Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Trying to join linux webserver with samba to active directory domain

Posted on 2006-06-01
Medium Priority
Last Modified: 2012-06-27
Overall I'm trying to figure-out how to allow active directory users access file shares on a linux box (that has samba installed). Our AD is called ad.xxx.edu. I use this command to try to join the box (followed by the error I rec'):

net join -w ad.xxx.edu -S -U frank
frank's password:
realm must be set in in smb.conf for ADS join to succeed.
ADS join did not work, falling back to RPC...
[2006/06/01 21:32:14, 0] rpc_client/cli_netlogon.c:cli_nt_setup_creds(256)
  cli_nt_setup_creds: request challenge failed
[2006/06/01 21:32:14, 0] rpc_client/cli_netlogon.c:cli_nt_setup_creds(256)
  cli_nt_setup_creds: request challenge failed
[2006/06/01 21:32:14, 0] utils/net_rpc_join.c:net_rpc_join_newstyle(319)
  Error domain join verification (reused connection): NT_STATUS_INVALID_COMPUTER_NAME

Unable to join domain AD.

Suggestions? I've gotten pretty familiar with the krb5.conf and smb.conf files. Thanks!
Question by:sipher7024
LVL 11

Accepted Solution

grsteed earned 2000 total points
ID: 16842539
Check out this article and see if it helps.


Do you have the realm defined in smb.conf?



Author Comment

ID: 16842765
Thanks Gary. That resource was VERY helpful. I'm not sure why I couldn't find it earlier.

I already had defined the realm, it was actually an issue with kerberos not working correctly.

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
How can you see what you are working on when you want to see it while you to save a copy? Add a "Save As" icon to the Quick Access Toolbar, or QAT. That way, when you save a copy of a query, form, report, or other object you are modifying, you…
Suggested Courses

564 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question