hello, linuxcaffe alum needs help with samba windows ad authentication
Timothy Hildred
timhildred-Re5JQEeQqe8AvxtiuMwx3w at public.gmane.org
Fri May 28 22:02:49 UTC 2010
glad to see i'm not the only one who is wound up by this. has anyone out
there seen what i described?
On Fri, May 28, 2010 at 5:50 PM, Lennart Sorensen <
lsorense-1wCw9BSqJbv44Nm34jS7GywD8/FfD2ys at public.gmane.org> wrote:
> On Fri, May 28, 2010 at 05:42:07PM -0400, Timothy Hildred wrote:
> > I am a long time employee of the linuxcaffe at harbord and grace where I
> > might have met some of you before. A mutual friend Jamon suggested i try
> > here for advice when configuring samba to authenticate with kerberos on
> > active directory. so here is my problem;
> > kinit Administrator gives me a ticket
> > net ads join -U Administrator gives me:
> > libsmb/smb_signing.c:(253) signing_good: BAD SIG: seq 1 Failed to join
> > domain: Access denied #
> >
> > however, when i do a kinit timadshare (which is a user i made in active
> > directory) i get a ticket and can join the realm.
> > Using short domain name -- RIGHT
> > Joined 'TIMADSHARE' to realm 'RIGHT.AD.SP.COM'
> >
> > wbinfo -u and -g both do what they ought, but neither getent group or
> passwd
> > do.
> >
> > i have been hacking at this for about a week now, and i think i might
> > explode. any suggestions?
>
> I wonder if kerberos was named after the hound of Hades for a reason... :)
>
> I haven't dealt with kerberos for 10 years. I remember it didn't make
> sense then either.
>
> --
> Len Sorensen
> --
> The Toronto Linux Users Group. Meetings: http://gtalug.org/
> TLUG requests: Linux topics, No HTML, wrap text below 80 columns
> How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://gtalug.org/pipermail/legacy/attachments/20100528/5d8e9212/attachment.html>
More information about the Legacy
mailing list