From owner-freebsd-questions Sun Jun 23 12:26:23 2002 Delivered-To: freebsd-questions@freebsd.org Received: from smtp02.wxs.nl (smtp02.wxs.nl [195.121.6.54]) by hub.freebsd.org (Postfix) with ESMTP id 130D237B42C for ; Sun, 23 Jun 2002 12:25:11 -0700 (PDT) Received: from cybertron.kruijff ([213.10.151.186]) by smtp02.wxs.nl (Netscape Messaging Server 4.15) with ESMTP id GY6B9X01.X7I; Sun, 23 Jun 2002 21:25:09 +0200 Date: Sun, 23 Jun 2002 21:25:59 +0200 From: Alex X-Mailer: The Bat! (v1.53d) Reply-To: freebsd-reply@akruijff.dds.nl X-Priority: 3 (Normal) Message-ID: <4934056590.20020623212559@dds.nl> To: Jens Rehsack Cc: Peter Ulrich Kruppa , questions@freebsd.org Subject: Re[2]: fascinating SAMBA-PDC problem In-Reply-To: <3D14C1C4.49F8867F@liwing.de> References: <20020622184124.W13276-100000@small.pukruppa.de> <3D14C1C4.49F8867F@liwing.de> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Dear Jens, Saturday, June 22, 2002, 8:28:20 PM, you wrote: JR> Peter Ulrich Kruppa wrote: >> >> On Sat, 22 Jun 2002, Jens Rehsack wrote: >> > Peter Ulrich Kruppa wrote: >> > > I am experimenting with my small home network to find out how to >> > > set up my Samba server as primary domain controller (PDC) for my >> > > Win2kPro system. >> > > >> > > Later - in real life - the PDC should be able to manage about 800 >> > > user accounts for 30 or 40 NT4 and Win2k machines. >> > > >> > > But back to my home problem: >> > > I was able to give a machine account to my Win2k computer, >> > > integrate it into my domain and create a domain-admin called >> > > root, which is identical to my server's root. >> > > root can log in and out, his profile is downloaded and uploaded >> > > to the server. >> > > Then I set up user accounts (with /stand/sysinstall and >> > > smbpasswd). >> > > When I try to log into these accounts from Win2k they seem to be >> > > authenticated, but after some seconds I receive an error, saying >> > > that the profile couldn't be downloaded and that the access is >> > > denied. >> > > >> > > Any ideas what could be done? >> > >> > There is a solution for this problem which is detailed described in samba >> > documentation and has to do with w2ksp2 and access control list. >> > Please do a "make patch" in /usr/ports/net/samba and search for some >> > documentation 'bout w2k, updates and so on ... >> Hmm, ..., yes I found it. >> They said, this was solved with samba2.2.5, so I >> installed the latest port: but the problem stayed. >> Out of an intuition I copied root's working profile and chown'ed >> it to another registered user. And he could log in. >> >> How this? Did I miss anything? JR> did you add "nt acl support = no" to your smb.conf? JR> I don't read sth. 'bout 2.2.5 in work/samba-2.2.5/docs/README.Win2kSP2 JR> but about 2.2.2. I came across this in a plain text file of samba 2.2.5 some where: 2.2.x - Integration with native Windows server management tools, including user account management and share management. 3.0 - "Domain Controller" - able to serve as a Windows NT PDC. Unicode on the wire support. X.XX - "Full Domain Integration" - allowing both PDC and BDC modes. -- Best regards, Alex The FreeBSD handbook www.freebsd.org/handbook The mailing lists http://www.freebsd.org/support.html#mailing-list How to get best results from the FreeBSD- questions mailing list http://www.freebsd.org/doc/en_US.ISO8859-1/articles/freebsd-questions/index.html Alternative: http://www.lemis.com/questions.html To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message