[PLUTO-help] Aiuto: join client to samba PDC

ivan re re.ivan a gmail.com
Mar 10 Feb 2009 08:31:34 CET 

Ho installato ubuntu 8.04 su un server hp.

Dopo aver scaricato samba, letto parte del mauale ufficiale, nonchè i
manuali di openskill ho configurato samba come PDC.
ho creato un utente test ed uno root e con smbpasswd -a nomeutente ho
definito anche la passowrd per samba (identica a quella UNIX)

in smb.con ho aggiunto la scritta add machine script= ... per far si che i
vari client creino ognuno una loro entry automaticamente.

Ho configurato le impostazioni per il client winxp pro sp3 come da manuali

quando provo a fare il join di questa macchina con il dominio ottengo:
Il computer non ha avuto accesso al dominio a causa del seguente errore:
impossibile trovare il nome utente.


se sul server eseguo il comando smbclient -L localhost -u test (o root),
immetto la password ed il tutto funziona.


smbpasswd -a root l'ho già fatto ... ma senza risultati.
smb.conf:

[global]
    workgroup = ORIONE
    server string = %h server (Samba, Ubuntu)
    interfaces = 127.0.0.0/8, eth0
    bind interfaces only = Yes
    passdb backend = tdbsam
    passwd program = /usr/bin/passwd %u
    passwd chat = *New*UNIX*password* %n\n *Retype*new*UNIX*password* %n\n
*Enter* new*UNIX*password* %n\n *Retype*new*UNIX*password* %n\n *passwd:
*all* authentication*tokens*updated*successfully*
    unix password sync = Yes
    log level = 10
    syslog = 0
    log file = /var/log/samba/%m.log
    max log size = 1500
    name resolve order = lmhosts host bcast
    socket options = TCP_NODELAY  IPTOS_LOWDELAY SO_RCVBUF=8192
SO_SNDBUF=8192
    add user script = /usr/sbin/useradd -m %u
    delete user script = /usr/sbin/userdel -r %u
    add group script = /usr/sbin/groupadd %g
    delete group script = /usr/sbin/groupdel %g
    add user to group script = /usr/sbin/usermod -G %g %u
    add machine script = /usr/sbin/useradd -d /dev/null -g machines -s
/bin/false -M %u
    logon script = tutti.bat
    logon drive = H:
    domain logons = Yes
    os level = 65
    preferred master = Yes
    domain master = Yes
    dns proxy = No
    usershare allow guests = Yes
    panic action = /usr/share/samba/panic-action %d
    valid users = root, ivan
    hosts allow = 127.0.0.1, 192.168.1.0/24
    hide unreadable = Yes

[homes]
    comment = Home Directories
    path = /home/user/%u
    valid users = %S
    read only = No
    create mask = 0700
    directory mask = 0700
    browseable = No

[netlogon]
    comment = Network Logon Service
    path = /home/samba/netlogon
    valid users = %U
    admin users = Administrator
    browseable = No

[profiles]
    comment = Users profiles
    path = /home/samba/profiles
    create mask = 0600
    directory mask = 0700
    browseable = No


pdbedit -L -v -u root
INFO: Current debug levels:
  all: True/10
  tdb: False/0
  printdrivers: False/0
  lanman: False/0
  smb: False/0
  rpc_parse: False/0
  rpc_srv: False/0
  rpc_cli: False/0
  passdb: False/0
  sam: False/0
  auth: False/0
  winbind: False/0
  vfs: False/0
  idmap: False/0
  quota: False/0
  acls: False/0
  locking: False/0
  msdfs: False/0
  dmapi: False/0
doing parameter syslog = 0
doing parameter panic action = /usr/share/samba/panic-action %d
doing parameter security = user
doing parameter encrypt passwords = true
doing parameter passdb backend = tdbsam
doing parameter valid users = root ivan
doing parameter unix password sync = yes
doing parameter passwd program = /usr/bin/passwd %u
doing parameter passwd chat = *New*UNIX*password* %n\n
*Retype*new*UNIX*password* %n\n *Enter* new*UNIX*password* %n\n
*Retype*new*UNIX*password* %n\n *passwd: *all*
authentication*tokens*updated*successfully*
doing parameter pam password change = no
doing parameter domain logons = yes
doing parameter preferred master = yes
doing parameter local master = yes
doing parameter os level = 65
doing parameter logon path = \\%N\%U\profile
doing parameter logon drive = H:
doing parameter logon home = \\%N\%U
doing parameter logon script = tutti.bat
doing parameter add user script = /usr/sbin/useradd -m %u
doing parameter delete user script = /usr/sbin/userdel -r %u
doing parameter add group script = /usr/sbin/groupadd %g
doing parameter delete group script = /usr/sbin/groupdel %g
doing parameter add user to group script = /usr/sbin/usermod -G %g %u
doing parameter add machine script = /usr/sbin/useradd -d /dev/null -g
machines -s /bin/false -M %u
doing parameter hosts allow = 127.0.0.1 192.168.1.0/24
doing parameter socket options = TCP_NODELAY  IPTOS_LOWDELAY SO_RCVBUF=8192
SO_SNDBUF=8192
doing parameter domain master = yes
doing parameter usershare allow guests = yes
doing parameter null passwords = no
doing parameter hide unreadable = yes
doing parameter hide dot files = yes
pm_process() returned Yes
lp_servicenumber: couldn't find homes
set_server_role: role = ROLE_DOMAIN_PDC
Attempting to register new charset UCS-2LE
Registered charset UCS-2LE
Attempting to register new charset UTF-16LE
Registered charset UTF-16LE
Attempting to register new charset UCS-2BE
Registered charset UCS-2BE
Attempting to register new charset UTF-16BE
Registered charset UTF-16BE
Attempting to register new charset UTF8
Registered charset UTF8
Attempting to register new charset UTF-8
Registered charset UTF-8
Attempting to register new charset ASCII
Registered charset ASCII
Attempting to register new charset 646
Registered charset 646
Attempting to register new charset ISO-8859-1
Registered charset ISO-8859-1
Attempting to register new charset UCS2-HEX
Registered charset UCS2-HEX
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Attempting to register passdb backend ldapsam
Successfully added passdb backend 'ldapsam'
Attempting to register passdb backend ldapsam_compat
Successfully added passdb backend 'ldapsam_compat'
Attempting to register passdb backend NDS_ldapsam
Successfully added passdb backend 'NDS_ldapsam'
Attempting to register passdb backend NDS_ldapsam_compat
Successfully added passdb backend 'NDS_ldapsam_compat'
Attempting to register passdb backend smbpasswd
Successfully added passdb backend 'smbpasswd'
Attempting to register passdb backend tdbsam
Successfully added passdb backend 'tdbsam'
Attempting to find an passdb backend to match tdbsam (tdbsam)
Found pdb backend tdbsam
pdb backend tdbsam has a valid init
Netbios name list:-
my_netbios_names[0]="BETELGEUSE"
Attempting to find an passdb backend to match tdbsam (tdbsam)
Found pdb backend tdbsam
pdb backend tdbsam has a valid init
tdbsam_open: successfully opened /var/lib/samba/passdb.tdb
pdb_set_username: setting username root, was
pdb_set_domain: setting domain ORIONE, was
pdb_set_nt_username: setting nt username , was
pdb_set_full_name: setting full name root, was
Home server: betelgeuse
pdb_set_homedir: setting home dir \\betelgeuse\root, was
pdb_set_dir_drive: setting dir drive H:, was NULL
pdb_set_logon_script: setting logon script tutti.bat, was
Home server: betelgeuse
pdb_set_profile_path: setting profile path \\betelgeuse\root\profile, was
pdb_set_workstations: setting workstations , was
grant_privilege: S-1-1-0
original privilege mask:
SE_PRIV  0x0 0x0 0x0 0x0
new privilege mask:
SE_PRIV  0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-548
original privilege mask:
SE_PRIV  0x0 0x0 0x0 0x0
new privilege mask:
SE_PRIV  0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-549
original privilege mask:
SE_PRIV  0x0 0x0 0x0 0x0
new privilege mask:
SE_PRIV  0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-550
original privilege mask:
SE_PRIV  0x0 0x0 0x0 0x0
new privilege mask:
SE_PRIV  0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-551
original privilege mask:
SE_PRIV  0x0 0x0 0x0 0x0
new privilege mask:
SE_PRIV  0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-544
original privilege mask:
SE_PRIV  0xff0 0x0 0x0 0x0
new privilege mask:
SE_PRIV  0xff0 0x0 0x0 0x0
account_policy_get: name: password history, val: 0
pdb_set_user_sid: setting user sid
S-1-5-21-2345715014-676501296-80902976-1000
pdb_set_user_sid_from_rid:
    setting user sid S-1-5-21-2345715014-676501296-80902976-1000 from rid
1000
tdbsam_close: Reference count is now 0.
Unix username:        root
NT username:
Account Flags:        [U          ]
User SID:             S-1-5-21-2345715014-676501296-80902976-1000
Finding user root
Trying _Get_Pwnam(), username as lowercase is root
Get_Pwnam_internals did find user [root]!
Primary Group SID:    S-1-5-21-2345715014-676501296-80902976-513
Full Name:            root
Home Directory:       \\betelgeuse\root
HomeDir Drive:        H:
Logon Script:         tutti.bat
Profile Path:         \\betelgeuse\root\profile
Domain:               ORIONE
Account desc:
Workstations:
Munged dial:
Logon time:           0
Logoff time:          never
Kickoff time:         never
Password last set:    lun, 09 feb 2009 22:55:04 CET
account_policy_get: name: minimum password age, val: 0
Password can change:  lun, 09 feb 2009 22:55:04 CET
account_policy_get: name: maximum password age, val: -1
Password must change: never
Last bad password   : 0
Bad password count  : 0
Logon hours         : FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
root at betelgeuse <https://lists.xsec.it/mailman/listinfo/samba-it>:~#

More information about the pluto-help mailing list