Исходное сообщение
"Samba 3.0.23 на FC 4 + AD на Win2k3 R2." Отправлено BaldyMan, 26-Фев-08 17:36
Проблему решил сам. Если кому интересно, то вот решение: /etc/krb5.conf: [logging] default = FILE:/var/log/krb5libs.log kdc = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log [libdefaults] ticket_lifetime = 24000 default_realm = INET.LOCAL dns_lookup_realm = false dns_lookup_kdc = false [realms] INET.LOCAL = {   kdc = 172.16.22.2:88   admin_server = 172.16.22.2:749   default_domain = inet.local } [domain_realm] .inet.local = INET.LOCAL inet.local = INET.LOCAL [kdc] profile = /var/lib/kerberos/krb5kdc/kdc.conf [pam] debug = false ticket_lifetime = 36000 renew_lifetime = 36000 forwardable = true krb4_convert = false _______________________________________________________________________ /etc/samba/smb.conf: [global]    workgroup = INET    server string =  linux-gw    local master = no    log file = /var/log/samba/log.%m    max log size = 50    realm = inet.local    security = ads    password server = aqua    encrypt passwords = yes    winbind separator = +    winbind use default domain = yes    winbind uid = 10000-20000    winbind gid = 10000-20000    socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192    dns proxy = no    use sendfile = yes _______________________________________________________________________ Далее net ads join -S 172.16.22.2 -U baldyman _______________________________________________________________________ /etc/pam.d/bindconf: #%PAM-1.0 auth       sufficient   pam_rootok.so auth       sufficient   pam_timestamp.so auth       required     pam_stack.so service=system-auth session    required     pam_permit.so session    optional     pam_xauth.so session    optional     pam_timestamp.so account    required     pam_permit.so _______________________________________________________________________ /etc/pam.d/samba: auth required pam_winbind.so auth required pam_nologim.so account required pam_stack.so service=system-auth session required pam_stack.so service=system-auth auth required pam_stack.so service=system-auth account sufficient pam_winbind.so password required pam_winbind.so _______________________________________________________________________ /etc/pam.d/squid: #%PAM-1.0 auth            required        pam_stack.so service=system-auth account         required        pam_stack.so service=system-auth _______________________________________________________________________ /etc/nsswitch.conf: passwd: files winbind shadow: files winbind group: files winbind hosts: files nisplus nis dns bootparams: nisplus [NOTFOUND=return] files ethers: files netmasks: files networks: files protocols: files rpc: files services: files netgroup: nisplus publickey: nisplus automount: files nisplus aliaces:files nisplus _______________________________________________________________________ Вот впринципе и всё :) Закрываем.