Page 2 of 5 FirstFirst 1234 ... LastLast
Results 11 to 20 of 44

Thread: [SOLVED] Adding XP PCs to a samba domain...

  1. #11
    NoDoze is offline Elite Member
    Join Date
    Feb 2008
    Location
    San Francisco
    Posts
    360
    Rep Power
    7

    Default

    yea...I need one of those workarounds....for XP pro...

  2. #12
    gnyce is offline Advanced Member
    Join Date
    Aug 2007
    Location
    outside Philadelphia
    Posts
    214
    Rep Power
    8

    Default

    Just started testing this in the last 2 weeks. Assuming all is well with your Zimbra/LDAP/Samba setup, from the XP Pro (yes, not Home) PC, you right-click My Computer, Properties, Computer Name, Change button, select Domain radio button and type in the name of your Samba Domain (e.g. mine is ZIMBRASMB... this is defined in your smb.conf, "workgroup = YOUR_DOMAIN_HERE". If it is able to contact your Samba Domain Controller, you will get prompted for credentials. If you setup Domain Admins, you can use one of those accounts... if you did a "smbpasswd -a root" and put in the root password, you can use the root account and password. If it works, you get a "Welcome to the domain..." (I think), get prompted to reboot. Upon reboot, you have to Ctrl-Alt-Del, and select the Domain (instead of the local machine) for accounts... you should be able to login with any defined account on your Zimbra box.

    If you need, you can PM me for more questions, like I said, just did this, so it is all fresh in my mind

  3. #13
    NoDoze is offline Elite Member
    Join Date
    Feb 2008
    Location
    San Francisco
    Posts
    360
    Rep Power
    7

    Default

    Ahhhh! Great! exactly what I needed! Thanks!

    Only one problem...
    I enter the domain, the credentials pop up asking for username and password...
    I enter a username and password for a domain admin account...
    but then I get an error... "The specified domain either does not exist or could not be contacted."

    What's wrong? I can't figure it out...

    However, with my domain as a workgroup, I try to access the server, the credentials pop up again, enter the same username and password for a domain account, and I'm able to access the files/folders...

    Isn't that odd? I don't understand why the domain method fails...?

    any ideas?

    Thanks.

  4. #14
    gnyce is offline Advanced Member
    Join Date
    Aug 2007
    Location
    outside Philadelphia
    Posts
    214
    Rep Power
    8

    Default

    It is possible that the error message is really just indicating that the account didn't have the proper rights. So, in the Zimbra Wiki steps, when you ran the cmd to add certain rights to the Domain Admins...

    net rpc rights grant "GREGZIMBRA1\Domain Admins" SeAddUsersPrivilege SeMachineAccountPrivilege SePrintOperatorPrivilege

    Did you get prompted for a password? If so, what did you use? Did you do this?

    "After you edited smb.conf file, you need to tell Samba what is the root password for ldap. On your Samba server, restart samba services (/usr/sbin/smbd and /usr/sbin/nmbd) run the following command (replace test123 with your ldap root password).

    smbpasswd -w test123
    "

  5. #15
    Bill Brock is offline Outstanding Member
    Join Date
    May 2007
    Location
    Oklahoma
    Posts
    703
    Rep Power
    9

    Default My Network Places

    Can you see the Samba machine and its shared directory in My Network Places - View Workgroup Computers on the XP machine?

    On the XP machine: nbtstat -A sambaIP
    Does the samba machine show up

  6. #16
    NoDoze is offline Elite Member
    Join Date
    Feb 2008
    Location
    San Francisco
    Posts
    360
    Rep Power
    7

    Default

    yes, bill brock...the server shows up in network places and I could login ok from there....

    Is the "smbpasswd -w test123" password supposed to be the same password as "net rpc rights grant "GREGZIMBRA1\Domain Admins" SeAddUsersPrivilege SeMachineAccountPrivilege SePrintOperatorPrivilege"...?

  7. #17
    Bill Brock is offline Outstanding Member
    Join Date
    May 2007
    Location
    Oklahoma
    Posts
    703
    Rep Power
    9

    Default SRV records

    In a windows AD domain the DNS server requires certain SRV records so the client can determine what machine is the PDC. I'm wondering if you have added these records to your DNS server. If these records don't exist in a AD domain then the clients will respond with the same error message about not finding the domain.

  8. #18
    NoDoze is offline Elite Member
    Join Date
    Feb 2008
    Location
    San Francisco
    Posts
    360
    Rep Power
    7

    Default

    I already have added:

    Code:
    _ldap._tcp.domain.com.	IN	SRV	10 5 139 192.168.1.248
    _ldap._tcp.dc._msdcs.domain.com.	IN	SRV	10 5 445 192.168.1.248
    to my domain record file, but I'm not confident it was correct....

    I still get the same response...

  9. #19
    gnyce is offline Advanced Member
    Join Date
    Aug 2007
    Location
    outside Philadelphia
    Posts
    214
    Rep Power
    8

    Default

    I did not have to do any of that, but I dont' have any AD internal. I assume you used your domain in that DNS record, and not really "domain.com".

    When you try to join the domain... as soon as it fails, do an "ls -lr" in your /var/log/samba/ directory, to see what logfile was most recently written to. Look in that file... see if there are any error messages that help narrow down why it fails...

  10. #20
    Bill Brock is offline Outstanding Member
    Join Date
    May 2007
    Location
    Oklahoma
    Posts
    703
    Rep Power
    9

    Default SRV records on my AD server.

    _ldap._tcp.mydomain.com. 600 IN SRV 0 100 389 fs2k8.mydomain.com.
    _ldap._tcp.Default-First-Site-Name._sites.mydomain.com. 600 IN SRV 0 100 389 fs2k8.mydomain.com.
    _ldap._tcp.pdc._msdcs.mydomain.com. 600 IN SRV 0 100 389 fs2k8.mydomain.com.
    _ldap._tcp.gc._msdcs.mydomain.com. 600 IN SRV 0 100 3268 fs2k8.mydomain.com.
    _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.mydomain.com. 600 IN SRV 0 100 3268 fs2k8.mydomain.com.
    _ldap._tcp.38235edd-44b8-4f6a-8d61-3eb66ed30c5d.domains._msdcs.mydomain.com. 600 IN SRV 0 100 389 fs2k8.mydomain.com.
    81d32c52-3b12-4712-ba9c-748bcfe5c811._msdcs.mydomain.com. 600 IN CNAME fs2k8.mydomain.com.
    _kerberos._tcp.dc._msdcs.mydomain.com. 600 IN SRV 0 100 88 fs2k8.mydomain.com.
    _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.mydomain.com. 600 IN SRV 0 100 88 fs2k8.mydomain.com.
    _ldap._tcp.dc._msdcs.mydomain.com. 600 IN SRV 0 100 389 fs2k8.mydomain.com.
    _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.mydomain.com. 600 IN SRV 0 100 389 fs2k8.mydomain.com.
    _kerberos._tcp.mydomain.com. 600 IN SRV 0 100 88 fs2k8.mydomain.com.
    _kerberos._tcp.Default-First-Site-Name._sites.mydomain.com. 600 IN SRV 0 100 88 fs2k8.mydomain.com.
    _gc._tcp.mydomain.com. 600 IN SRV 0 100 3268 fs2k8.mydomain.com.
    _gc._tcp.Default-First-Site-Name._sites.mydomain.com. 600 IN SRV 0 100 3268 fs2k8.mydomain.com.
    _kerberos._udp.mydomain.com. 600 IN SRV 0 100 88 fs2k8.mydomain.com.
    _kpasswd._tcp.mydomain.com. 600 IN SRV 0 100 464 fs2k8.mydomain.com.
    _kpasswd._udp.mydomain.com. 600 IN SRV 0 100 464 fs2k8.mydomain.com.
    _ldap._tcp.DomainDnsZones.mydomain.com. 600 IN SRV 0 100 389 fs2k8.mydomain.com.
    _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.mydomain.com. 600 IN SRV 0 100 389 fs2k8.mydomain.com.
    _ldap._tcp.ForestDnsZones.mydomain.com. 600 IN SRV 0 100 389 fs2k8.mydomain.com.
    _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.mydomain.com. 600 IN SRV 0 100 389 fs2k8.mydomain.com.

    Hope this isn't information overload. But these are the records that were added to my zone file by AD setup.

Page 2 of 5 FirstFirst 1234 ... LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. migrate20070809-Signatures.pl?
    By j.mc in forum Installation
    Replies: 4
    Last Post: 06-11-2008, 09:52 AM
  2. Replies: 13
    Last Post: 07-20-2007, 03:21 AM
  3. Cannot determine services - exiting
    By tawas in forum Installation
    Replies: 7
    Last Post: 04-25-2006, 02:47 AM
  4. Replies: 13
    Last Post: 10-31-2005, 04:22 PM
  5. Replies: 18
    Last Post: 10-30-2005, 09:12 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •