[K12OSN] Joining XP system to Samba

Wed May 19 14:32:29 UTC 2004

I see you have 'security = domain' below. This must be 'security =
user'. The 'domain' setting is for telling samba to use another domain
controller for authentication purposes (man smb.conf). Have you used
testparm to check for errors? If you have a share specified that does
not exist or is not accessible it will prevent domain joining and logons
from working. I'd probably set level to around 60 too just to ensure
your samba server has no chance of losing elections for domain master
etc.

On Tue, 2004-05-18 at 19:55, Mark Orenstein wrote:
> What version of samba are you running?  signorseal patch is no longer needed
> for samba3.  Have you added the XP PC manually or do you have an add machine
> script (samba3) or add user script (samba2)?  What about a roaming profile
> directory?
> 
> Mark
> 
> -----Original Message-----
> From: k12osn-bounces at redhat.com [mailto:k12osn-bounces at redhat.com]On
> Behalf Of Joe Faletra
> Sent: Tuesday, May 18, 2004 1:40 PM
> To: k12osn at redhat.com
> Subject: [K12OSN] Joining XP system to Samba
> 
> 
> Ok folks this one is making me nuts.  I am trying to join and XP system
> to a Samba domain.  I am using K12LTSP running samba,  Here is the
> smb.conf:
> 
> # Date: 2004/05/14 10:12:23
> 
> # Global parameters
> [global]
>         os level = 32
>         workgroup = NEWFIELDS
>         domain logons = Yes
>         dns proxy = No
>         passwd program = /usr/sbin/passwd %u
>         socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
>         local master = yes
>         netbios name = k12ltsp
>         ldap ssl = no
>         max log size = 50
>         logon home = \\k12ltsp\%U
>         min passwd length = 2
>         pam password change = yes
>         log file = /var/log/samba/%m.log
>         security = domain
>         unix password sync = yes
>         domain master = yes
>         wins support = true
>         encrypt passwords = yes
>         logon drive = h://
> 
> [homes]
>         comment = Home Directories
>         read only = No
>         browseable = No
>         writable = yes
>         valid users = %S
>         create mode = 0600
>         directory mode = 0700
>         logon home = \\k12ltsp\%U
>         hide files = /*.pst/
> 
> When I try to connect a machine (SAU-SPDC-0008  machine name) to the
> NEWFIELDS domain I get:
> 
> The following error occurred attempting to join the domain "NEWFIELDS"
> The username could not be found.
> 
> I am also running SME server.  DHCP has been disabled on SME.  User
> accounts are on the K12LTSP box.  THere is one user account on SME.
> Which adds another question, how do I tell that the K12LTSP server is
> the only one authenticating???
> 
> Joe
> 
> 
> 

-- 
Mike Rambo
mrambo at lsd.k12.mi.us

Hurry! Hire a teenager while they still know everything!!!