Win2003 DC Issue - Possible compatibility with Samba & Password Server

PB1856 · 20-Jan-2004, 12:13 PM #1

Presently have 2 Windows 2000 Domain Controllers, along with 2 newly added Windows 2003 Domain Controllers in my network. I have a Unix machine running Solaris 2.8 with samba-2.2.6, which is used to store all the users home directories.

So prior to any Win2003 servers being installed, all seemed to be working fine. A user would log on, his home directory would map automatically, no problems. I then built two new Win2003 DC’s and brought them into my network. They are running fine right now for the most part. But when I switch over FSMO roles to the new DC’s (to ultimately retire the Win2k DC’s) and change the “password server” setting in the smb.conf file on the unix machine to point to the 2003 DC with the PDC Emulator Role, the users can no longer gain access to their home directories. It prompts them for a user ID and password if they try to map the drive.

Here are the current settings in our smb.conf file

# Global parameters
[global]
workgroup = HUNTERGEO
server string = Samba Server
security = SERVER
encrypt passwords = Yes
password server = newjersey
password level = 8
log file = /scratch/samba/%m.log
log level = 2
max log size = 2500
printcap name = lpstat
os level = 2
domain master = Yes
dns proxy = No

With the suggestion of someone, we made the following changes to the above.
Domain Master = NO
Security = Domain
Wins Support = NO & Yes (Found conflicting info on this so tried both)
Wins Server = IP of my 2003 DC I installed WINS on
I also made a static mapping in WINS for the Unix server

Unfortunately, this did not work and we went back to the settings I mentioned above. So right now I have the PDC emulator role sitting on a Win2k DC, which works, until I can get it working with the 2003 DC’s.

Looking in the Samba log files, it appears that it is looking to samba for password authentication when I try to get the 2003 DC working.

I am a Windows Systems Administrator and my colleague is the Unix admin, so please forgive me if some of my unix terminology is a tad off. Thank you in advance for any help you can offer, as I am at a complete lost!!

Thank you!!

Pete

downtime · 20-Jan-2004, 03:31 PM #2

Have a look at the Microsoft Windows Services For Unix 3.5, it's here.
http://www.microsoft.com/windows/sfu/

kbstoikop · 20-Jan-2004, 04:16 PM #3

if you change security=user then most of your domain will be able to access their files but it will not update any password changes. Also samba v3.0 is suposed to have better pdc support.

Tag Cloud
access acer asus bios bsod crash desktop driver drivers error ethernet excel freeze games gaming hard drive hardware hdmi internet laptop malware memory missing monitor motherboard network printer problem ram random registry router slow software sound trojan ubuntu 11.10 uninstall usb video virus vista wifi windows windows 7 windows 7 32 bit windows 7 64 bit windows xp wireless xbox

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Search
Search for:

Find the solution to yourcomputer problem!

Find the solution to your
computer problem!