Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 287
  • Last Modified:

Help! Cannot get Samba to work!

I am having a nightmare getting a new Solaris server to join a domain in order to access some samba shares.


[global]
	workgroup = OURDOMAIN
	realm = INTERNAL.OURDOMAIN.COM
	server string = Maginus SUN2014, Samba %v
	interfaces = 172.XX.X.X
	security = ADS
	password server = *
	server signing = auto
  	client signing = auto
	map to guest = Bad Password
	guest account = web
	preferred master = Auto
	wins server = 172.XX.X.X, 172.XX.X.X, 172.XX.X.X
	idmap uid = 10000-20000
	idmap gid = 10000-20000
	template shell = /bin/bash
	winbind enum users = Yes
	winbind enum groups = Yes

[home_report]
	comment = Home Report for Res Bulk Pick Lists
	path = /home/report
	guest only = Yes
	guest ok = Yes

Open in new window


krb5.conf
[libdefaults]
        default_realm = INTERNAL.OURDOMAIN.COM

[realms]
        INTERNAL.OURDOMAIN.COM = {
                kdc = DC1.INTERNAL.OURDOMAIN.COM
                kdc = DC2.INTERNAL.OURDOMAIN.COM
                kdc = DC3.INTERNAL.OURDOMAIN.COM              
                admin_server = DC1.INTERNAL.OURDOMAIN.COM
        }

[domain_realm]
	OURDOMAIN = INTERNAL.OURDOMAIN.COM

[logging]
        default = FILE:/var/krb5/kdc.log
        kdc = FILE:/var/krb5/kdc.log
	kdc_rotate = {

# How often to rotate kdc.log. Logs will get rotated no more
# often than the period, and less often if the KDC is not used
# frequently.

		period = 1d

# how many versions of kdc.log to keep around (kdc.log.0, kdc.log.1, ...)

		versions = 10
	}

[appdefaults]
	kinit = {
		renewable = true
		forwardable= true
	}
	gkadmin = {
		help_url = http://docs.sun.com:80/ab2/coll.384.1/SEAM/@AB2PageView/1195
	}

Open in new window


Every time I try the net ads join -U administrator command, I get:

# net ads join -U administrator
Enter administrator's password:
[2014/09/25 08:29:27.672173,  0] libads/kerberos.c:333()
  kerberos_kinit_password administrator@INTERNAL.OURDOMAIN.COM failed: Preauthentication failed
Failed to join domain: failed to connect to AD: Preauthentication failed

I am a newbie to unix/samba and I am learning as I go, so your help is appreciated!
0
fieldj
Asked:
fieldj
  • 3
1 Solution
 
fieldjAuthor Commented:
Woohoo, our distributor finally got it working by updating Samba and starting from scratch.

Only odd thing is myself and one other user (in my department) still cannot browse to the shares, everyone else is OK.  Any ideas what might cause this?
0
 
fieldjAuthor Commented:
It looks like this was a cached credential problem to do with a mapped drive.

I am not entirely sure what the problem was but it seems to have resolved itself with time.
0
 
fieldjAuthor Commented:
resolved with help of external support
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now