As a total linux noob and a stubborn type who (usually) figures it out, I have now spent over 90 hours trying to make Samba (3.0.23c-2.el5.2.0.2) running on CentOS 5 into a PDC and fileserver. After over 10 attempts of starting (again) from scratch, I now have 1: gray hair; 2. suicidal tendencies; 3. an ulcer; and 4. a complete and successful understanding of Samba - _NOT_! I keep reaching the magical point where, when i try to join a windows machine (XP or 2003) to the domain, and enter the username (root) and PW, I get "permission denied". If I use a different username, or err on the PW, i get invalid user, which inspires me and tells me that at least I've got something right (i figure if she acknowledges that she knows me, and refuses to talk to me because i'm a jerk, it's better than being an unknown I have added the clients manually both to the linux user group, and to the samba user group (at least i sincerely believe that I have). Honestly, If I had a 64bit version of 2003 lying around, i believe i'd have given up. This linux thing is hard on the self-esteem; I'm feeling as incompetent and ignorant as some of the people i help with their windows difficulties... Everything in my smb.conf was put together, step by step, from reading literally dozens of how-tos and tutorials and tips. CentOS ships with a GUI for configuring Samba (which is nice, but i don't really understand it) and another for configuring samba users (which _is_ nice). Battled to get Swat working, only to be sadly disappointed. (BTW, swat quit working; claims my username/PW are invalid... go figure. Any and all pointers , particularly those that a noob can understand, are _greatly_ appreciated. TIA Chris Here's the logfile for the machine I'm trying to bring onto the domain: [2007/08/21 21:26:45, 0] smbd/service.c:make_connection_snum(840) Can't become connected user! smb.conf: [global] workgroup = fsa netbios aliases = fsaserv, fsaserver server string = Samba PDC rodando CentOS # password server = 192.168.15.10 #passdb backend = ldapsam passdb backend = tdbsam encrypt passwords = yes ;ldap admin dn = cn=root,dc=fsa,dc=local ;ldap ssl = No ;start_tls = 389 ;ldap port = 389 ;ldap suffix = dc=fsa,dc=local ;ldap server = ldap.fsa.local unix password sync = yes pam password change = yes winbind uid = 10000-20000 winbind gid = 10000-20000 winbind use default domain = yes template homedir = /home/users/%U #obey pam restrictions = yes socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192 remote announce = 192.168.15.2 192.168.15.50 username map = /etc/samba/smbusers log level = 1 log file = /var/log/samba/%m.log max log size = 50 acl compatibility = winnt time server = yes server signing = Auto add user script = /usr/sbin/useradd %u add group script = /usr/sbin/groupadd %g set primary group script = /usr/sbin/groupadd %g logon path = \\%L\Profiles\%U logon drive = H: logon home = \\%L\users\%U\.profile ; security = user domain logons = yes os level = 64 preferred master = yes domain master = yes dns proxy = no wins support = Yes winbind cache time = 90 valid users = @sysadmin,chris admin users = @sysadmin # printer admin = @sysadmin nt acl support = No cups options = raw add machine script = /usr/sbin/useradd -d /dev/null -g samba-clients -s /bin/false -M %u # domain admin group = diego.p derly.j chris @sysadmin restrict anonymous = no max protocol = NT passwd program = /usr/bin/passwd passwd chat timeout = 10 ldap ssl = No [homes] comment = Home Directories path = /usr/local/samba/profiles read only = no create mask = 0600 directory mask = 0700 browseable = No [net logon] path = /home/samba/net logon guest ok = Yes [profiles] path = /home/samba/profiles read only = no create mask = 0600 directory mask = 0700 [printers] comment = All Printers path = /usr/spool/samba printable = Yes browseable = No [marketing] comment = Marketing path = /home/marketing valid users = chris, clara.s read only = no [provas] comment = Provas path = /home/studio/provas valid users = @sysadmin,chris,diego.p,elizeth.l,herlem.r,tamara.p,tatiana.d,tereza.a browseable = no case sensitive = no strict locking = no msdfs proxy = no [digitalloja] comment = Digital Loja path = /home/operacional/digitalloja valid users = chris, derly.j, diego.p read only = no [digitalstudio] comment = Digital Studio path = /home/operacional/digitalstudio valid users = chris, diego.p, gardennya read only = no [provas-Somente Leitura] comment = Provas - Somente Leitura path = /home/studio/provas valid users = chris, elizeth.l, gardennya, herlem.r, tamara.p, tatiana.d, tereza.a [normas] comment = Normas e Procedimentos path = /home/admin/normas guest ok = Yes [seller] comment = $eller path = /home/seller case sensitive = no strict locking = no msdfs proxy = no
