Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
[Samba] win 7 no logon servers available error
30 views
Skip to first unread message
steve
Nov 5, 2011, 7:10:01 PM11/5/11
to
Hi
I have joined a win 7 computer to my samba domain. Logging in gives me:
'There are currently no logon servers available to service the logon request.'
The win 7 machine is called S-PC and getent passwd gives me:
S-PC$:x:1002:100:Machine:/var/lib/nobody:/bin/false
lynn2:*:1001:1001:l:/home/lynn2:/bin/bash
lynn2 is an ldap user who can login OK.
I see that /var/lib/samba(netlogon is empty.
I've been through endless posts trying to sort this out. I have a samba pdc
setup with ldap on opensuse 11.4.
The logs give this:
[2011/11/05 23:45:23.779300, 0] passdb/pdb_get_set.c:212(pdb_get_group_sid)
pdb_get_group_sid: Failed to find Unix account for S-PC$
But that doesn't make sense because S-PC$ _does_ have a Unix account.
Can anyone help me?
smb.conf is:
[global]
workgroup = hh1
passdb backend = ldapsam:ldap://127.0.0.1
printing = cups
printcap name = cups
printcap cache time = 750
cups options = raw
map to guest = Bad User
include = /etc/samba/dhcp.conf
logon path = \\%L\profiles\.msprofile
logon home = \\%L\%U\.9xprofile
logon drive = P:
usershare allow guests = Yes
add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody
-s /bin/false %u
domain logons = Yes
domain master = Yes
idmap backend = ldap:ldap://127.0.0.1
ldap admin dn = cn=admin,dc=com
ldap group suffix = ou=group
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=Machines
ldap passwd sync = Yes
ldap ssl = Off
ldap suffix = dc=com
ldap user suffix = ou=people
local master = Yes
os level = 65
preferred master = Yes
security = user
wins server =
wins support = No
[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes
[profiles]
comment = Network Profiles Service
path = %H
read only = No
store dos attributes = Yes
create mask = 0600
directory mask = 0700
[users]
comment = All users
path = /home
read only = No
inherit acls = Yes
veto files = /aquota.user/groups/shares/
[groups]
comment = All groups
path = /home/groups
read only = No
inherit acls = Yes
[printers]
comment = All Printers
path = /var/tmp
printable = Yes
create mask = 0600
browseable = No
[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = @ntadmin root
force group = ntadmin
create mask = 0664
directory mask = 0775
[netlogon]
comment = Network Logon Service
path = /var/lib/samba/netlogon
write list = root
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
I have joined a win 7 computer to my samba domain. Logging in gives me:
'There are currently no logon servers available to service the logon request.'
The win 7 machine is called S-PC and getent passwd gives me:
S-PC$:x:1002:100:Machine:/var/lib/nobody:/bin/false
lynn2:*:1001:1001:l:/home/lynn2:/bin/bash
lynn2 is an ldap user who can login OK.
I see that /var/lib/samba(netlogon is empty.
I've been through endless posts trying to sort this out. I have a samba pdc
setup with ldap on opensuse 11.4.
The logs give this:
[2011/11/05 23:45:23.779300, 0] passdb/pdb_get_set.c:212(pdb_get_group_sid)
pdb_get_group_sid: Failed to find Unix account for S-PC$
But that doesn't make sense because S-PC$ _does_ have a Unix account.
Can anyone help me?
smb.conf is:
[global]
workgroup = hh1
passdb backend = ldapsam:ldap://127.0.0.1
printing = cups
printcap name = cups
printcap cache time = 750
cups options = raw
map to guest = Bad User
include = /etc/samba/dhcp.conf
logon path = \\%L\profiles\.msprofile
logon home = \\%L\%U\.9xprofile
logon drive = P:
usershare allow guests = Yes
add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody
-s /bin/false %u
domain logons = Yes
domain master = Yes
idmap backend = ldap:ldap://127.0.0.1
ldap admin dn = cn=admin,dc=com
ldap group suffix = ou=group
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=Machines
ldap passwd sync = Yes
ldap ssl = Off
ldap suffix = dc=com
ldap user suffix = ou=people
local master = Yes
os level = 65
preferred master = Yes
security = user
wins server =
wins support = No
[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes
[profiles]
comment = Network Profiles Service
path = %H
read only = No
store dos attributes = Yes
create mask = 0600
directory mask = 0700
[users]
comment = All users
path = /home
read only = No
inherit acls = Yes
veto files = /aquota.user/groups/shares/
[groups]
comment = All groups
path = /home/groups
read only = No
inherit acls = Yes
[printers]
comment = All Printers
path = /var/tmp
printable = Yes
create mask = 0600
browseable = No
[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = @ntadmin root
force group = ntadmin
create mask = 0664
directory mask = 0775
[netlogon]
comment = Network Logon Service
path = /var/lib/samba/netlogon
write list = root
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
steve
Nov 6, 2011, 8:00:02 AM11/6/11
to
I joined the domain HH1 without problems. I have setup bind on the samba host
as a DNS server and stup the win 7 machine with static settings which point to
the host with the dns server. No problems. Win 7 can ping out through the
gateway and see webpages. But _still_ I get the 'no logon servers available'
message when trying to logon to the domain. The users can login at a linux
command prompt fine. THey can also see their files when logged into the win 7
box by typing e.g.
\\HH1\steve2
So I don't think this is a DNS problem, I don't think it is a Win 7 problem
and LDAP is working so it must have something to do with samba. The samba is
that shipped with opensuse 11.4 version, 3.5.7
Does anyone have any clue as to where to turn next?
THanks so much and sorry to have to bump this one on a Sunday.
Steve.
Paul Venzke
Nov 6, 2011, 5:10:02 PM11/6/11
to
>
> Reinstalled openldap, samba and windows 7, the latter on oracle virtual
> box.
>
> I joined the domain HH1 without problems. I have setup bind on the
> samba host
> as a DNS server and stup the win 7 machine with static settings which
> point to
> the host with the dns server. No problems. Win 7 can ping out through
> the
> gateway and see webpages. But _still_ I get the 'no logon servers
> available'
> message when trying to logon to the domain. The users can login at a
> linux
> command prompt fine. THey can also see their files when logged into the
> win 7
> box by typing e.g.
>
> \\HH1\steve2
>
> So I don't think this is a DNS problem, I don't think it is a Win 7
> problem
> and LDAP is working so it must have something to do with samba. The
> samba is
> that shipped with opensuse 11.4 version, 3.5.7
>
> Does anyone have any clue as to where to turn next?
> THanks so much and sorry to have to bump this one on a Sunday.
>
> Steve.
>
<snip>
> Reinstalled openldap, samba and windows 7, the latter on oracle virtual
> box.
>
> I joined the domain HH1 without problems. I have setup bind on the
> samba host
> as a DNS server and stup the win 7 machine with static settings which
> point to
> the host with the dns server. No problems. Win 7 can ping out through
> the
> gateway and see webpages. But _still_ I get the 'no logon servers
> available'
> message when trying to logon to the domain. The users can login at a
> linux
> command prompt fine. THey can also see their files when logged into the
> win 7
> box by typing e.g.
>
> \\HH1\steve2
>
> So I don't think this is a DNS problem, I don't think it is a Win 7
> problem
> and LDAP is working so it must have something to do with samba. The
> samba is
> that shipped with opensuse 11.4 version, 3.5.7
>
> Does anyone have any clue as to where to turn next?
> THanks so much and sorry to have to bump this one on a Sunday.
>
> Steve.
>
Steve;
The AppArmor profiles for nmbd and smbd prevented smbd and nmbd from running
on Opensuse 11.4. If you have not done so already go to YaST>Novell
AppArmor>AppArmor Control Panel>Configure Profile Modes. Set both
user.sbin.[s,n]mbd to complain rather than enforce. If this works you can
rewrite the profiles for proper operation or leave them off.
PV
If it ain't broken you're not trying.
steve
Nov 7, 2011, 1:40:01 AM11/7/11
to
Yes. I tried with AppArmor to complain and then turned it off. Still no logon
servers.
Here is what I got when joining the domain for the first time:
Nov 7 07:05:14 hh1 smbd[6753]: [2011/11/07 07:05:14.802235, 0]
lib/util_sock.c:474(read_fd_with_timeout)
Nov 7 07:05:14 hh1 smbd[6753]: [2011/11/07 07:05:14.802429, 0]
lib/util_sock.c:1441(get_peer_addr_internal)
Nov 7 07:05:14 hh1 smbd[6753]: getpeername failed. Error was Transport
endpoint is not connected
Nov 7 07:05:14 hh1 smbd[6753]: read_fd_with_timeout: client 0.0.0.0 read
error = Connection reset by peer.
Nov 7 07:05:27 hh1 pulseaudio[3905]: ratelimit.c: 113 events suppressed
Nov 7 07:05:51 hh1 nmbd[6047]: [2011/11/07 07:05:51.005754, 0]
nmbd/nmbd_incomingdgrams.c:308(process_local_master_announce)
Nov 7 07:05:51 hh1 nmbd[6047]: process_local_master_announce: Server S-PC
at IP 192.168.1.4 is announcing itself as a local master browser for
worrkgroup HH1 and we think we are master. Forcing election.
Nov 7 07:05:51 hh1 nmbd[6047]: [2011/11/07 07:05:51.017996, 0]
nmbd/nmbd_become_lmb.c:148(unbecome_local_master_success)
Nov 7 07:05:51 hh1 nmbd[6047]: *****
Nov 7 07:05:51 hh1 nmbd[6047]:
Nov 7 07:05:51 hh1 nmbd[6047]: Samba name server HH1 has stopped being a
local master browser for workgroup HH1 on subnet 192.168.1.2
Nov 7 07:05:51 hh1 nmbd[6047]:
Nov 7 07:05:51 hh1 nmbd[6047]: *****
Nov 7 07:06:10 hh1 nmbd[6047]: [2011/11/07 07:06:10.957521, 0]
nmbd/nmbd_become_lmb.c:395(become_local_master_stage2)
Nov 7 07:06:10 hh1 nmbd[6047]: *****
Nov 7 07:06:10 hh1 nmbd[6047]:
Nov 7 07:06:10 hh1 nmbd[6047]: Samba name server HH1 is now a local master
browser for workgroup HH1 on subnet 192.168.1.2
Nov 7 07:06:10 hh1 nmbd[6047]:
Nov 7 07:06:10 hh1 nmbd[6047]: *****
And here is the result of starting smb and nmb now:
Nov 7 07:27:48 hh1 nmbd[7677]: *****
Nov 7 07:30:00 hh1 smbd[7780]: [2011/11/07 07:30:00.326907, 0]
smbd/server.c:501(smbd_open_one_socket)
Nov 7 07:30:00 hh1 smbd[7780]: smbd_open_once_socket: open_socket_in:
Address already in use
Nov 7 07:30:00 hh1 smbd[7780]: [2011/11/07 07:30:00.328619, 0]
smbd/server.c:501(smbd_open_one_socket)
Nov 7 07:30:00 hh1 smbd[7780]: smbd_open_once_socket: open_socket_in:
Address already in use
Nov 7 07:30:05 hh1 nmbd[7677]: [2011/11/07 07:30:05.525647, 0]
nmbd/nmbd.c:71(terminate)
Nov 7 07:30:05 hh1 nmbd[7677]: Got SIGTERM: going down...
Nov 7 07:30:06 hh1 nmbd[7822]: [2011/11/07 07:30:06.171691, 0]
nmbd/nmbd_logonnames.c:160(add_logon_names)
Nov 7 07:30:06 hh1 nmbd[7822]: add_domain_logon_names:
Nov 7 07:30:06 hh1 nmbd[7822]: Attempting to become logon server for
workgroup HH1 on subnet 192.168.1.2
Nov 7 07:30:06 hh1 nmbd[7822]: [2011/11/07 07:30:06.173068, 0]
nmbd/nmbd_become_dmb.c:292(become_domain_master_browser_bcast)
Nov 7 07:30:06 hh1 nmbd[7822]: become_domain_master_browser_bcast:
Nov 7 07:30:06 hh1 nmbd[7822]: Attempting to become domain master browser
on workgroup HH1 on subnet 192.168.1.2
Nov 7 07:30:06 hh1 nmbd[7822]: [2011/11/07 07:30:06.174071, 0]
nmbd/nmbd_become_dmb.c:305(become_domain_master_browser_bcast)
Nov 7 07:30:06 hh1 nmbd[7822]: become_domain_master_browser_bcast: querying
subnet 192.168.1.2 for domain master browser on workgroup HH1
Nov 7 07:30:10 hh1 nmbd[7822]: [2011/11/07 07:30:10.178990, 0]
nmbd/nmbd_logonnames.c:121(become_logon_server_success)
Nov 7 07:30:10 hh1 nmbd[7822]: become_logon_server_success: Samba is now a
logon server for workgroup HH1 on subnet 192.168.1.2
Nov 7 07:30:14 hh1 nmbd[7822]: [2011/11/07 07:30:14.183889, 0]
nmbd/nmbd_become_dmb.c:110(become_domain_master_stage2)
Nov 7 07:30:14 hh1 nmbd[7822]: *****
Nov 7 07:30:14 hh1 nmbd[7822]:
Nov 7 07:30:14 hh1 nmbd[7822]: Samba server HH1 is now a domain master
browser for workgroup HH1 on subnet 192.168.1.2
Nov 7 07:30:14 hh1 nmbd[7822]:
Nov 7 07:30:14 hh1 nmbd[7822]: *****
Still no logon servers.
Any ideas? Really don't know what else I can try!
Thanks Steve.
steve
Nov 7, 2011, 9:20:02 AM11/7/11
to
On Monday 07 Nov 2011 07:39:10 steve wrote:
> On Sunday 06 Nov 2011 23:08:27 you wrote:
> > > -----Original Message-----
> > > From: samba-...@lists.samba.org [mailto:samba-
> > > bou...@lists.samba.org] On Behalf Of steve
> > > Sent: Sunday, November 06, 2011 6:55 AM
> > > To: sa...@lists.samba.org
> > > Subject: Re: [Samba] win 7 no logon servers available error
> > >
> > > On Sunday 06 Nov 2011 00:06:17 steve wrote:
> > > > Hi
> > > > I have joined a win 7 computer to my samba domain. Logging in gives
> > >
> > > me:
> > > > 'There are currently no logon servers available to service the logon
> > > > request.'
Hi
> On Sunday 06 Nov 2011 23:08:27 you wrote:
> > > -----Original Message-----
> > > From: samba-...@lists.samba.org [mailto:samba-
> > > bou...@lists.samba.org] On Behalf Of steve
> > > Sent: Sunday, November 06, 2011 6:55 AM
> > > To: sa...@lists.samba.org
> > > Subject: Re: [Samba] win 7 no logon servers available error
> > >
> > > On Sunday 06 Nov 2011 00:06:17 steve wrote:
> > > > Hi
> > > > I have joined a win 7 computer to my samba domain. Logging in gives
> > >
> > > me:
> > > > 'There are currently no logon servers available to service the logon
> > > > request.'
After much work I realised that the name of my Linux box was hh1.com and I had
chosen HH1 for the Samba domain name. THat seems sensible enough no? But it
seems that that is not allowed. I can't find anywhere in the documentation
which warns against this.
I changed the Samba domain to HH2, removed the old ldap machine objects,
unjoined the domain HH1 and rejoined HH2.
Everything now works as expected except that at first logon from windows 7,
the profile isn't saved. You have to log out and back in again. Then the
profile is saved.
With XP clients you don't have to relogin.
Hope this helps us all toward a single sighn on. It's going to make our lan
much more bearable.
Thanks to everyone for their time.
Steve.
For completeness, here is the nmbd log:
Nov 7 14:28:58 hh1 nmbd[8308]: [2011/11/07 14:28:58.757742, 0]
nmbd/nmbd.c:71(terminate)
Nov 7 14:28:58 hh1 nmbd[8308]: Got SIGTERM: going down...
Nov 7 14:28:59 hh1 nmbd[9167]: [2011/11/07 14:28:59.350165, 0]
nmbd/nmbd_logonnames.c:160(add_logon_names)
Nov 7 14:28:59 hh1 nmbd[9167]: add_domain_logon_names:
Nov 7 14:28:59 hh1 nmbd[9167]: Attempting to become logon server for
workgroup HH2 on subnet 192.168.1.2
Nov 7 14:28:59 hh1 nmbd[9167]: [2011/11/07 14:28:59.351132, 0]
nmbd/nmbd_become_dmb.c:292(become_domain_master_browser_bcast)
Nov 7 14:28:59 hh1 nmbd[9167]: become_domain_master_browser_bcast:
Nov 7 14:28:59 hh1 nmbd[9167]: Attempting to become domain master browser
on workgroup HH2 on subnet 192.168.1.2
Nov 7 14:28:59 hh1 nmbd[9167]: [2011/11/07 14:28:59.351253, 0]
nmbd/nmbd_become_dmb.c:305(become_domain_master_browser_bcast)
Nov 7 14:28:59 hh1 nmbd[9167]: become_domain_master_browser_bcast: querying
subnet 192.168.1.2 for domain master browser on workgroup HH2
Nov 7 14:29:03 hh1 nmbd[9167]: [2011/11/07 14:29:03.372639, 0]
nmbd/nmbd_logonnames.c:121(become_logon_server_success)
Nov 7 14:29:03 hh1 nmbd[9167]: become_logon_server_success: Samba is now a
logon server for workgroup HH2 on subnet 192.168.1.2
Nov 7 14:29:05 hh1 smbd[9191]: [2011/11/07 14:29:05.626119, 0]
smbd/server.c:501(smbd_open_one_socket)
Nov 7 14:29:05 hh1 smbd[9191]: smbd_open_once_socket: open_socket_in:
Address already in use
Nov 7 14:29:05 hh1 smbd[9191]: [2011/11/07 14:29:05.628884, 0]
smbd/server.c:501(smbd_open_one_socket)
Nov 7 14:29:05 hh1 smbd[9191]: smbd_open_once_socket: open_socket_in:
Address already in use
Nov 7 14:29:07 hh1 nmbd[9167]: [2011/11/07 14:29:07.380575, 0]
nmbd/nmbd_become_dmb.c:110(become_domain_master_stage2)
Nov 7 14:29:07 hh1 nmbd[9167]: *****
Nov 7 14:29:07 hh1 nmbd[9167]:
Nov 7 14:29:07 hh1 nmbd[9167]: Samba server HH1 is now a domain master
browser for workgroup HH2 on subnet 192.168.1.2
Nov 7 14:29:07 hh1 nmbd[9167]:
Nov 7 14:29:07 hh1 nmbd[9167]: *****
Nov 7 14:29:22 hh1 nmbd[9167]: [2011/11/07 14:29:22.398976, 0]
nmbd/nmbd_become_lmb.c:395(become_local_master_stage2)
Nov 7 14:29:22 hh1 nmbd[9167]: *****
Nov 7 14:29:22 hh1 nmbd[9167]:
Nov 7 14:29:22 hh1 nmbd[9167]: Samba name server HH1 is now a local master
browser for workgroup HH2 on subnet 192.168.1.2
Nov 7 14:29:22 hh1 nmbd[9167]:
Nov 7 14:29:22 hh1 nmbd[9167]: *****
0 new messages