Error Was Nt_status_cant_access_domain_info Unable To Join Domain
Contents |
integrated server Issues related to configuring your network Post Reply Print view Search Advanced search 2 nt_status_cant_access_domain_info samba posts • Page 1 of 1 andreiv3103 Posts: 12 Joined: get_schannel_session_key: could not fetch trust account password for domain 2009/10/26 10:21:14 Samba on AD integrated server Quote Postby andreiv3103 » 2014/09/24 10:33:53 I followed this unable to open the domain client session to machine tutorial http://jhrozek.livejournal.com/3581.html to join my CentOS 6.5 server to a Windows 2008 R2 AD domain.It worked perfectly, I can do su domain_user or log in through
Failed To Get Schannel Session Key From Server
ssh with domain account.But samba seems to be unable to authenticate users through sssd.I installed samba and created a minimal smb.conf like this:[global]workgroup = localdomainserver string = Samba Server Version %vsecurity = domainencrypt passwords = yespassdb backend = tdbsamrealm = localdomain.com# Not interested in printersload printers = nocups options = rawprintcap name spnego login failed nt_status_cant_access_domain_info = /dev/null# logs split per machinelog file = /var/log/samba/log.%m# max 50KB per log file, then rotatemax log size = 50# ############ THE SHARES ############ #[homes]comment = Home Directoriesbrowseable = nowritable = yesThis samba config works perfectly with centos 7 and realmd, but it seems not to work with centos 6.5 and the method mentioned above.Could it be the samba version?On Centos 6.5 is Version 3.6.9-169.el6_5On Centos 7 is Version 4.1.1The error is:connect_to_domain_password_server: unable to open the domain client session to machine DC.LOCALDOMAIN.COM. Error was : NT_STATUS_CANT_ACCESS_DOMAIN_INFO.Thanks. Top andreiv3103 Posts: 12 Joined: 2009/10/26 10:21:14 Re: Samba on AD integrated server Quote Postby andreiv3103 » 2014/09/24 11:44:14 I just solved my problem.Added the following line to smb.conf: kerberos method = secrets and keytabAnd now it works! I don't really know why, but this makes it work. Top Display posts from previous: All posts1 day7 days2 weeks1 month3 months6 months1 year Sort by AuthorPost timeSubject AscendingDescending Post
by: [ date ] [ thread ] [ subject ] [ author ] 1. what kind of domain controller you are trying to join ?? 2.. does the machine that you are trying to join has samba domain password server not available valid A and PTR records in the dns 3. before trying to join the
Samba Ldap
domain did you try the following kinit [principal] and checked if the ticket is created by the principal name or not using
Nt_status_access_denied
"klist" 4. kindly send krb configuration + samba configuration reagrds On Thu, Feb 11, 2010 at 7:13 AM, Annada Prasana Prusty
for Help Receive Real-Time Help Create a Freelance Project Hire for a Full Time Job Ways to Get Help Ask a Question Ask for Help Receive Real-Time Help Create https://www.experts-exchange.com/questions/24360680/Cannot-join-Fedora-box-to-domain.html a Freelance Project Hire for a Full Time Job Ways to Get Help Expand Search Submit Close Search Login Join Today Products BackProducts Gigs Live Careers Vendor Services Groups Website Testing Store Headlines Experts Exchange > Questions > Cannot join Fedora box to domain Want to Advertise Here? Solved Cannot join Fedora box to domain Posted on 2009-04-27 Linux unable to Distributions Active Directory Server Software 1 Verified Solution 2 Comments 1,202 Views Last Modified: 2013-12-06 Hi all. I am attempting to run the following join command as su, then i get the below error. [root@epicfedora01 samba]# net rpc join -S epic16 -U xhutchinson Enter xhutchinson's password: [2009/04/28 16:30:36, 0] rpc_client/cli_pipe.c:get_schannel_session_key_common(2449) get_schannel_session_key: could not fetch trust account password for error was nt_status_cant_access_domain_info domain 'EPICENTRE' [2009/04/28 16:30:36, 0] utils/net_rpc_join.c:net_rpc_join_ok(87) net_rpc_join_ok: failed to get schannel session key from server epic16 for domain EPICENTRE. Error was NT_STATUS_CANT_ACCESS_DOMAIN_INFO Unable to join domain EPICENTRE. [root@epicfedora01 samba]# thanks, Xavier. 0 Question by:locdang Facebook Twitter LinkedIn Google LVL 5 Best Solution byrandom_ru Xavier, 'First, make sure kerberos is installed: # rpm -qa | grep krb this should return at least 3 packages: krb5-devel, krb5-libs and krb5-workstation Next, make sure the ldap development libraries Go to Solution 2 Comments LVL 20 Overall: Level 20 Linux Distributions 8 Server Software 8 Active Directory 4 Message Expert Comment by:Daniel McAllister2009-05-15 Sounds like your domain controller doesn't like you.... More specifically, there may be a firewall or rule on the AD server that is blocking your request. (Of course, I am ASSUMING that your username & password correspond to a user on the domain that has domain admin rights). Let me know what you find! Dan IT4SOHO 0 LVL 5 Overall: Level 5 Linux Distributions 2 Active Directory 1 Server Software 1 Message Accepted Solution by: