I have a 10.4.3 server that is brand new. We'd like to join it to our AD, share out directories to mac and windows users, have the windows machines authenticate automatically into the xserve, and be able to use AD accounts and groups in the ACL lists for the shares.
So far I have joined the server to the domain, issued the dsconfigad -enablesso command to join the kerberos realm, and verified that I can login to the physical box using my AD account. The role of the windows services is "domain member". In Workgroup Manager I can see the AD users and groups.
I can also use AFP to mount shares on macs running OSX client. Authentication works fine.
On the windows side, however, I can't do anything. When I do a \\servername I am prompted for a username and password. No combinations work. The samba log is full of authentication errors.
Looking through the Apple docs they do not explain this configuration at all so I am at a loss as to how to proceed. What do I need to do next?