Server :: Error - Failed To Join Domain: Improperly Formed Account Name
Apr 7, 2010
I would like to join SLES server to Microsoft Server 2008 Active Directory to enable domain authentication when accessing samba shares. When I run
net ads join -U administrator
I get the following error
"Failed to join domain: Improperly formed account name."
I tried the same samba configuration on another server (OpenSuse 11.2) without any problem, so I think it is somehow connected with the Samba version, but I'm not sure. Has anybody experienced this behaviour?
the package versions on SLES 10 SP2 (x86_64) are following
I've setup my samba pdc with ldap, and I can see my shared files (public), which i think is an indication that my samba is working. But I can't seems to get my win2k8 machine to join my domain.
My domain admin is : root system admin: root password for both domain admin and system admin are the same The message that I get from Win2k8 when I try to join a domain is "The specified computer account could not be found. Contact an administrator to verify the account is in the domain. If the account has been deleted unjoin, reboot, and rejoin the domain"
I am running Red Hat Enterprise Server 6.0 I am having issues getting kerberos configured as a client to join a domain. Im getting below error message. "Failed to join domain: failed to connect to AD: KDC has no support for encryption type"
I've got a home server running Ubuntu Server 9.04 and several machines running Ubuntu Desktop (9.04 and 8.04) and Windows (XP, Vista and 7). Now what I want to do is to create a domain and directory server similar in function to Windows Server w/ AD and join my other machines to the domain, but am not sure where to start. I already have file shares with Samba but now I want to setup a domain.
I have a centos 5 server joined to a win2003 active directory domain. It's a virtual machine, so i had to sync the date (ntpdate) because it was 12 minutes different. It worked, but not ntlm authentication is not working anymore. If i rejoin the domain i get:
net ads join -U administrator@MYDOMAIN.COM administrator@MYDOMAIN.COM's password: Failed to set password for machine account (NT_STATUS_DISK_FULL) Failed to join domain: NT_STATUS_DISK_FULL
I'm having a problem getting likewise to connect to a Windows 2008 R2 server on our network.
Error: Lsass Error [code 0x00080047] 9502 (0x251E) DNS_ERROR_BAD_PACKET - A bad packet was received from a DNS server. Potentially the requested address does not exist. I have already read up on this a little bit. Both servers are within a minute of each other, so I am not concerned about server timing. I am not sure where to go from this point. Everything I have read seems to indicate that this should "just work".
I have too many problems to join my OpenSuSE 11.2 with Samba 3.5.4 in a Windows 2008 Active directory Forest (MYDOMAIN.LOCAL). I have updated Samba to 3.5.4 after read that default 11.2 version have too many bugs. Now, when I try to join the Domain MYDOMAIN.LOCAL via yast i have only an undebuggable error "unknown error". For yast, my Suse is joined but i'm unable to authenticate, i can't see "MYDOMAIN.LOCAL" at KDM login and if i try to lookup forest i have this error:
Code: wbinfo -u Error looking up domain users but i'm able to retrive ticket via kinit Code: # kinit Administrator Password for Administrator@MYDOMAIN.LOCAL:
have you a samba version tested against Active Directory 2008? can you link me the repository or help me to solve this?
I was wondering if there is any way to enable an MS Windows client that is otherwise unable of joining a domain to join a domain controlled by (open)SUSE? Is that inability only for joining a Windows based domain but a client that runs XP Home Edition or similar domain- incapable version of Windows could join a domain if it was controlled by Linux?Pardon my newbie style, but answer doesn't have to be detailed step-by-step, just yes/no answer with some pointers would do. I am not new to linux but new to network services... search engines weren't friendly when asked this question at the search bar...
using samba-3.4.5.I am trying for join samba server[on linux] to domain controller[windows2003], with security=domain in smb.conf. net rpc join -U Administrator%MyPassword But it fails with following debug messages.
rpccli_netlogon_set_trust_password: unable to setup creds (NT_STATUS_ACCESS_DENIED) ! rpc command function failed ! (NT_STATUS_ACCESS_DENIED) get_schannel_session_key: could not fetch trust account password for domain 'MYDOMAIN' net_rpc_join_ok: failed to get schannel session key for server MYSERVER for domain MYDOMAIN. Error was NT_STATUS_CANT_ACCESS_DOMAIN_INFO. unable to join domain MYDOMAIN
I try to setup a client (for password /etc/passwd) to my samba server, without using the kerberos. let's make it simple: just samba. here are the errors: I have installed winbind, portmap, and samba/smbclient packages on the workstation linux ubuntu , which is intended to be client to samba for /etc/password attached to the server. At boot nothing changed, and the /etc/password is not attached to samba. So my passwords are stil the local of hte client, and not the server. This is my config of the client workstation:
I am new to Ubuntu linux and recently installed it on my computer. I did a system scan and this is what it said, ML Parsing Error: not well-formed Location: file:///media/Cruzer/submission.xml Line Number 4807, Column 53: Checking for hardware/setup problems... [#[33mWARN] What exactly does this mean and what is a possible solution
I have 15 or so debian lenny machines, and a xen server that I would like to join to the windows 2003 AD domain controller. The main goal is I would like the windows / linux user names and passwords to be the same on each system. Only 10 or so users need access to the machines but the passwords sometimes are different. How should I go about accomplishing this ?
I was told that openldap may be a solution. But from what I've read about it sounds like its just a mimic or window AD and doesnt sync with it, at least natively ?
I've installed Ubuntu 9.10 in my office desktop. as a newbie in the world of linux, i really do not know much about it. I want to join my desktop in our domain. i already have the ip addresses of the DNS servers but i dunno where to put it. i've installed likewise open and try to join the domain but it displays the following errors: Manual Configuration Required:
The configuration stage 'open ports to DC' cannot be completed automatically. Please manually perform the following steps and rerun the domain join: Some required ports on the domain controller could not be contacted. Please update your firewall settings to ensure that the following ports are open to 'MARVEL2.LBPNET':
I am practising setting up a small network using UBUNTU as a PDC through SAMBA to service xp clients.
I have sucessfully setup DNS on the Ubuntu server using Bind9 and can nslookup from both the client and the server by FQDN and can also ping ipaddress.
I have setup a basic smb.conf file however when I try to add the xp client to the domain I get an error message saying a domain controller for the domain could not be contacted.
I have disabled the firewalls on both the server and the xp client and still get the same error message when trying to join the domain. I've checked my network settings on the client, its set to use a static IP address and the DNS server and WINS server are set as my Ubuntu Samba PDC address.
I haven't been able to see anything odd in the smb.conf file that might cause this issue. I can connect directly to the shares using the samba network account that I created by going to start run and typing in the unc path.
Not sure what the cause of this issue is, I thought it might be a DNS issue on the client. One odd thing I noticed is that when I do nslookup using just the server name and not the FQDN i get a message in dos saying that the default server cannot be found but says that the server name for the [ipadress] cannot be found. It does list the correct ip.
I'm not sure what is causing the problem of stopping my xp client from joining the Ubuntu Samba PDC. I'm using UBUNTU server 10.04.
We've been running samba on linux for a while and everything was fine. All of a sudden when you add new clients to the domain you get the error message :Logon Failure:unknown user name or bad password. This to me seems like a windows error message and not a samba error. When you remove an existing machine (ie on domain) and then try to rejoin it to the domain you fail.
5. go to your nsswitch.conf file located in /etc/ and set the hosts to only files and dns
6. now you should stop your networking and start it again so that the dns changes take effect.
7. you are now ready to try and join your domain. "domainjoin-cli join fqdn.of.yourdomain administrator" you can substitute administrator with any admin account
you should now be joined to your domain for adding sudo rights to the "administrator" membership
1. open your sudoers file located in /etc/ 2. the following line to the bottom of the file "%DOMAIN\administrators ALL=(ALL) ALL" replace DOMAIN with your domain name. do not use your fqdn. all set. hope you enjoy
I've been configuring a PDC using samba I used this tutorial url as reference. It seems all went well during the installation and configuration not until when I try to join a windows machine to the domain.
Scenario: When the authentication dialog box prompts the username and password of the domain administrator. I supply root as username and its corresponding password. Then I will prompt an error "The user name could not be found. But, I have noticed that when I supply a wrong password of root the it will prompt "Login failure: unknown user name or bad password. It seems that the windows machine was able to recognize the account somehow.
Im currently using an english book to setup my samba server, and im having problems understanding it.
I dont want to use root to join clients to the domain; i prefer creating a plain user.
Ok, so, the steps i follow are:
net groupmap add unixgroup=srvadmins ntgroup="Server Admins" net groupmap add ntgroup="Domain Admins" unixgroup=dmnadmins rid=512 type=d net rpc rights grant 'ORAServer Admins' seMachineAccountPrivilege
This way, i have a group called srvadmins with permissions to join clients, a group called dmnadmins with permissions to manage users and other permissions, and root.
Now, users: "root", "dmnadmin"(from dmnadmins group) and "srvadmin" (from srvadmins group) can add machines to domain. Root because is root, srvadmin because i granted permissions, and dmnadmin because is admin
So i wonder, why srvadmins group is needed to be granted privileges?
I tryed to lower dmnadmins privileges by revoking semachineaccountprivilege privilege, but didnt worked
net rpc rights revoke 'ORADomain Admins' seMachineAccountPrivilege
looks like its privileges comes from another group and it user managed to add a machine to the domain correctly.
Ok, so, is this really usefull? why do i need 3 kind of users to be able to join to the domain?