Authenticating Windows 2003 Server with Open Directory

[Anonymous]

Hi

I’m setting up an environment with a Mac OS X 10.4 server as the authentication server (LDAPv3). Windows XP workstations can bind to it without problems, but Windows 2003 Server seems to be a bit of a different story. I get this error message:

Note: This information is intended for a network administrator. If you are not your network’s administrator, notify the administrator that you received this information, which has been recorded in the file C:\WINDOWS\debug\dcdiag.txt.

The domain name TestMac might be a NetBIOS domain name. If this is the case, verify that the domain name is properly registered with WINS.

If you are certain that the name is not a NetBIOS domain name, then the following information can help you troubleshoot your DNS configuration.

The following error occurred when DNS was queried for the service location (SRV) resource record used to locate a domain controller for domain TestMac:

The error was: “DNS name does not exist.”
(error code 0x0000232B RCODE_NAME_ERROR)

The query was for the SRV record for _ldap._tcp.dc._msdcs.TestMac

Common causes of this error include the following:

– The DNS SRV records required to locate a domain controller for the domain are not registered in DNS. These records are registered with a DNS server automatically when a domain controller is added to a domain. They are updated by the domain controller at set intervals. This computer is configured to use DNS servers with following IP addresses:

192.168.1.58

– One or more of the following zones do not include delegation to its child zone:

TestMac
. (the root zone)

For information about correcting this problem, click Help.

This didn’t work from another 2003 server, either.
Pinging the auth server from 2003 server using its domain name works fine.
Looking at the configuration on the Mac side, both Zone Transfers and Recursion are set enabled.

How can I get 2003 server authenticate with Open Directory on a Mac box? Is there something obvious that could be wrong with the configuration?

Thanks!

[superrcat]

-Enable WINS on the Tiger server.

-If not already done, go into Server Admin->Windows->Logging and set to High.

-From Windows Server 2003, configure the network connection to include Tiger as a WINS server by going to All Programs->Accessories->Communications->Network Connections. Right-click on Local Area Connection->Properties. Choose Internet Protocol (TCP/IP) under the General tab, then Properties, then Advanced. Click the WINS tab, then Add and enter the IP address of the Tiger WINS server. Select Enable NetBIOS over TCP/IP, then OK.

-Make sure SMB signing is disabled from Windows 2003 Server (either by gpedit.msc or the Registry).

After this, I would try again and then check the Samba logs from the Tiger server if there are still issues.

[Author]

Posts