Did you add the workstation account using smbldap-adduser -w? Here is the result from an ldapsearch for a workstation in a domain called FORETELL. The PDC is a samba server (running on OpenBSD, setup using only packages from the OpenBSD CD or downloaded from ftp://mirror.arcticnetwork.ca/pub/OpenBSD/). and I use samba-ldap
ldapsearch for workstation FTL37 # ldapsearch -x -W -D "cn=Manager,dc=foretell,dc=ca" cn=ftl37$ Enter LDAP Password: # extended LDIF # # LDAPv3 # base <> with scope subtree # filter: cn=ftl37$ # requesting: ALL # # ftl37$, Computers, foretell.ca dn: uid=ftl37$,ou=Computers,dc=foretell,dc=ca objectClass: top objectClass: inetOrgPerson objectClass: posixAccount objectClass: sambaSamAccount cn: ftl37$ sn: ftl37$ uid: ftl37$ uidNumber: 1006 gidNumber: 515 homeDirectory: /dev/null loginShell: /bin/false description: Computer gecos: Computer sambaSID: S-1-5-21-263555819-462812047-1274083732-5000 sambaPrimaryGroupSID: S-1-5-21-263555819-462812047-1274083732-5001 displayName: Virtual Machine - FTL37 sambaPwdMustChange: 2147483647 sambaPasswordHistory: 00000000000000000000000000000000000000000000000000000000 00000000 sambaAcctFlags: [UW ] sambaPwdCanChange: 1164913523 sambaNTPassword: DDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDD sambaPwdLastSet: 1164913523 # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 On Fri, 2006-15-12 at 11:30 +0100, Dr. Harry Knitter wrote: > I have set up samba and openldap. Openldap was populated with smbldap-tools. > Either samba and openldap run fine and I can access my samba shares from a > Windows client in a peer-to-peer connection. The logs show me that the > authentication is done via ldap. > However, when I try to add a Windows box to the samba domain I get the error > message "Username not found" on my Windows client. The logs show that > authentication of administrator (root) succeeds. > The machine account is added to the ldap when trying to join the machine to > the domain, however, only as posixAccount. It seems to me that the second > step, i.e. adding the sambaSAMAcount to this machine (posix) account is not > successful. > Does somebody have any hints for me how to get my clients into the samba > domain? > > Thanks > > Harry > -- Vijay Sankar, M.Eng., P.Eng. ForeTell Technologies Limited 59 Flamingo Avenue, Winnipeg, MB, Canada R3J 0X6 Phone: 204 885 9535, E-Mail: [EMAIL PROTECTED]
