Today I tried to put in production an update of Samba 3 (3.5.4) to allow Windope 7 clients to join the domain.
After having performed what’s on the samba wiki page about this topic [here], I could join the machine to the domain but I was not able to login !? 🙁
In the log :
[2010/08/20 16:55:20.682477, 0] rpc_server/srv_netlog_nt.c:714(_netr_ServerAuthenticate3) _netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client RO-BACKUP machine account RO-BACKUP$ [2010/08/20 16:55:30.993850, 0] lib/util_sock.c:474(read_fd_with_timeout) [2010/08/20 16:55:30.993958, 0] lib/util_sock.c:1432(get_peer_addr_internal) getpeername failed. Error was Transport endpoint is not connected read_fd_with_timeout: client 0.0.0.0 read error = Connection reset by peer.
The problem was easy to solve but not easy to find : the two machines had not the same time (30 secs delay !)
Fixing the time sync fixed the problem (and I’m not using kerberos and AD)