Pripojeni samby k domenovemu serveru s W2003std

Zdenek Janis janis na alberon.cz
Úterý Srpen 22 18:46:08 CEST 2006


Dobry den,
snazim se rozchodit novy server se sambou, aby uzivatele overoval na 
domenovem serveru (W2003) - delam to poprve a tak trosku tapu, obzvlaste 
kdyz na jinych serverech s redhatem to chodi, ale ty jsem nedelal ja a 
ikdyz jsem okopiroval smb.conf, tak vysledek stale stejne zalostny, viz 
nize vypisy logu.
Vi nekdo kde je chyba, co kde nastavit aby to zacalo chodit?

Dekuji za pomoc,
	Zdenek Janis

OS: debian stable (aktualni balicky), samba 3.0.14a, kernel 2.6.17.8 
(vlastni kompilace)

#test zda je server v RPC a ADS:
server06:/etc# net ads testjoin
Join is OK
server06:/etc# net rpc testjoin
Join to 'BRAVO' is OK


#Pokus o pripojeni zdileneho prostredku na tom samem stroji (server06):
server06:/etc# mount -t cifs //server06/formy /mnt/cifs -o username=server06
Password:
mount error 13 = Permission denied


LOG samby (server06):

# pri zadani spravneho hesla:
[2006/08/22 18:17:42, 0] auth/auth_util.c:make_server_info_info3(1195)
   make_server_info_info3: pdb_init_sam failed!
# pri zadani chybneho hesla:
[2006/08/22 18:42:22, 0] auth/auth_domain.c:domain_client_validate(199)
   domain_client_validate: unable to validate password for user server06 
in domain BRAVO to Domain controller \\SERVER01. Error was 
NT_STATUS_WRONG_PASSWORD.


LOG domenoveho serveru:

While processing a TGS request for the target server 
host/server06.bravo, the account SERVER06$@BRAVO.SERVER did not have a 
suitable key for generating a Kerberos ticket (the missing key has an ID 
of 8). The requested etypes were 16.  The accounts available etypes were 
23  -133  -128  3  1.

/etc/samba/smb.cfg :
[global]
	dos charset = CP852
	unix charset = ISO-8859-2
	workgroup = BRAVO
	realm = BRAVO.SERVER
	server string = Server pro data nastrojarny
	security = DOMAIN
#	null passwords = Yes
	obey pam restrictions = Yes
	password server = *
#	passdb backend = tdbsam, guest
	passwd program = /usr/bin/passwd %u
	passwd chat = *Enter\snew\sUNIX\spassword:* %n\n 
*Retype\snew\sUNIX\spassword:* %n\n .
	syslog = 0
	log file = /var/log/samba/log.%m
	max log size = 50
	socket options = TCP_NODELAY SO_RCVBUF=16384 SO_SNDBUF=16384
	load printers = No
	preferred master = No
	local master = No
	domain master = No
	dns proxy = No
	ldap ssl = no
	panic action = /usr/share/samba/panic-action %d
	idmap uid = 10000-20000
	idmap gid = 10000-20000
	winbind uid = 10000-20000
	winbind gid = 10000-20000
	winbind cache time = 5
#	invalid users = root
	force create mode = 0666
	force directory mode = 0777
	map archive = No
	delete readonly = Yes

[formy]
	comment = Data forem
	path = /home/FORMY
	valid users = @BRAVO\admin_formy, @BRAVO\adminvs, '@BRAVO\domain, 
admins', @BRAVO\konstrukce, '@BRAVO\zahraniení, obchod', '@BRAVO\domain, 
users'
	read list = '@BRAVO\domain, users'
	write list = @BRAVO\admin_formy, @BRAVO\adminvs, '@BRAVO\domain, 
admins', @BRAVO\konstrukce, '@BRAVO\zahraniení, obchod'
	read only = No



Další informace o konferenci Linux