Rolling_Tech
asked on
Connecting Windows 7 to Ubuntu / Samba as PDC
I have a network consisting of 12 Windows 7 Professional 64-bit machines and one 64-bit Ubuntu/Samba 3 server configured as a PDC using roaming profiles.
I can join the domain windows XP professional and login using any user from the domain, but when I try using Windows 7 professional 64-bit it will join the domain but after a reboot it says that the trust relationship between the workstation and the server failed and will not login with any user except the local account.
I tried changing the two registry entries listed at samba.org for windows 7, but I still get the same results. My samba version is 3.6.15
Anyone know the trick to making this work
I can join the domain windows XP professional and login using any user from the domain, but when I try using Windows 7 professional 64-bit it will join the domain but after a reboot it says that the trust relationship between the workstation and the server failed and will not login with any user except the local account.
I tried changing the two registry entries listed at samba.org for windows 7, but I still get the same results. My samba version is 3.6.15
Anyone know the trick to making this work
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Have you tried disabling the windows firewall to test?
ASKER
I tried disabling the firewall on all connections then rebooted.
At login I got the same message:
"the trust relationship between the workstation and the primary domain controller failed"
At login I got the same message:
"the trust relationship between the workstation and the primary domain controller failed"
ASKER
Tried #9 same results can't login to any domain account.
Are the machine accounts created ok?
ASKER
When I join the domain it creates the machine accounts just fine, but for some reason it doesn't trust them.after a reboot.
ASKER
I finally got past this problem using this registry script:
Windows Registry Editor Version 5.00
; Win7/Samba 3.4.x - Workstation Share
[HKEY_LOCAL_MACHINE\SYSTEM
"AutoShareWks"=dword:00000
; Win7/Samba 3.4.x - Compat
[HKEY_LOCAL_MACHINE\System
"DNSNameResolutionRequired
"DomainCompatibilityMode"=
; AllowPlain ....
; RequireSecuritySignature"=
; Win7/Samba 3.4.x - Compat
; http://us.generation-nt.com/answer/samba-rejecting-auth-request-client-xxx-machine-account-win7-help-206090182.html#206092242
[HKEY_LOCAL_MACHINE\SYSTEM
"DisablePasswordChange"=dw
"RequireSignOrSeal"=dword:
"RequireStrongKey"=dword:0
;Turn off last user logged in stuff.
[HKEY_LOCAL_MACHINE\SOFTWA
"dontdisplaylastusername"=
;Disable the security center stuff annoyances
; [HKEY_LOCAL_MACHINE\SYSTEM
; "Start"=dword:00000003
; Speedup settings
[HKEY_LOCAL_MACHINE\SOFTWA
"SlowLinkDetectEnabled"=dw
"DeleteRoamingCache"=dword
"WaitForNetwork"=dword:000
"CompatibleRUPSecurity"=dw
; Can drive you nuts
[HKEY_LOCAL_MACHINE\SOFTWA
"EnableLUA"=dword:00000000
"LocalAccountTokenFilterPo
;Stupid keys that make the windows 7 sysprep crap out.
[HKEY_LOCAL_MACHINE\SYSTEM
"RestartSetup"=dword:00000
"SetupType"=dword:00000000
"SystemSetupInProgress"=dw
"SetupPhase"=dword:0000000
"CmdLine"=""
"OOBEInProgress"=dword:000
__________________________
And then setting "RequireSignOrSeal"=dword:
__________________________
For some reason though it did not map my H:\ drive to home directory, although I can access all the shares without issue.
Windows Registry Editor Version 5.00
; Win7/Samba 3.4.x - Workstation Share
[HKEY_LOCAL_MACHINE\SYSTEM
"AutoShareWks"=dword:00000
; Win7/Samba 3.4.x - Compat
[HKEY_LOCAL_MACHINE\System
"DNSNameResolutionRequired
"DomainCompatibilityMode"=
; AllowPlain ....
; RequireSecuritySignature"=
; Win7/Samba 3.4.x - Compat
; http://us.generation-nt.com/answer/samba-rejecting-auth-request-client-xxx-machine-account-win7-help-206090182.html#206092242
[HKEY_LOCAL_MACHINE\SYSTEM
"DisablePasswordChange"=dw
"RequireSignOrSeal"=dword:
"RequireStrongKey"=dword:0
;Turn off last user logged in stuff.
[HKEY_LOCAL_MACHINE\SOFTWA
"dontdisplaylastusername"=
;Disable the security center stuff annoyances
; [HKEY_LOCAL_MACHINE\SYSTEM
; "Start"=dword:00000003
; Speedup settings
[HKEY_LOCAL_MACHINE\SOFTWA
"SlowLinkDetectEnabled"=dw
"DeleteRoamingCache"=dword
"WaitForNetwork"=dword:000
"CompatibleRUPSecurity"=dw
; Can drive you nuts
[HKEY_LOCAL_MACHINE\SOFTWA
"EnableLUA"=dword:00000000
"LocalAccountTokenFilterPo
;Stupid keys that make the windows 7 sysprep crap out.
[HKEY_LOCAL_MACHINE\SYSTEM
"RestartSetup"=dword:00000
"SetupType"=dword:00000000
"SystemSetupInProgress"=dw
"SetupPhase"=dword:0000000
"CmdLine"=""
"OOBEInProgress"=dword:000
__________________________
And then setting "RequireSignOrSeal"=dword:
__________________________
For some reason though it did not map my H:\ drive to home directory, although I can access all the shares without issue.
ASKER
"the trust relationship between the workstation and the primary domain controller failed"