Problem with joining Win2003 Domain

[wmar]

When i try to join our domain i get an error that i can not understand! Here the output under /var/log/messages:

Jan 19 07:06:37 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-kinit status
Jan 19 07:06:54 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-kerberos quietstart
Jan 19 07:07:00 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-nsswitch quietstart
Jan 19 07:07:00 freenas1 freenas: Generating host.conf.
Jan 19 07:07:00 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-pam quietstart
Jan 19 07:07:00 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-samba quietstart
Jan 19 07:07:00 freenas1 freenas: Importing account for root...ok
Jan 19 07:07:06 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-kinit quietstart
Jan 19 07:07:22 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-kinit status
Jan 19 07:07:28 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-activedirectory quietstart
Jan 19 07:07:42 freenas1 freenas: Using short domain name -- DUO
Jan 19 07:07:42 freenas1 freenas: Joined 'FREENAS1' to realm 'direktundonline.de'
Jan 19 07:07:55 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-activedirectory status
Jan 19 07:08:03 freenas1 freenas[2072]: Executing: /usr/sbin/service samba forcestop
Jan 19 07:08:03 freenas1 freenas: Stopping winbindd.
Jan 19 07:08:03 freenas1 freenas: Waiting for PIDS: 5496.
Jan 19 07:08:03 freenas1 freenas[2072]: Executing: /usr/bin/killall nmbd
Jan 19 07:08:03 freenas1 freenas: No matching processes were found
Jan 19 07:08:03 freenas1 freenas[2072]: Executing: /usr/bin/killall smbd
Jan 19 07:08:03 freenas1 freenas: No matching processes were found
Jan 19 07:08:03 freenas1 freenas[2072]: Executing: /usr/bin/killall winbindd
Jan 19 07:08:03 freenas1 freenas: No matching processes were found
Jan 19 07:08:03 freenas1 freenas[2072]: Executing: /usr/sbin/service samba quietstart
Jan 19 07:08:03 freenas1 freenas: Removing stale Samba tdb files: .. done
Jan 19 07:08:03 freenas1 freenas: Starting winbindd.

up to this point everything is OK. The output "of wbinfo -u" give the List of the Domain-Users.
Then it seems that the Service restarts and dies with the error "No realm set, are we joined ?"

Here is the second part of the log:

Jan 19 07:08:03 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-kinit status
Jan 19 07:08:09 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-activedirectory status
Jan 19 07:08:49 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-kerberos quietstart
Jan 19 07:08:49 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-nsswitch quietstart
Jan 19 07:08:49 freenas1 freenas: Generating host.conf.
Jan 19 07:08:49 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-pam quietstart
Jan 19 07:08:49 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-samba quietstart
Jan 19 07:08:49 freenas1 freenas: Importing account for root...ok
Jan 19 07:08:49 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-kinit forcestop
Jan 19 07:08:49 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-activedirectory forcestop
Jan 19 07:08:55 freenas1 freenas: No realm set, are we joined ?
Jan 19 07:08:55 freenas1 freenas[2072]: Executing: /usr/sbin/service samba forcestop
Jan 19 07:08:55 freenas1 freenas[2072]: Executing: /usr/bin/killall nmbd
Jan 19 07:08:55 freenas1 freenas: No matching processes were found
Jan 19 07:08:55 freenas1 freenas[2072]: Executing: /usr/bin/killall smbd
Jan 19 07:08:55 freenas1 freenas: No matching processes were found
Jan 19 07:08:55 freenas1 freenas[2072]: Executing: /usr/bin/killall winbindd
Jan 19 07:08:55 freenas1 freenas[2072]: Executing: /usr/sbin/service samba quietstart
Jan 19 07:08:55 freenas1 freenas: Removing stale Samba tdb files: .. done
Jan 19 07:08:55 freenas1 freenas[2072]: Executing: /usr/sbin/service ix-kinit status

What kan i doo to resolve it?

Thanks

Walter

[gcooper]

Check that...

1. You can ping the DNS name for the AD PDC from FreeNAS.
2. Delete any existing computer accounts with the name "FREENAS" on the PDC before you try to join AD.

There was a bug open for 1., but it was closed last night with WONTFIX. I'll be more than happy to dupe this bug if you would like me to.

[wmar]

Hi gcooper,

1. yes i can ping the DNS-Name for my PDC.
2. i delete the acconts for freenas but the service dont start!

I have additional information for you, i hope you can find out what the message will say:
In /var/log/samba/log.wb-DUO "DUO is the short Domain-Name" i get the message "kerberos_kinit_password DUO-FREENAS1$@DIREKTUNDONLINE.DE failed: Preauthentication failed"

When i make an kinit Administrator and type my Admin-Password it works!

What is wrong?

[william]

Can you try 8.3? There were several improvements to AD code