I know this topic has been posted many of time (I've read almost every one of them), but I have a hum-dinger of a problem. I have an XP Professional workstation I want to connect to my Redhat 8.0 Samba server (version 2.2.7-2). It should be as simple as:
1 - Registry hack on the XP server
[HKEY_LOCAL_MACHINES\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters] "requiressignorseal"=dword:00000000
2 - Configure smb.conf:
# Global parameters
[global]
workgroup = UNDERWORLD
netbios name = SETH
server string = Samba PDC %v %h
encrypt passwords = Yes
obey pam restrictions = Yes
pam password change = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *New*password* %n\n *Retype*new*password* %n\n *passwd:*all*authentication*tokens*updated*successfully*
unix password sync = Yes
log file = /var/log/samba/%m.log
max log size = 150
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
logon script = netlogon.bat
logon path = \\%L\Profiles\%U
logon drive = U:
logon home = \\%L\%U
os level = 65
preferred master = Yes
domain master = Yes
wins support = Yes
remote announce = 192.168.0.0/24
remote browse sync = 192.168.0.0/24
hosts allow = 192.168.0., 127.0.0.1, 192.168.42.
printing = lprng
[homes]
comment = Home Directories
valid users = %S
read only = No
create mask = 0664
directory mask = 0775
browseable = No
[printers]
comment = All Printers
path = /var/spool/samba
printable = Yes
browseable = No
[ftp]
comment = Local FTP Directory
path = /var/ftp/
guest account = ftp
read only = No
create mask = 0644
guest only = Yes
guest ok = Yes
[HPDeskJet]
comment = HP DeskJet 5550
path = /var/spool/samba
read only = No
printable = Yes
printer name = HPDeskJet
[netlogon]
comment = Network Logon Service
path = /home/samba/netlogon
share modes = No
[Profiles]
path = /home/samba/profiles
browseable = No
3 - Edit my DNS records to include the SRV RR for the domain:
_ldap._tcp.dc._msdcs.underworld. 600 SRV 0 0 389 seth.darkhonor.net.
4 - Create a group account for the machines:
/usr/sbin/groupadd -g 201 machines
5 - Create machine account for the XP box:
/usr/sbin/useradd -g machines -d /dev/null -c "machine nickname" -s /bin/false test$
6 - Create and lock the authentication for the new machine account:
passwd -l test$
7 - Do the same for the smbpasswd database:
/usr/bin/smbpasswd -a -m test
8 - Restart the smb service:
/etc/init.d/smb restart
9 - Test the Samba Server by typing:
smbclient -L seth
and I get the following output:
Anonymous login successful
Domain=[UNDERWORLD] OS=[Unix] Server=[Samba 2.2.7]
Sharename Type Comment
--------- ---- -------
ftp Disk Local FTP Directory
HPDeskJet Printer HP DeskJet 5550
netlogon Disk Network Logon Service
IPC$ IPC IPC Service (Samba PDC 2.2.7 seth)
ADMIN$ Disk IPC Service (Samba PDC 2.2.7 seth)
Server Comment
--------- -------
RA Windows XP Professional
SETH Samba PDC 2.2.7 seth
Workgroup Master
--------- -------
UNDERWORLD SETH
10 - Log onto the XP machine with an administrator account and join the domain.
Well, I've done all of the above, and I still get:
"A domain controller for domain underworld could not be contacted."
With the C:\Windows\debug\dcdiag.txt file stating:
The domain name underworld might be a NetBIOS domain name. If this is the case, verify that the domain name is properly registered with WINS.
If you are certain that the name is not a NetBIOS domain name, then the following information can help you troubleshoot your DNS configuration.
DNS was successfully queried for the service location (SRV) resource record used to locate a domain controller for domain underworld:
The query was for the SRV record for _ldap._tcp.dc._msdcs.underworld
The following domain controllers were identified by the query:
seth.darkhonor.net
Common causes of this error include:
- Host (A) records that map the name of the domain controller to its IP addresses are missing or contain incorrect addresses.
- Domain controllers registered in DNS are not connected to the network or are not running.
For information about correcting this problem, click Help.
Any ideas?
1 - Registry hack on the XP server
[HKEY_LOCAL_MACHINES\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters] "requiressignorseal"=dword:00000000
2 - Configure smb.conf:
# Global parameters
[global]
workgroup = UNDERWORLD
netbios name = SETH
server string = Samba PDC %v %h
encrypt passwords = Yes
obey pam restrictions = Yes
pam password change = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *New*password* %n\n *Retype*new*password* %n\n *passwd:*all*authentication*tokens*updated*successfully*
unix password sync = Yes
log file = /var/log/samba/%m.log
max log size = 150
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
logon script = netlogon.bat
logon path = \\%L\Profiles\%U
logon drive = U:
logon home = \\%L\%U
os level = 65
preferred master = Yes
domain master = Yes
wins support = Yes
remote announce = 192.168.0.0/24
remote browse sync = 192.168.0.0/24
hosts allow = 192.168.0., 127.0.0.1, 192.168.42.
printing = lprng
[homes]
comment = Home Directories
valid users = %S
read only = No
create mask = 0664
directory mask = 0775
browseable = No
[printers]
comment = All Printers
path = /var/spool/samba
printable = Yes
browseable = No
[ftp]
comment = Local FTP Directory
path = /var/ftp/
guest account = ftp
read only = No
create mask = 0644
guest only = Yes
guest ok = Yes
[HPDeskJet]
comment = HP DeskJet 5550
path = /var/spool/samba
read only = No
printable = Yes
printer name = HPDeskJet
[netlogon]
comment = Network Logon Service
path = /home/samba/netlogon
share modes = No
[Profiles]
path = /home/samba/profiles
browseable = No
3 - Edit my DNS records to include the SRV RR for the domain:
_ldap._tcp.dc._msdcs.underworld. 600 SRV 0 0 389 seth.darkhonor.net.
4 - Create a group account for the machines:
/usr/sbin/groupadd -g 201 machines
5 - Create machine account for the XP box:
/usr/sbin/useradd -g machines -d /dev/null -c "machine nickname" -s /bin/false test$
6 - Create and lock the authentication for the new machine account:
passwd -l test$
7 - Do the same for the smbpasswd database:
/usr/bin/smbpasswd -a -m test
8 - Restart the smb service:
/etc/init.d/smb restart
9 - Test the Samba Server by typing:
smbclient -L seth
and I get the following output:
Anonymous login successful
Domain=[UNDERWORLD] OS=[Unix] Server=[Samba 2.2.7]
Sharename Type Comment
--------- ---- -------
ftp Disk Local FTP Directory
HPDeskJet Printer HP DeskJet 5550
netlogon Disk Network Logon Service
IPC$ IPC IPC Service (Samba PDC 2.2.7 seth)
ADMIN$ Disk IPC Service (Samba PDC 2.2.7 seth)
Server Comment
--------- -------
RA Windows XP Professional
SETH Samba PDC 2.2.7 seth
Workgroup Master
--------- -------
UNDERWORLD SETH
10 - Log onto the XP machine with an administrator account and join the domain.
Well, I've done all of the above, and I still get:
"A domain controller for domain underworld could not be contacted."
With the C:\Windows\debug\dcdiag.txt file stating:
The domain name underworld might be a NetBIOS domain name. If this is the case, verify that the domain name is properly registered with WINS.
If you are certain that the name is not a NetBIOS domain name, then the following information can help you troubleshoot your DNS configuration.
DNS was successfully queried for the service location (SRV) resource record used to locate a domain controller for domain underworld:
The query was for the SRV record for _ldap._tcp.dc._msdcs.underworld
The following domain controllers were identified by the query:
seth.darkhonor.net
Common causes of this error include:
- Host (A) records that map the name of the domain controller to its IP addresses are missing or contain incorrect addresses.
- Domain controllers registered in DNS are not connected to the network or are not running.
For information about correcting this problem, click Help.
Any ideas?
![[profile]](/data/assets/smilies/profile.gif "[profile] [profile]")