Pripojeni samby k domenovemu serveru s W2003std
Zdenek Janis
janis na alberon.cz
Úterý Srpen 22 18:46:08 CEST 2006
Dobry den,
snazim se rozchodit novy server se sambou, aby uzivatele overoval na
domenovem serveru (W2003) - delam to poprve a tak trosku tapu, obzvlaste
kdyz na jinych serverech s redhatem to chodi, ale ty jsem nedelal ja a
ikdyz jsem okopiroval smb.conf, tak vysledek stale stejne zalostny, viz
nize vypisy logu.
Vi nekdo kde je chyba, co kde nastavit aby to zacalo chodit?
Dekuji za pomoc,
Zdenek Janis
OS: debian stable (aktualni balicky), samba 3.0.14a, kernel 2.6.17.8
(vlastni kompilace)
#test zda je server v RPC a ADS:
server06:/etc# net ads testjoin
Join is OK
server06:/etc# net rpc testjoin
Join to 'BRAVO' is OK
#Pokus o pripojeni zdileneho prostredku na tom samem stroji (server06):
server06:/etc# mount -t cifs //server06/formy /mnt/cifs -o username=server06
Password:
mount error 13 = Permission denied
LOG samby (server06):
# pri zadani spravneho hesla:
[2006/08/22 18:17:42, 0] auth/auth_util.c:make_server_info_info3(1195)
make_server_info_info3: pdb_init_sam failed!
# pri zadani chybneho hesla:
[2006/08/22 18:42:22, 0] auth/auth_domain.c:domain_client_validate(199)
domain_client_validate: unable to validate password for user server06
in domain BRAVO to Domain controller \\SERVER01. Error was
NT_STATUS_WRONG_PASSWORD.
LOG domenoveho serveru:
While processing a TGS request for the target server
host/server06.bravo, the account SERVER06$@BRAVO.SERVER did not have a
suitable key for generating a Kerberos ticket (the missing key has an ID
of 8). The requested etypes were 16. The accounts available etypes were
23 -133 -128 3 1.
/etc/samba/smb.cfg :
[global]
dos charset = CP852
unix charset = ISO-8859-2
workgroup = BRAVO
realm = BRAVO.SERVER
server string = Server pro data nastrojarny
security = DOMAIN
# null passwords = Yes
obey pam restrictions = Yes
password server = *
# passdb backend = tdbsam, guest
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\sUNIX\spassword:* %n\n
*Retype\snew\sUNIX\spassword:* %n\n .
syslog = 0
log file = /var/log/samba/log.%m
max log size = 50
socket options = TCP_NODELAY SO_RCVBUF=16384 SO_SNDBUF=16384
load printers = No
preferred master = No
local master = No
domain master = No
dns proxy = No
ldap ssl = no
panic action = /usr/share/samba/panic-action %d
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind uid = 10000-20000
winbind gid = 10000-20000
winbind cache time = 5
# invalid users = root
force create mode = 0666
force directory mode = 0777
map archive = No
delete readonly = Yes
[formy]
comment = Data forem
path = /home/FORMY
valid users = @BRAVO\admin_formy, @BRAVO\adminvs, '@BRAVO\domain,
admins', @BRAVO\konstrukce, '@BRAVO\zahraniení, obchod', '@BRAVO\domain,
users'
read list = '@BRAVO\domain, users'
write list = @BRAVO\admin_formy, @BRAVO\adminvs, '@BRAVO\domain,
admins', @BRAVO\konstrukce, '@BRAVO\zahraniení, obchod'
read only = No
Další informace o konferenci Linux