswd -a root will do so. then change the smbpassword for root to whatever password you want. > > once you have this done you will then have an account with the correct permissions to add your computer to the domain. > > Ross -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] XP join and logon
Thats right, change the domain field to be the name of your domain/server. the problem then is to add your machine to the samba server it needs to use a smb account with the correct permissions to do so. I dont know if an account can be modified to work but root is an account that will work. The problem is root is not part or smbpasswd or rather it doesnt have an account with samba. to add it to samba smbpasswd -a root will do so. then change the smbpassword for root to whatever password you want. once you have this done you will then have an account with the correct permissions to add your computer to the domain. Ross On Wed, 10 Dec 2003, I Wayan Widi Pradnyana wrote: > After detail readings on Samba Doc, at XP's change domain dialog I should > fill the DOMAIN textfield. After filling and then asked for domain admin > username/pwd, but it results "The parameter is incorrect". > As add info, I used ldap+smb query was : > > kunti:/home/widi# ldapsearch -x 'uid=root' > # extended LDIF > # > # LDAPv3 > # base <> with scope sub > # filter: uid=root > # requesting: ALL > # > > # root, Users, ta.its-sby.edu > dn: uid=root,cn=Users,dc=ta,dc=its-sby,dc=edu > sambaSID: S-0-0-1000 > sambaPrimaryGroupSID: S-0-0-1001 > displayName: root > sambaPwdCanChange: 1071067311 > sambaPwdMustChange: 2147483647 > sambaLMPassword: B705F7DC7EBE22D9093867073ED9B083 > sambaNTPassword: AE89347BB397A8D0B1E27E6EF8582B8F > sambaPwdLastSet: 1071067311 > sambaAcctFlags: [U ] > objectClass: sambaSamAccount > objectClass: account > uid: root > cn: root > > # search result > search: 2 > result: 0 Success > > # numResponses: 2 > # numEntries: 1 > > Are there something wrong? > I've read Samba-doc, to join domain should by user which uid is 0? > but why 'smbpasswd -a root' create entry with 'uid=root'? > > Thanks > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] XP join and logon
After detail readings on Samba Doc, at XP's change domain dialog I should fill the DOMAIN textfield. After filling and then asked for domain admin username/pwd, but it results "The parameter is incorrect". As add info, I used ldap+smb query was : kunti:/home/widi# ldapsearch -x 'uid=root' # extended LDIF # # LDAPv3 # base <> with scope sub # filter: uid=root # requesting: ALL # # root, Users, ta.its-sby.edu dn: uid=root,cn=Users,dc=ta,dc=its-sby,dc=edu sambaSID: S-0-0-1000 sambaPrimaryGroupSID: S-0-0-1001 displayName: root sambaPwdCanChange: 1071067311 sambaPwdMustChange: 2147483647 sambaLMPassword: B705F7DC7EBE22D9093867073ED9B083 sambaNTPassword: AE89347BB397A8D0B1E27E6EF8582B8F sambaPwdLastSet: 1071067311 sambaAcctFlags: [U ] objectClass: sambaSamAccount objectClass: account uid: root cn: root # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 Are there something wrong? I've read Samba-doc, to join domain should by user which uid is 0? but why 'smbpasswd -a root' create entry with 'uid=root'? Thanks > 1st of all i assume you are joining a domain? since my info below doesnt > really apply to a workgroup. get to the bit where is allows to to change > machinename/workgroup and instead of entering the server in workgroup, > enter it in Domain. > 2nd of all are you adding the machine into the /etc/passwd file? eg. > > m6-1$:x:60101:107:Domain account for M6-1:/dev/null:/bin/false > > before you are trying to add them? > > I had this problem. When it prompted me for the Username/Password > i was putting in Administrator and its password. I was half right... > > create root a smb account, "smbpasswd -a root PASSWORD", where PASSWORD > is your prefered password (note i made mine different to the unix root > password, so if someone did get hold of the smbpasswd i wouldnt be up the > creak without a paddle) > > then when it prompts you to put in username password, put in root / > password. it should work fine after that. The only thing i will say is > that it was weird and seemed to take a random time to join the domain. > some took 5 seconds > some took 20-40 seconds > one even took 2 minutes. Not sure why (anyone shead any light on this?) > > Hope this helps. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] XP join and logon
1st of all i assume you are joining a domain? since my info below doesnt really apply to a workgroup. get to the bit where is allows to to change machinename/workgroup and instead of entering the server in workgroup, enter it in Domain. 2nd of all are you adding the machine into the /etc/passwd file? eg. m6-1$:x:60101:107:Domain account for M6-1:/dev/null:/bin/false before you are trying to add them? I had this problem. When it prompted me for the Username/Password i was putting in Administrator and its password. I was half right... create root a smb account, "smbpasswd -a root PASSWORD", where PASSWORD is your prefered password (note i made mine different to the unix root password, so if someone did get hold of the smbpasswd i wouldnt be up the creak without a paddle) then when it prompts you to put in username password, put in root / password. it should work fine after that. The only thing i will say is that it was weird and seemed to take a random time to join the domain. some took 5 seconds some took 20-40 seconds one even took 2 minutes. Not sure why (anyone shead any light on this?) Hope this helps. Ross On Wed, 10 Dec 2003, I Wayan Widi Pradnyana wrote: > Hi > > My plan is joining XP Pro client to authenticate via Samba 3.0 domain or > workgroup. > The problem is the XP client at first login interface didnt show logon > location like to "This Computer" and "AJK-ITS" workgroup, so it cannot > authenticate to Samba Server. > > Any help would be appreciated. > > I have configured those machines like these: > on XP Pro client I've set: > > [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters] > "requiresignorseal"=dword: > "signsecurechannel"=dword: > and join workgroup AJK-ITS (but without prompted for username/password?), > restarting > > on Samba I use : > [global] > workgroup = AJK-ITS > server string = Server > include = /etc/samba/dhcp.conf > dns proxy = no > obey pam restrictions = yes > unix password sync = yes > security = user > map to guest = never > password level = 0 > null passwords = no > os level = 255 > preferred master = yes > domain master = yes > wins support = yes > dead time = 0 > debug level = 3 > load printers = yes > #server schannel = yes > encrypt passwords = yes > > socket options = TCP_NODELAY > domain logons = yes > netbios name = kunti > local master = yes > logon path = \\%n\profiles\%u > logon drive = Q: > logon home = \\kunti\%u > >passdb backend = ldapsam:ldap://10.126.13.88:389/ > ldap suffix = dc=ta,dc=its-sby,dc=edu > ldap machine suffix = cn=Computers > ldap user suffix = cn=Users > ldap admin dn = "cn=admin,dc=ta,dc=its-sby,dc=edu" > ldap passwd sync = yes > obey pam restrictions = yes > invalid users = root > > [netlogon] >path = /var/lib/samba/netlogon >guest ok = yes >writable = no >share modes = no > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] XP join and logon
Hi My plan is joining XP Pro client to authenticate via Samba 3.0 domain or workgroup. The problem is the XP client at first login interface didnt show logon location like to "This Computer" and "AJK-ITS" workgroup, so it cannot authenticate to Samba Server. Any help would be appreciated. I have configured those machines like these: on XP Pro client I've set: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters] "requiresignorseal"=dword: "signsecurechannel"=dword: and join workgroup AJK-ITS (but without prompted for username/password?), restarting on Samba I use : [global] workgroup = AJK-ITS server string = Server include = /etc/samba/dhcp.conf dns proxy = no obey pam restrictions = yes unix password sync = yes security = user map to guest = never password level = 0 null passwords = no os level = 255 preferred master = yes domain master = yes wins support = yes dead time = 0 debug level = 3 load printers = yes #server schannel = yes encrypt passwords = yes socket options = TCP_NODELAY domain logons = yes netbios name = kunti local master = yes logon path = \\%n\profiles\%u logon drive = Q: logon home = \\kunti\%u passdb backend = ldapsam:ldap://10.126.13.88:389/ ldap suffix = dc=ta,dc=its-sby,dc=edu ldap machine suffix = cn=Computers ldap user suffix = cn=Users ldap admin dn = "cn=admin,dc=ta,dc=its-sby,dc=edu" ldap passwd sync = yes obey pam restrictions = yes invalid users = root [netlogon] path = /var/lib/samba/netlogon guest ok = yes writable = no share modes = no -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba