| View previous topic :: View next topic |
| Author |
Message |
preacher
n00b
Joined: 09 Jan 2004
Posts: 55
Location: Göteborg, Sweden
|
 Posted: Wed Apr 07, 2004 12:39 pm Post subject: Join a gentoo-box to a NT-domain using active directory |
 |
|
I'm trying to add my computer at work to our domain. I've searched around a lot and found different information for doing this, but there is one problem.
While I consider myself a pretty experienced linux user I'm a complete n00b as regards to domains, AD, OU and all other stuff I've read about when searching frantically.
So I need some help or some kind of tutorial explaining this from the beginning. How to do it, why do it, etc etc.
I've emerged samba 3.0.2a and configured it to what I think is correct. I'm stuck at some troubles with kerberos which I don't even know if it's necessary, or what it does.
The error message I get when doing | Code: | | net join sait -U "Daniel Persson" |
is
| Code: | [2004/04/07 14:33:30, 0] libads/kerberos.c:ads_kinit_password(133)
kerberos_kinit_password Daniel Persson@SAIT.XXX.XX failed: Cannot resolve network address for KDC in requested realm |
I've added sait to the hosts-file otherwise it don't seem to work at all.
My smb.conf looks like this:
| Code: | [global]
workgroup = SAIT
server string = %h server
security = ADS
encrypt passwords = yes
password server = sait
log file = /var/log/samba/log.%m
max log size = 1000
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
os level = 18
local master = No
dns proxy = no
winbind uid = 10000-20000
winbind gid = 10000-20000
template shell = /bin/bash
winbind separator = +
template homedir = /home/%D/%U
|
Any help getting this to work would be greatly appreciated. |
|
| Back to top |
|
 |
mothbitten
n00b
Joined: 06 Jan 2003
Posts: 5
|
|
| Back to top |
|
|
preacher
n00b
Joined: 09 Jan 2004
Posts: 55
Location: Göteborg, Sweden
|
| Posted: Thu Apr 08, 2004 6:38 am Post subject: |
|
|
Thank you.
I actually did manage to get the computer onto the domain yesterday.
But now I want to log on to the domain as well. If I understand correctly, I should be able to run
and see my local group listings as well as that of the domain, but as far as I can see I only see the local machines groups.
This has something to do with winbind and the config there, correct? But how to proceed? |
|
| Back to top |
|
|
preacher
n00b
Joined: 09 Jan 2004
Posts: 55
Location: Göteborg, Sweden
|
| Posted: Thu Apr 08, 2004 8:06 am Post subject: |
|
|
Ok, I read up on samba some more.
When trying again to join the domain again, I get
| Code: | root@Cain etc # net ads join -U "Daniel Persson"
Daniel Persson password:
[2004/04/08 09:59:57, 0] libads/ldap.c:ads_add_machine_acct(1006)
Host account for peterprod already exists - modifying old account
[2004/04/08 09:59:57, 0] libads/ldap.c:ads_join_realm(1342)
ads_add_machine_acct: No such object
ads_join_realm: No such object |
I obviously get some form of connection, but I can't make heads or tails of the error messages after that. |
|
| Back to top |
|
|
Vermyndax
Apprentice
Joined: 13 Dec 2003
Posts: 208
|
| Posted: Sun May 02, 2004 10:14 pm Post subject: do this... |
|
|
| Delete the machine account from the Active Directory and try joining again... same thing happened to me - I just deleted the account and it joined fine. |
|
| Back to top |
|
|
|
Networking & Security
