windows用域用戶登錄常失敗
用rhas4.4做LDAP、smb伺服器以實現域的用戶認證。
現在有windows機器需要加入到域中,一般情況下是能成功的,可是windows機器時常出現用域用戶登錄失敗的情況。報「域不可用」這個警告,這時將windows機器重啟,又能找到域了。
是什麼原因導致找不到域呢。能不能做到穩定些啊。
因為我在系統中要實現用戶數據的安全保護,找不到域就實現不了這個功能。
網上一般說什麼DNS配置,DNS怎麼配置才能讓windows機器找到域伺服器啊?
請幫忙,謝謝!
《解決方案》
Please post your smb.conf.
Others may be of help to you.
《解決方案》
這是我的smb.conf配置文件
workgroup = ABC
netbios name = ABC
server string = Samba Server %v
log file = /var/log/samba/log.%m
security = user
encrypt passwords = Yes
obey pam restrictions = No
ldap passwd sync = Yes
log level = 3
syslog = 0
max log size = 100000
time server = Yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
mangling method = hash2
Dos charset = UTF-8
Unix charset = UTF-8
# logon script = %U.bat
# logon drive = H:
domain logons = Yes
os level = 65
preferred master = Yes
domain master = Yes
passdb backend = ldapsam:ldap://127.0.0.1/
ldap admin dn = cn=Manager,dc=msj,dc=pla
ldap suffix = dc=msj,dc=pla
ldap group suffix = ou=Groups
ldap user suffix = ou=Users
ldap machine suffix = ou=Computers
ldap ssl = off
ldap delete dn = Yes
add user script = /sbin/smbldap-useradd -m "%u"
add machine script = /sbin/smbldap-useradd -t 0 -w "%u"
add group script = /sbin/smbldap-groupadd -p "%g"
add user to group script = /sbin/smbldap-groupmod -m "%u" "%g"
delete user from group script = /sbin/smbldap-groupmod -x "%u" "%g"
set primary group script = /sbin/smbldap-usermod -g '%g' '%u'
template shell = /bin/false
password server = None
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
winbind use default domain = no
comment = repertoire de %U, %u
browseable = no
writeable = yes
read only = no
force create mode = 0700
create mode = 0700
force directory mode = 0700
directory mode = 700
path = /home/netlogon/
browseable = No
read only = yes
comment = Public Directory
path = /home/public/
browseable = No
writable = yes
guest ok = yes
create mask = 0777
[ 本帖最後由 戲園子 於 2008-10-23 09:08 編輯 ]
《解決方案》
《解決方案》
看看是不是時間同步的問題,
