Samba - Active Directory 2003 problems

Tim Holmes tholmes at mcaschool.net
Wed Jul 20 21:51:00 UTC 2005 

> >
> > > Am Mi, den 20.07.2005 schrieb Tim Holmes um 17:25:
> > >
> > > > When in Execute the
> > > >
> > > > net ads join -U administrator
> > > >
> > > > Command and supply the password, I get the following error
> > > >
> > > > [2005/07/20 10:57:26, 0] libads/ldap.c:ads_join_realm(1640)
> > > >   ads_add_machine_acct (srvweb-01): Type or value exists
> > > > ads_join_realm: Type or value exists
> > > >
> > > > Doing a google search on this error suggested that I try the
> > following
> > > > command
> > > >
> > > >  [root at srvweb-01 ~]# smbclient -k //srvdc01/C$
> > krb5_cc_get_principal
> > > > failed (No credentials cache found)
> > spnego_gen_negTokenTarg failed:
> > > > No credentials cache found session setup failed: NT_STATUS_OK
> > > >
> > > > it sounds to me like Kerbros is possibly not running or not
> > configured
> > > > correctly on my windows 2003 domain controller, but I'm not
sure.
> > Can
> > > > someone please help me figure out these messages so that
> > I can make
> > this
> > > > thing work
> > > >
> > > > TIM
> > >
> > > http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/domain-
> > > member.html#id2555060
> > >
> > > Alexander
> > [Tim Holmes]
> >
> > Ok -- one other slight problem -- it seems that I have some
> > sort of a rogue record in my ADS Tree or something.  For
> > whatever reason, I cannot join my server as srvweb-01,  so as
> > a simple solution, I changed the host name on the server to
srvweb-02.
> >
> > I changed it in the system-config-network applet, in the
> > hosts file, and checked the krb5.conf and smb.conf files to
> > make sure it was not referenced in there anywhere.
> >
> > Then I restarted the machine, so all the new settings were
> > applied, also changed the DNS and reloaded the zone,  This
> > machine has a static address, so DHCP should be a non issue
> >
> > But when I try to join the domain, it still fails -- the
> > routine worked perfectly on my test server, it joined
> > perfectly on the first try.  I suspect that the old host name
> > (srvweb-01) is registered someplace that I don't know about,
> > but I cannot seem to find it -- any suggestions where I
> > should be looking?
> >
> > Thanks
> >
> > TIM
> >
> >
> >
> > --
> > fedora-list mailing list
> > fedora-list at redhat.com
> > To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
> >
> >
> 
> Do you think its registered in AD somewhere or on your machine
> somewhere?  Whenever I've had duplication issues I've just been able
to
> delete the computer from AD and rejoin.  Sometimes AD makes me wait a
> while before I can rejoin.
> 
> 	-Mike
[Tim Holmes] 
Mike -- I have no clue, but I solved the problem - I changed the host
name on the machine, and it works perfectly,  I am able to access the
shares now,  not to the problem of getting permissions set up right --
:)

TIM

More information about the fedora-list mailing list