Bug 3489 - trubles with net rpc join command
trubles with net rpc join command
Product: Samba 3.0
Classification: Unclassified
Component: Domain Control
x86 Linux
: P3 normal
: none
Assigned To: Samba Bugzilla Account
Samba QA Contact
Depends on:
  Show dependency treegraph
Reported: 2006-02-07 04:22 UTC by Dez
Modified: 2006-04-10 07:28 UTC (History)
0 users

See Also:


Note You need to log in before you can comment on or make changes to this bug.
Description Dez 2006-02-07 04:22:06 UTC
Hi all.
i'm use samba 3.0.21b PDC on interfaces and with names ADM2 and ADMIN (test servers)
i'm exec command
net rpc join -I
and get error:
[2006/02/07 17:12:18, 0] passdb/secrets.c:get_trust_pw(536)                     
  get_trust_pw: could not fetch trust account password for trusted domain ADMIN 
[2006/02/07 17:12:18, 0] rpc_client/cli_pipe.c:get_schannel_session_key(2417)   
  get_schannel_session_key: could not fetch trust account password for domain 'A
[2006/02/07 17:12:18, 0] rpc_client/cli_pipe.c:cli_rpc_pipe_open_schannel(2641) 
  cli_rpc_pipe_open_schannel: failed to get schannel session key from server 192
.168.44.16 for domain ADMIN.                                                    
[2006/02/07 17:12:18, 0] utils/net_rpc_join.c:net_rpc_join_ok(61)               
  Error connecting to NETLOGON pipe. Error was NT_STATUS_CANT_ACCESS_DOMAIN_INFO
Unable to join domain ADMIN.            
in logs ADMIN's samba
[2006/02/07 17:14:21, 0] rpc_server/srv_netlog_nt.c:_net_auth_2(424)            
  _net_auth2: creds_server_check failed. Rejecting auth request from client ADM2                                       -SRV$
if i'm use samba 3.0.20b it's ok.
this is bug or error in config ?

        dos charset = CP866                                                     
        unix charset = CP866                                                    
        workgroup = ADM2                                                        
        netbios name = ADM2-SRV                                                 
        server string = adm2 pdc server                                         
        interfaces =                                               
        bind interfaces only = Yes                                              
        passdb backend = ldapsam:ldap://                              
        syslog = 0                                                              
        log file = /var/log/samba/tst/s_ADM2.%U++%m                             
        max log size = 0                                                        
        time server = Yes                                                       
        load printers = No                                                      
        show add printer wizard = No                                            
        add user script = /opt/services/samba/files/tools_adm2/smbldap-useradd -m "%u"                                                                          
        add machine script = /opt/services/samba/files/tools_adm2/smbldap-useradd -w "%u"                                                                       
        logon script = start.bat                                                
        logon path =                                                            
        logon drive = U:                                                        
        domain logons = Yes                                                     
        os level = 255                                                          
        lm announce = Yes                                                       
        preferred master = Yes                                 
        domain master = Yes                                    
        wins support = Yes                                     
        ldap admin dn = cn=dcroot,dc=info
        ldap delete dn = Yes                                   
        ldap group suffix = ou=Groups                          
        ldap idmap suffix = ou=Idmap                           
        ldap machine suffix = ou=Computers                     
        ldap passwd sync = Yes                                 
        ldap suffix = dc=info
        ldap ssl = no                                          
        ldap timeout = 5                                       
        ldap user suffix = ou=Users                            
        idmap uid = 10000-20000                                
        idmap gid = 10000-20000
        winbind use default domain = Yes

and analogy in ADMIN samba config

PS sorry for main english ;-)
Comment 1 Gerald (Jerry) Carter 2006-04-10 07:28:32 UTC
Make sure to use the -U option when joining.  I cannot reproduce
the issues you describe.  Seems more like a configuration issue than 
a bug IMO.