Menu
▾
▴
Re: [webmin-l] Samba - Connecting to a Windows 2003 Server and AD
|
From: <dav...@da...> - 2006-07-13 01:51:18
|
Your issue is actually the following:
[global]
workgroup = WORKGROUP
netbios name = SAMBASERVER
realm = WORKGROUP.DOMAIN.COM
preferred master = no
domain master = no
local master = no
server string = SAMBA File Server
security = ADS
encrypt passwords = yes
log level = 3
log file = /var/log/samba/%m
max log size = 50
# Added for 2K3 issue
client schannel = no
# username map = /etc/samba/smbusers
winbind separator = +
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind enum users = yes
winbind enum groups = yes
client signing = yes
Notice the "Added for 2K3 issue" line?
The issue is the Win2K3 does not handle the schannel properly...
Codecipher
David Coley
-----Original Message-----
From: web...@li...
[mailto:web...@li...] On Behalf Of Neal
Morgan
Sent: Wednesday, July 12, 2006 8:41 PM
To: Webmin users list
Subject: Re: [webmin-l] Samba - Connecting to a Windows 2003 Server and AD
I went back and re-read your original note. Here are some random
suggestions, FWIW:
I believe the correct JOIN statement for a 2003 AD is
net ads join...
You will also want to make sure your smb.conf has these:
client signing = mandatory
workgroup = <Your AD Domain without the .com>
security = ADS
client use spnego = yes
encrypt passwords = true
realm = <Your AD Domain with the .com>
password server = <Your AD PDC, e.g. MyPDC>
I had to dumb down the default /etc/krb5.conf, note the ones in all
caps:
[libdefaults]
default_realm = YOURDOMAIN.COM
[realms]
YOURDOMAIN.COM = {
kdc = MyPDC.yourdomain.com
}
[domain_realms]
.mypdc.yourdomain.com = YOURDOMAIN.COM
Dunno if you were also trying to get winbind working, if so, the
official samba docs are pretty good:
http://us1.samba.org/samba/docs/man/Samba-HOWTO-Collection/winbind.html
Hope something here helps...
-----Original Message-----
From: web...@li...
[mailto:web...@li...] On Behalf Of Scott
Anderson
Sent: Wednesday, July 12, 2006 5:14 PM
To: Webmin users list
Subject: Re: [webmin-l] Samba - Connecting to a Windows 2003 Server and
AD
Thanks again but still can't get it right. Like I said, I can see the
server in the AD but I can't communicate with it. It is also causing IP
conflicts because windows is not registering the static IP's. I wonder
if there is a place to go to pay by incident to get this done once and
for all.
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job
easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
-
Forwarded by the Webmin mailing list at web...@li...
To remove yourself from this list, go to
http://lists.sourceforge.net/lists/listinfo/webadmin-list
|
