Hi, > The kdc(s) is(are) defined in /etc/krb5.conf in the [realms] section. > Could you post your /etc/krb5.conf? After my signature. I also join my current smb.conf > Do you know which machines in your active directory setup are the domain > controllers? These machines will be the KDCs. Yes. Its FQDN is srv-dte.dte.ua.pt and the domain name is DTE. Its IP is 192.137.84.81 It's a Windows 2000 Server with Active Directory. I remember my data: My domain is dte.ua.pt; whatever xxx.dte.ua.pt means xxx is, therefore, the name of the machine. 1 - The domain server as described above; 2 - I'm trying to join a Linux Samba server to the DTE domain, i. e., to the Windows 2000 Server. 3 - This Linux server FQDN is tux.dte.ua.pt and its IP is 193.137.84.84 Thank you. Warm Regards, Mário Gamito -- krb5.conf: --------------------------------------- [logging] default = FILE:/var/log/krb5libs.log kdc = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log [libdefaults] default_realm = DTE.UA.PT dns_lookup_realm = false dns_lookup_kdc = false [realms] DTE.UA.PT = { kdc = dte.ua.pt:88 admin_server = dte.ua.pt:749 default_domain = DTE.UA.PT } [domain_realm] .dte.ua.pt = DTE.UA.PT dte.ua.pt = DTE.UA.PT .srv-dte.dte.ua.pt = DTE.UA.PT srv-dte.dte.ua.pt = DTE.UA.PT [kdc] profile = /var/kerberos/krb5kdc/kdc.conf [appdefaults] pam = { debug = false ticket_lifetime = 36000 renew_lifetime = 36000 forwardable = true krb4_convert = false } ------------------------------------ smb.conf: ------------------------------------- [global] workgroup = DTE netbios name = SRV-DTE-TUX password server = 193.137.84.81 #realm = DTE.UA.PT #os level = 4 #preferred master = yes #domain master = yes local master = yes KDC server = 193.137.84.81 security = ADS encrypt passwords = yes domain logons = yes smb passwd file = /usr/local/samba/lib/passwd wins support = no #dns proxy = yes #wins server = 193.136.80.7 wins server = 193.136.172.4 wins proxy = yes unix char set = ISO-8859-15 log file = /var/log/samba/%m [homes] comment = Areas pessoais. browseable = yes read only = no guest ok = no create mask = 600 directory mask = 700 [Docentes] comment = Area partilhada para Docentes. path = /home/Docentes writeable = yes guest ok = no force group = profs create mask = 660 directory mask = 770 [Secretaria] comment = Area partilhada para os funcionário da secretaria. path=/home/Secretaria writeable = yes guest ok = no force group = secretaria create mask = 660 directory mask = 770 [Comum] comment = Area partilhada para funcionários e Docentes. path = /home/Comum writeable = yes guest ok = no create mask = 666 directory mask = 777