I am attempting to set up a 10.4 box as a PDC for my local domain.
Here's what I have:
DNS is good (resolves on both client and server)
NetBIOS / WINS is working (resolves short WINS names on both client and server)
Basic file sharing works, with a user login.
However, when I try to join the domain I get this:
[2005/09/08 14:01:25, 1] auth_ods.c:opendirectory_auth_user(208) User "domer" authenticated successfully with "dsAuthMethodStandard:dsAuthSMBNTKey" :) [2005/09/08 14:01:25, 1] pdb_ods.c:odssam_getgrgid(2867) odssam_getgrgid: gid [20] [2005/09/08 14:01:25, 1] pdb_ods.c:odssam_getgrgid(2867) odssam_getgrgid: gid [80] [2005/09/08 14:01:50, 1] auth_ods.c:opendirectory_auth_user(208) User "domer" authenticated successfully with "dsAuthMethodStandard:dsAuthSMBNTKey" :) [2005/09/08 14:01:50, 1] pdb_ods.c:odssam_getgrgid(2867) odssam_getgrgid: gid [20] [2005/09/08 14:01:50, 1] pdb_ods.c:odssam_getgrgid(2867) odssam_getgrgid: gid [80] [2005/09/08 14:01:50, 0] /SourceCache/samba/samba-92.9/samba/source/rpc_server/srv_samr.c:api_samr_set_userinfo(786) api_samr_set_userinfo: Unable to unmarshall SAMR_Q_SET_USERINFO. [2005/09/08 14:01:50, 0] /SourceCache/samba/samba-92.9/samba/source/libsmb/smbencrypt.c:decode_pw_buffer(539) decode_pw_buffer: incorrect password length (-378762001). [2005/09/08 14:01:50, 0] /SourceCache/samba/samba-92.9/samba/source/libsmb/smbencrypt.c:decode_pw_buffer(540) decode_pw_buffer: check that 'encrypt passwords = yes'
of course, in smb.conf, encrypt passwords = yes. (below)
[global]
encrypt passwords = yes
workgroup = MSUTHR
display charset = UTF-8-MAC
security = user
deadtime = 5
guest account = unknown
add machine script = /usr/bin/opendirectorypdbconfig -c create_computer_account -r %u -n "/LDAPv3/127.0.0.1"
client ntlmv2 auth = yes
preferred master = yes
defer sharing violations = no
allow trusted domains = no
netbios name = MSUTHRSFS
lanman auth = YES
vfs objects = darwin_acls
wins support = yes
brlm = yes
max smbd processes = 0
server string = Student File Server
logon drive = H:
os level = 8
domain logons = yes
admin users = @admin
passdb backend = opendirectorysam guest
dos charset = CP437
unix charset = UTF-8-MAC
auth methods = guest opendirectory
local master = yes
domain master = yes
map to guest = Never
use spnego = yes
printer admin = @admin, @staff
ntlm auth = YES
log level = 1
Machine has been added to opendirectory, as has the user. User has full permission to admin anything. Problem presists using the 'diradmin' account as well. User account logs in fine locally.
I've found many references to this problem being an issue with samba, but nothing on what I can do to fix it. The winXP machine has had the registry patched to not require certificates for this (as mentioned on the samba site).
Any ideas would be wonderful - thanks in advance
~jon