Добрый день, я делаю из SAMBA PDC, у меня debian 6.
Сконфигурил ldap, добавил пользователей скриптом smbldap-populate -m 512 -a Admin.
su Admin из под нерута, запрашивает пароль, аутентифицируется, входит в систему.
Пытаюсь добавить админа в домен:
net rpc join -U Admin
Connection failed: NT_STATUS_INVALID_NETWORK_RESPONSE
Enter Admin's password:
Could not connect to server DOMAIN
Connection failed: NT_STATUS_INVALID_NETWORK_RESPONSE
А вот так - другой результат:
net rpc join -S DOMAIN.rtlprim.ru -U Admin
Enter Admin's password:
Could not connect to server DOMAIN.rtlprim.ru
The username or password was not correct.
Connection failed: NT_STATUS_LOGON_FAILURE
root@rtlprim:/home/zwei# testparm
Load smb config files from /etc/samba/smb.conf
Processing section "[netlogon]"
Loaded services file OK.
Server role: ROLE_DOMAIN_PDC
Press enter to see a dump of your service definitions
[global]
dos charset = cp866
unix charset = utf8
display charset = cp1251
workgroup = RTLPRIM.RU
realm = RTLPRIM.RU
netbios name = DOMAIN
server string = Documents
passdb backend = ldapsam:ldap://localhost/
log file = /var/log/samba/log.%m
max log size = 500
name resolve order = wins host lmhosts bcast
max wins ttl = 3600
min wins ttl = 1800
time server = Yes
load printers = No
add user script = /usr/sbin/ldapadduser '%u' Users
rename user script = /usr/sbin/ldaprenameuser '%uold' '%unew'
delete user script = /usr/sbin/ldapdeleteuser '%u'
add group script = /usr/sbin/ldapaddgroup '%g'
delete group script = /usr/sbin/ldapdeletegroup '%g'
add user to group script = /usr/sbin/ldapaddusertogroup '%u' '%g'
delete user from group script = /usr/sbin/ldapdeleteuserfromgroup '%u' '%g'
set primary group script = /usr/sbin/ldapsetprimarygroup '%u' '%g'
add machine script = /usr/sbin/ldapaddmachine '%u' Computers
logon path =
logon drive = Z:
logon home = \\%L\Profiles\%U\%m
domain logons = Yes
os level = 255
preferred master = Yes
domain master = Yes
wins support = Yes
wins hook = /usr/share/doc/samba-doc/examples/scripts/wins_hook/dns_update
ldap admin dn = "cn=admin,dc=rtlprim,dc=ru"
ldap group suffix = ou=Groups
ldap machine suffix = ou=Computers
ldap suffix = dc=rtlprim,dc=ru
ldap ssl = no
ldap user suffix = ou=Users
admin users = Admin
hosts allow = 192.168., 127.
write cache size = 262144
[netlogon]
comment = Network Logon Service
path = /home/samba/netlogon/
read list = @Users
write list = @Users
read only = No
guest ok = Yes
browseable = No
P.S. Комменчу hosts allow - картина не меняется
Сконфигурил ldap, добавил пользователей скриптом smbldap-populate -m 512 -a Admin.
su Admin из под нерута, запрашивает пароль, аутентифицируется, входит в систему.
Пытаюсь добавить админа в домен:
net rpc join -U Admin
Connection failed: NT_STATUS_INVALID_NETWORK_RESPONSE
Enter Admin's password:
Could not connect to server DOMAIN
Connection failed: NT_STATUS_INVALID_NETWORK_RESPONSE
А вот так - другой результат:
net rpc join -S DOMAIN.rtlprim.ru -U Admin
Enter Admin's password:
Could not connect to server DOMAIN.rtlprim.ru
The username or password was not correct.
Connection failed: NT_STATUS_LOGON_FAILURE
root@rtlprim:/home/zwei# testparm
Load smb config files from /etc/samba/smb.conf
Processing section "[netlogon]"
Loaded services file OK.
Server role: ROLE_DOMAIN_PDC
Press enter to see a dump of your service definitions
[global]
dos charset = cp866
unix charset = utf8
display charset = cp1251
workgroup = RTLPRIM.RU
realm = RTLPRIM.RU
netbios name = DOMAIN
server string = Documents
passdb backend = ldapsam:ldap://localhost/
log file = /var/log/samba/log.%m
max log size = 500
name resolve order = wins host lmhosts bcast
max wins ttl = 3600
min wins ttl = 1800
time server = Yes
load printers = No
add user script = /usr/sbin/ldapadduser '%u' Users
rename user script = /usr/sbin/ldaprenameuser '%uold' '%unew'
delete user script = /usr/sbin/ldapdeleteuser '%u'
add group script = /usr/sbin/ldapaddgroup '%g'
delete group script = /usr/sbin/ldapdeletegroup '%g'
add user to group script = /usr/sbin/ldapaddusertogroup '%u' '%g'
delete user from group script = /usr/sbin/ldapdeleteuserfromgroup '%u' '%g'
set primary group script = /usr/sbin/ldapsetprimarygroup '%u' '%g'
add machine script = /usr/sbin/ldapaddmachine '%u' Computers
logon path =
logon drive = Z:
logon home = \\%L\Profiles\%U\%m
domain logons = Yes
os level = 255
preferred master = Yes
domain master = Yes
wins support = Yes
wins hook = /usr/share/doc/samba-doc/examples/scripts/wins_hook/dns_update
ldap admin dn = "cn=admin,dc=rtlprim,dc=ru"
ldap group suffix = ou=Groups
ldap machine suffix = ou=Computers
ldap suffix = dc=rtlprim,dc=ru
ldap ssl = no
ldap user suffix = ou=Users
admin users = Admin
hosts allow = 192.168., 127.
write cache size = 262144
[netlogon]
comment = Network Logon Service
path = /home/samba/netlogon/
read list = @Users
write list = @Users
read only = No
guest ok = Yes
browseable = No
P.S. Комменчу hosts allow - картина не меняется