activating domain users

4 posts / 0 new
Last post
itefix
Offline
Last seen: 2 weeks 18 hours ago
Joined: 01.05.2008 - 21:33
activating domain users

I have four physical locations that I want to install copSSH to: California
Virgina
Sweden
Korea
All servers belong to the same domain.
Each is on a different subnet.
All servers are on Win2k.
Each physical site has two DCs.
All sites replicate with each other fine.

I am able to install and activate a domain user in California and Virgina, but not Sweden or Korea.

I am wondering if the activate users tries to contact the PDC (NT era), which is the box in Virgina. This would explain why both US based boxes can activate the domain user, but not the overseas boxes.
Any help would be appreciated.

Mike Schaefer

itefix
Offline
Last seen: 2 weeks 18 hours ago
Joined: 01.05.2008 - 21:33
Re: activating domain users

Activation script uses Cygwin utility mkpasswd. Your problem indicates that mkpasswd tries to contact PDC for credentials check. You can verify this behaviour by checking output from netstat command.

As a workaround, you can specify the name of a local domain controller during user activation.

itefix
Offline
Last seen: 2 weeks 18 hours ago
Joined: 01.05.2008 - 21:33
Re: activating domain users

Forgive me for being ignorant, but I'm not seeing how/where to pass the local DC to either mkpasswd, or to the activate-user.sh.
Mike

itefix
Offline
Last seen: 2 weeks 18 hours ago
Joined: 01.05.2008 - 21:33
Re: activating domain users

Forgive me for being ignorant, but I'm not seeing how/where to pass the local DC to either mkpasswd, or to the activate-user.sh.

Mike

When you select to activate a domain user, you will be asked for a domain name. Specify the name of the local domain controller instead of the domain name. That will instruct activate-user script to contact with the local machine. Since this machine is a domain controller, it contains a local copy of SAM database for the domain.

Worth to try at least :-)

Topic locked

Release announcements