Samba и AD 2003

[vasilastr]

Доброе утро!

При добавление freebsd в домен,(smb.conf,krb5.conf настроины билет выдает )

командой

Код: Выделить всё

net ads join -U admin

выдает следующее

Код: Выделить всё

free# kinit admin@AIB.RU
admin@AIB.RU's Password:
kinit: NOTICE: ticket renewable lifetime is 1 week
free# net ads join -U admin
admin's password:
Using short domain name -- AIB
Failed to set servicePrincipalNames. Please ensure that
the DNS domain of this server matches the AD domain,
Or rejoin with using Domain Admin credentials.
Deleted account for 'FREE' in realm 'AIB.RU'
Failed to join domain: Type or value exists

Потскажите на что он ругается??

[Хостинг HostFood.ru]

Тарифы на хостинг в России, от 12 рублей: https://www.host-food.ru/tariffs/hosting/
Тарифы на виртуальные сервера (VPS/VDS/KVM) в РФ, от 189 руб.: https://www.host-food.ru/tariffs/virtualny-server-vps/
Выделенные сервера, Россия, Москва, от 2000 рублей (HP Proliant G5, Intel Xeon E5430 (2.66GHz, Quad-Core, 12Mb), 8Gb RAM, 2x300Gb SAS HDD, P400i, 512Mb, BBU):
https://www.host-food.ru/tariffs/vydelennyi-server-ds/
Недорогие домены в популярных зонах: https://www.host-food.ru/domains/

[vasilastr]

А если вот такая команда net ads join -U admin@aib.ru то выдает вот это

Код: Выделить всё

net ads join -U admin@aib.ru
admin@aib.ru's password:
[2008/10/09 09:39:40, 0] libsmb/cliconnect.c:cli_session_setup_spnego(859)
  Kinit failed: Message stream modified
Failed to join domain: Logon failure

[vasilastr]

Что делать куда копать?

[Alex Keda]

Код: Выделить всё

uname -a

Код: Выделить всё

pkg_info | grep samba

конфиг самбы - в студию.
=======
до кучи вывод

Код: Выделить всё

ping имя_виндового_домена_целиком

Код: Выделить всё

ping короткое_имя_виндового_домена

с FreeBSD.
========
а вообще - смотреть надо в логи. а не ждать у моря погоды

[vasilastr]

FreeBSD free 6.4-PRERELEASE FreeBSD 6.4-PRERELEASE #0: Wed Oct 1 19:08:20 MSD 2008 vasil@free:/usr/obj/usr/src/sys/CUSTOM i386

samba-3.0.32_1,1 A free SMB and CIFS client and server for UNIX

[global]
dos charset = cp866
unix charset = koi8-r
display charset = cp866

workgroup = AIB
realm = AIB.RU
netbios name = free
server string = free
security = ADS
auth methods = winbind
map to guest = Bad User
password server = server.aib.ru
printer admin = root
client NTLMv2 auth = Yes
log file = /var/log/samba/log.%m
max log size = 50
client signing = Yes
disable spoolss = Yes
preferred master = No
local master = No
domain master = No
dns proxy = No
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind use default domain = Yes
inherit acls = Yes
hosts allow = 10.7.1.0/255.255.255.0
map acl inherit = Yes
case sensitive = No
nt acl support = yes
os level = 10
socket options = TCP_NODELAY
load printers = yes
# printing = cups
# $ printcap name = /etc/printcap
guest account = nobody
guest account = nobody
guest ok = yes
# debug level = 3
wins server = 10.7.1.1

#[printers]
# comment = All Printers
# path = /var/spool/samba
# printable = Yes
# browseable = No
# use client driver = yes
# public = yes

[tmp]
comment = Temporary file space
path = /tmp
read only = No
create mask = 0666
create mode = 666
directory mode = 666
directory mask = 0777
guest ok = Yes

[films]
comment = Films, films, films
path = /usr/sha
read list = "@AIB\Domain Users"
write list = "@AIB\Domain Admins"
read only = No
create mode = 666
directory mode = 666
create mask = 0666
directory mask = 0777


free# ping aib.ru
ping: cannot resolve aib.ru: No address associated with name
free# ping server.aib.ru
PING server.aib.ru (10.7.1.1): 56 data bytes
64 bytes from 10.7.1.1: icmp_seq=0 ttl=128 time=0.403 ms
64 bytes from 10.7.1.1: icmp_seq=1 ttl=128 time=0.374 ms
64 bytes from 10.7.1.1: icmp_seq=2 ttl=128 time=0.403 ms

[Alex Keda]

сообщение оформите.

[vasilastr]

Самба конфиг

[vasilastr]

uname -a

Код: Выделить всё

FreeBSD free 6.4-PRERELEASE FreeBSD 6.4-PRERELEASE #0: Wed Oct 1 19:08:20 MSD 2008 vasil@free:/usr/obj/usr/src/sys/CUSTOM i386

pkg_info | grep samba

Код: Выделить всё

samba-3.0.32_1,1 A free SMB and CIFS client and server for UNIX

Самба конф

• [global]
  dos charset = cp866
  unix charset = koi8-r
  display charset = cp866
  
  workgroup = AIB
  realm = AIB.RU
  netbios name = free
  server string = free
  security = ADS
  auth methods = winbind
  map to guest = Bad User
  password server = server.aib.ru
  printer admin = root
  client NTLMv2 auth = Yes
  log file = /var/log/samba/log.%m
  max log size = 50
  client signing = Yes
  disable spoolss = Yes
  preferred master = No
  local master = No
  domain master = No
  dns proxy = No
  idmap uid = 10000-20000
  idmap gid = 10000-20000
  winbind use default domain = Yes
  inherit acls = Yes
  hosts allow = 10.7.1.0/255.255.255.0
  map acl inherit = Yes
  case sensitive = No
  nt acl support = yes
  os level = 10
  socket options = TCP_NODELAY
  load printers = yes
  # printing = cups
  # $ printcap name = /etc/printcap
  guest account = nobody
  guest account = nobody
  guest ok = yes
  # debug level = 3
  wins server = 10.7.1.1
  
  #[printers]
  # comment = All Printers
  # path = /var/spool/samba
  # printable = Yes
  # browseable = No
  # use client driver = yes
  # public = yes
  
  [tmp]
  comment = Temporary file space
  path = /tmp
  read only = No
  create mask = 0666
  create mode = 666
  directory mode = 666
  directory mask = 0777
  guest ok = Yes
  
  [films]
  comment = Films, films, films
  path = /usr/sha
  read list = "@AIB\Domain Users"
  write list = "@AIB\Domain Admins"
  read only = No
  create mode = 666
  directory mode = 666
  create mask = 0666
  directory mask = 0777

[vasilastr]

Разобрался зашол Free в домен но DNS зону не видет

Код: Выделить всё

free# nslookup
> 10.7.1.2
Server:         10.7.1.1
Address:        10.7.1.1#53

** server can't find 2.1.7.10.in-addr.arpa.: NXDOMAIN
>