Ad connector


#1

I installed UCS with samba 3 with AD connector. I would like trust relationship between win2008 and UCS.
I set up next steps:
On the win2008
ucs-ad-connector-64bit.msi (for 64bit Windows)
Microsoft Visual C++ 2010 Redistributable Package (x86)
The private.key and cert.pem files
copied into the installation directory of the password service.
Network security: Do not store LAN Manager hash value on next password
change to Disabled
On the UCS:
Add the win2008 certificate file.
ucr set hosts/static/192.168.0.100=w2k8-32.ad.example.com
echo “iptables -I INPUT 1 -p udp --sport 137 -j ACCEPT” \

/etc/security/packetfilter.d/50_local.sh
/etc/init.d/univention-firewall restart
net rpc trustdom establish
My probem is The username or password was not correct.
Couldn’t verify trusting domain account. Error was NT_STATUS_LOGON_FAILURE


#2

Hello,

the Univention Active Directory Connector’s purpose is not to provide a trust relationship between Windows Servers and UCS Servers but to synchronise the directory services Active Directory and Open LDAP.

You can either configure the Univention Active Directory Connector as described in the Manual chapter “8.5 UCS Active Directory Connector” or establish a trust relationship as described in the Manual chapter “8.6 Trust relationships” depending on the objective you have in mind.

Kind regards,
Tobias Scherer


#3

I will try to solve this problem too. Some time ago i had to face the same type of problem but now I am going to fix that. Thank you, Tobias.