Hi,
The kdc(s) is(are) defined in /etc/krb5.conf in the [realms] section. Could you post your /etc/krb5.conf?
After my signature. I also join my current smb.conf
Do you know which machines in your active directory setup are the domain controllers? These machines will be the KDCs.
Yes. Its FQDN is srv-dte.dte.ua.pt and the domain name is DTE. Its IP is 192.137.84.81 It's a Windows 2000 Server with Active Directory.
I remember my data: My domain is dte.ua.pt; whatever xxx.dte.ua.pt means xxx is, therefore, the name of the machine.
1 - The domain server as described above;
2 - I'm trying to join a Linux Samba server to the DTE domain, i. e., to the Windows 2000 Server.
3 - This Linux server FQDN is tux.dte.ua.pt and its IP is 193.137.84.84
Thank you.
Warm Regards, Mário Gamito
--
krb5.conf: --------------------------------------- [logging] default = FILE:/var/log/krb5libs.log kdc = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log
[libdefaults] default_realm = DTE.UA.PT dns_lookup_realm = false dns_lookup_kdc = false
[realms] DTE.UA.PT = { kdc = dte.ua.pt:88 admin_server = dte.ua.pt:749 default_domain = DTE.UA.PT }
[domain_realm] .dte.ua.pt = DTE.UA.PT dte.ua.pt = DTE.UA.PT .srv-dte.dte.ua.pt = DTE.UA.PT srv-dte.dte.ua.pt = DTE.UA.PT
[kdc] profile = /var/kerberos/krb5kdc/kdc.conf
[appdefaults] pam = { debug = false ticket_lifetime = 36000 renew_lifetime = 36000 forwardable = true krb4_convert = false } ------------------------------------
smb.conf: ------------------------------------- [global] workgroup = DTE netbios name = SRV-DTE-TUX password server = 193.137.84.81 #realm = DTE.UA.PT #os level = 4 #preferred master = yes #domain master = yes local master = yes KDC server = 193.137.84.81 security = ADS encrypt passwords = yes
domain logons = yes
smb passwd file = /usr/local/samba/lib/passwd
wins support = no #dns proxy = yes #wins server = 193.136.80.7 wins server = 193.136.172.4 wins proxy = yes
unix char set = ISO-8859-15
log file = /var/log/samba/%m
[homes] comment = Areas pessoais. browseable = yes read only = no guest ok = no create mask = 600 directory mask = 700
[Docentes] comment = Area partilhada para Docentes. path = /home/Docentes writeable = yes guest ok = no force group = profs create mask = 660 directory mask = 770
[Secretaria] comment = Area partilhada para os funcionário da secretaria. path=/home/Secretaria writeable = yes guest ok = no force group = secretaria create mask = 660 directory mask = 770
[Comum] comment = Area partilhada para funcionários e Docentes. path = /home/Comum writeable = yes guest ok = no create mask = 666 directory mask = 777