When i do "net ads join" with non admin user in 2008 server im unable to join samba to 2008 ADS domain. But im able to join windows vista machine to domain with same user.
Created attachment 3664 [details] Network Trace
Created attachment 3665 [details] Debug Level 10 Logs
Created attachment 3666 [details] smb.conf file
The SMB signaturesa are good. The failure is the set_userinfo2: rpc_api_pipe: Remote machine ENG2K8SMB.2k8.com pipe \samr fnum 0x4004 returned 8 bytes. 000000 samr_io_r_set_userinfo2 0000 status: NT_STATUS_ACCESS_DENIED How are you pre-creating the account in AD and delegating the rights to join the machine to the domain? If the network trace you uploaded is not from the Vista client's successful domain join, would you mind send us one of those traces as well? Thanks.
Ok, just re-tested with 3.0.32 and w2k8, joining works fine with non-admin user, as long as the machine account doesn't exist already in the domain (which in your logs, is the case). Can you delete the old machine account and retry?
Created attachment 3667 [details] Network capture Network capture between vista and 2k8
(In reply to comment #6) > Created an attachment (id=3667) [edit] > Network capture > > Network capture between vista and 2k8 Hm, this trace did not have any DCERPC packets in it, just some CLDAP and Mailslot and DNS traffic. Can you send us the correct trace ? And was this failed join attempt from a pre-recreated machine account ?
Could not reproduce and got no additional info, so closing. Please reopen if you still see an issue here.