• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 345
  • Last Modified:

Configuring Samba to authenticate against NT domain

I am having real problems getting samba to work while authenticating against an NT 4 domain.

I have done "net join -S DOMAIN_SERVER -UAdministrator%password" and it says "joined domain $domainname".

The problem we are having is that it keeps asking users to enter a password.  They are logged into the domain, but when trying to access shares on this samba server, it prompts for a username, which still fails even when provided.  We are NOT using winbind... any ideas ?
0
ricurtis
Asked:
ricurtis
1 Solution
 
kfullartonCommented:
What is the security parameter set to in the smb.conf file?  I think it needs to be set to domain assuming it is part of a domain.
0
 
ricurtisAuthor Commented:
It is set to domain.
From all the literature, I cant find any reason why it doesnt work - it just doesnt.  YOu can see the shares, but cant access any of them.

0
 
David PiniellaCommented:
are you putting in the username as username@domain.tld or domain\username?
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
ricurtisAuthor Commented:
I am putting "DOMAIN\username" when prompted for the user/password by the windows box - but, I shouldnt be prompted for either as I am already logged onto the domain.
0
 
David PiniellaCommented:
can you post your samba config?
0
 
klavvCommented:
Have you created corresponding local UNIX representing the NT-domain-users? If there is a user "DOMAIN\username", there has to be a corresponding UNIX account "username", or your system would not work.

If you want to to automatically assign UNIX UIDs and GIDs to Windows NT Domain users and group, you will need winbind. You can find the official HOWTO under the following URL:
http://us1.samba.org/samba/docs/man/Samba-HOWTO-Collection/winbind.html
0
 
ricurtisAuthor Commented:
Time was running out to get this up and running, so I have finally bitten the bullet and setup winbind.
I guess the extra config effort was worth it - at least I dont have to mess about keeping users in sync between the windows domain and the linux box !
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now