|
|
近日按照网上的资料进行操作,XP不能加入域.请各位DX看看哪里做的不对
Linux下用Samba构建虚拟NT域服务器
一、修改配置文件:
workgroup = linux.com //#构建的域名
netbios name = my linux domain
passdb backend = tdbsam
security = user //#共享的安全级别
encrypt passwords = yes //#使用加密过后密码
smb passwd file = /etc/samba/smbpasswd //#加密密码存放的位置;
domain logons = yes //#启用域登录;
domain master =yes //#将SAMBA设置成域主浏览器 (即:主域控制器)
perferred master = yes
local master =yes //#提供本地浏览
os level = 33 //#设置操作系统级别,能够使SAMBA域成为域控制器
logo script =scripts%U.bat //#启用用户登录脚本
wins support = yes //#将SAMBA设置成WINS服务器
二、设置netlogon共享
netlogon共享是登录到域服务器时必须有的共享目录,其netlogon共享目录设置如下:
[netlogon]
path = /usr/local/samba/netlogon
write list = ntadmin
read only = yes
browseable = no
share modes =no
三、建立机器间的信任关系及用户的建立(NT/2000/XP)
因为NT的域认证基于机器信任账号来进行。所以必须在Samba服务器上先创建机器账号adduser -d /dev/null -r qcy$ -s /bin/flase
创建本地机器账号之后,在创建SAMBA机器账号smbpasswd -a -m qcy 其中:-a 是添加 -m是创建机器信任账号,因为加入到NT域中需要管理员的干预所以我们还得将ROOT账号添加到SAMBA用户当中当计算机之间建立的信任关系之后我们就可以把我们WINDOWS2000/NT机器加入到linux的虚拟域中.
现在我们添加SAMBA用户 :
useradd centos (添加系统用户并建立其主目录)
passwd centos
smbpasswd -a centos (建立SAMBA用户)
四、当系统和SAMBA用户添加完成之后,就在新建用户的主目录下建立一个.profile.pds文件夹,其作用是用来存放用户的配置文件。建立这个文件的时候最好是用SU切换到该用户(su test1),这样建立的好处是直接拥有该文件夹的所有权,以便在用户登录的时候可以很好建立和存储配置文件
在Windows XP SP2加入SMB域之前,请先运行以下的两个注册文件:
A、 WinXP_PlainPassword.reg
B、 WinXP_SignOrSeal.reg
-----------------------------------------------------------------------------------------------------------------------
说明:WinXP_PlainPassword.reg、WinXP_SignOrSeal.reg这两个文件可以在/usr/share/doc/samba
-3.0.10/registry/目录查找到!
-----------------------------------------------------------------------------------------------------------------------
完成WinXP_PlainPassword.reg、WinXP_SignOrSeal.reg两个注册文件的安装工作后,点击“我的电脑” → “属性”,出现“系统属性”窗口;
实验是利用VPC操作的.在XP机器上能够用SAMBA用户登录.
加入域时,能出现要求输入用户名和密码的图框,输入同样的SAMBA用户名和密码.却拒绝访问.
用SAMBA作域控,上面的操作有问题吗?
日志如下,帮忙分析看看
Apr 14 03:54:33 mycentos smb: nmbd Æô¶¯ succeeded
Apr 14 03:54:34 mycentos nmbd[3236]: [2007/04/14 03:54:34, 0] nmbd/nmbd_logonnam es.c:add_logon_names(163)
Apr 14 03:54:34 mycentos nmbd[3236]: add_domain_logon_names:
Apr 14 03:54:34 mycentos nmbd[3236]: Attempting to become logon server for wor kgroup LINUX.COM on subnet 192.168.1.201
Apr 14 03:54:34 mycentos nmbd[3236]: [2007/04/14 03:54:34, 0] nmbd/nmbd_logonnam es.c:add_logon_names(163)
Apr 14 03:54:34 mycentos nmbd[3236]: add_domain_logon_names:
Apr 14 03:54:34 mycentos nmbd[3236]: Attempting to become logon server for wor kgroup LINUX.COM on subnet UNICAST_SUBNET
Apr 14 03:54:34 mycentos nmbd[3236]: [2007/04/14 03:54:34, 0] nmbd/nmbd_become_d mb.c:become_domain_master_browser_wins(327)
Apr 14 03:54:34 mycentos nmbd[3236]: become_domain_master_browser_wins:
Apr 14 03:54:34 mycentos nmbd[3236]: Attempting to become domain master browse r on workgroup LINUX.COM, subnet UNICAST_SUBNET.
Apr 14 03:54:34 mycentos nmbd[3236]: [2007/04/14 03:54:34, 0] nmbd/nmbd_become_d mb.c:become_domain_master_browser_wins(341)
Apr 14 03:54:34 mycentos nmbd[3236]: become_domain_master_browser_wins: queryi ng WINS server from IP 192.168.1.201 for domain master browser name LINUX.COM<1b > on workgroup LINUX.COM
Apr 14 03:54:34 mycentos nmbd[3236]: [2007/04/14 03:54:34, 0] nmbd/nmbd_logonnam es.c:become_logon_server_success(124)
Apr 14 03:54:34 mycentos nmbd[3236]: become_logon_server_success: Samba is now a logon server for workgroup LINUX.COM on subnet UNICAST_SUBNET
Apr 14 03:54:34 mycentos nmbd[3236]: [2007/04/14 03:54:34, 0] nmbd/nmbd_become_d mb.c:become_domain_master_stage2(113)
Apr 14 03:54:34 mycentos nmbd[3236]: *****
Apr 14 03:54:34 mycentos nmbd[3236]:
Apr 14 03:54:34 mycentos nmbd[3236]: Samba server MY LINUX DOMAIN is now a dom ain master browser for workgroup LINUX.COM on subnet UNICAST_SUBNET
Apr 14 03:54:34 mycentos nmbd[3236]:
Apr 14 03:54:34 mycentos nmbd[3236]: *****
Apr 14 03:54:34 mycentos nmbd[3236]: [2007/04/14 03:54:34, 0] nmbd/nmbd_become_d mb.c:become_domain_master_browser_bcast(282)
Apr 14 03:54:34 mycentos nmbd[3236]: become_domain_master_browser_bcast:
Apr 14 03:54:34 mycentos nmbd[3236]: Attempting to become domain master browse r on workgroup LINUX.COM on subnet 192.168.1.201
Apr 14 03:54:34 mycentos nmbd[3236]: [2007/04/14 03:54:34, 0] nmbd/nmbd_become_d mb.c:become_domain_master_browser_bcast(295)
Apr 14 03:54:34 mycentos nmbd[3236]: become_domain_master_browser_bcast: query ing subnet 192.168.1.201 for domain master browser on workgroup LINUX.COM
Apr 14 03:54:38 mycentos nmbd[3236]: [2007/04/14 03:54:38, 0] nmbd/nmbd_logonnam es.c:become_logon_server_success(124)
Apr 14 03:54:38 mycentos nmbd[3236]: become_logon_server_success: Samba is now a logon server for workgroup LINUX.COM on subnet 192.168.1.201
Apr 14 03:54:42 mycentos nmbd[3236]: [2007/04/14 03:54:42, 0] nmbd/nmbd_become_d mb.c:become_domain_master_stage2(113)
Apr 14 03:54:42 mycentos nmbd[3236]: *****
Apr 14 03:54:42 mycentos nmbd[3236]:
Apr 14 03:54:42 mycentos nmbd[3236]: Samba server MY LINUX DOMAIN is now a dom ain master browser for workgroup LINUX.COM on subnet 192.168.1.201
Apr 14 03:54:42 mycentos nmbd[3236]:
Apr 14 03:54:42 mycentos nmbd[3236]: *****
Apr 14 03:54:56 mycentos nmbd[3236]: [2007/04/14 03:54:56, 0] nmbd/nmbd_browsesy nc.c:get_domain_master_name_node_status_fail(488)
Apr 14 03:54:56 mycentos nmbd[3236]: get_domain_master_name_node_status_fail:
Apr 14 03:54:56 mycentos nmbd[3236]: Doing a node status request to the domain master browser at IP 192.168.1.62 failed.
Apr 14 03:54:56 mycentos nmbd[3236]: Cannot get workgroup name.
Apr 14 03:54:58 mycentos nmbd[3236]: [2007/04/14 03:54:58, 0] nmbd/nmbd_become_l mb.c:become_local_master_stage2(396)
Apr 14 03:54:58 mycentos nmbd[3236]: *****
Apr 14 03:54:58 mycentos nmbd[3236]:
Apr 14 03:54:58 mycentos nmbd[3236]: Samba name server MY LINUX DOMAIN is now a local master browser for workgroup LINUX.COM on subnet 192.168.1.201
Apr 14 03:54:58 mycentos nmbd[3236]:
Apr 14 03:54:58 mycentos nmbd[3236]: *****
[root@mycentos ~]# |
|
IP卡
狗仔卡
发表于 2007-4-14 22:34:28
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
显身卡
楼主