Skip navigation

Bind Windows 7 to Snow Leopard Server

85734 Views 53 Replies Latest reply: Aug 1, 2012 10:56 AM by ClarionAreaTech RSS
1 2 3 4 Previous Next
ndangelo Level 1 Level 1 (5 points)
Currently Being Moderated
Oct 16, 2009 6:30 AM
I tried binding a Windows 7 (beta) to our Snow leopard PDC/BDC domain after making two changes to the security policy the apple suggested (http://support.apple.com/kb/HT3742) and the local policy: Network Security: Minimum session security for NTLM SSP Based (including secure RPC) Clients (and servers) to no minimum (disabled 128 bit).

Still I get no logon servers, yet xp and vista machines (last I checked) bind just fine.

any ideas? any hints on the troubleshooting tools from the windows 7 machine that might indicate the disconnect would be great.
XSERVE, Mac OS X (10.6.1), OD/SMB/Win2k/XP
  • Cam Rewop Level 1 Level 1 (0 points)
    Currently Being Moderated
    Oct 30, 2009 7:39 PM (in response to ndangelo)
    I've run into some of the same problems. It appears that there are a couple of registry settings that you have to add in Windows 7:

    http://wiki.samba.org/index.php/Windows7

    With the above tweaks, I was able to join the domain, however when I attempt to login I get a trust relationship failure. That doesn't appear to be too uncommon, and others have fixed it by upgrading/downgrading to SAMBA 3.3.4 (linux environments).

    Not sure if that's even an option in MacOS.

    I'm still looking for the elusive last piece to allow authentication.
  • Grant Ireland Level 1 Level 1 (15 points)
    Currently Being Moderated
    Nov 2, 2009 12:06 PM (in response to Cam Rewop)
    Cam
    I am exactly where you (and may others) are on this.
    Please kindly post here (anyone) once a solution to this trust relationship issue has been found.
  • gerd muller Level 1 Level 1 (65 points)
    Currently Being Moderated
    Nov 27, 2009 5:44 AM (in response to Grant Ireland)
    Hi all
    Same issue here. Has anyone a solution how to bind Windows 7 to PDC on SLS 10.6.2?

    Thanx, Gerd
    Mac OS X (10.6.2)
  • herveyw Level 1 Level 1 (10 points)
    Currently Being Moderated
    Nov 30, 2009 11:24 PM (in response to gerd muller)
    +1, joining Windows 7 clients doesn't work with the build of Samba in OS X 10.6.2 Server. So near and yet so far...
    Mac Mini Server, Mac OS X (10.6), SL Server, Windows 7 Ultimate
  • Paramedicop Level 1 Level 1 (0 points)
    Currently Being Moderated
    Dec 3, 2009 3:37 PM (in response to herveyw)
    And why, exactly, are you trying to take a modern operating system made in 2009, designed to work with Active Directory, and force it to work with a directory system that's more than 20 years old and designed for Windows for Workgroups 3.11 and Windows NT 3?

    If you have Windows clients and they need directory services, use AD. If you don't want to pay for AD CAL's and server licenses, get rid of the Windows boxen.

    I'm continually amazed that people want to use (and trust the security of) a directory service technology that was invented BEFORE DNS was a standard... that uses NetBIOS naming conventions and was fastest when run on bridged networks using NetBEUI. Shame on you all...
    Windows 7
  • herveyw Level 1 Level 1 (10 points)
    Currently Being Moderated
    Dec 3, 2009 7:28 PM (in response to Paramedicop)
    The only purpose for AD in my home was to enable SSO and roaming profiles for 6 computers and 3 users, all of whom use a Mac 95% of the time. This isn't a business scenario; I don't want to lock down the Windows clients, run Exchange, SQL Server, IIS + ASP.NET, ADFS, or any of the other Server Roles. I definitely don't want to find an add-on backup solution when Time Machine on the server will suffice. I'm also tired of running Linux on a hyper-v VM just so I can have a simple SMTP/IMAP solution; two servers to maintain when one will do. I don't need to have an AD server hanging around sucking power while doing nothing but authenticating users. I could have bought a Home Server box from HP but it doesn't meet my needs.

    SL Server on a Mac Mini fits my needs including, even especially, my tinkering. The one "issue", if you can call it that in my case, is that the rarely turned on Windows boxes that are used for a few games can't join the domain.

    Your requirements are not my requirements; please troll elsewhere.
    iMac / MacBookPro / Mac Mini, Mac OS X (10.6)
  • shanghui Level 1 Level 1 (0 points)
    Currently Being Moderated
    Dec 10, 2009 5:18 AM (in response to herveyw)
    Same problem with Win7 Enterprise trying to bind to Snow Leopard Server as Primary Domain. Suppose Win7 not ready for SL Server yet??
    macbook, Mac OS X (10.6.2), Mac Mini Server
  • morxxer Level 1 Level 1 (0 points)
    Currently Being Moderated
    Dec 19, 2009 12:43 PM (in response to shanghui)
    other, snow is not ready for 7
    imac 20", Mac OS X (10.6.2), xserve
  • DaDevil Level 1 Level 1 (0 points)
    Currently Being Moderated
    Jan 17, 2010 9:28 AM (in response to morxxer)
    I got the same problem. Is there any way to upgrade Samba on the Mac OS X SL Server or any other way to get rid of this "trust"-problem?
  • bishopazrael Level 1 Level 1 (0 points)
    Currently Being Moderated
    Jan 24, 2010 10:38 PM (in response to Paramedicop)
    Why would you come here to shame someone for having a unique problem that needs a solution? There's absolutely nothing wrong with using Windows. It IS a world with quite a few Windows computers in it, is it not?

    Why did you feel the need to shame someone? *** is wrong with your.... oh... I get it. User name explains it all.

    Anyways I'd sure appreciate someone coming up with a solution for this.
    mbp, Mac OS X (10.6.2)
  • Grant Ireland Level 1 Level 1 (15 points)
    Currently Being Moderated
    Jan 26, 2010 11:29 AM (in response to bishopazrael)
    I don’t think he even realises what he was cursing - OD apparently.
    Hey, why curse at all? Be nice Mr/s paramedic!

    Anyhow - still no solutions I see.
  • bomek Level 1 Level 1 (0 points)
    Currently Being Moderated
    Feb 4, 2010 5:30 AM (in response to Paramedicop)
    Shame on Apple. I guess they should stop advertising Windows PDC capability.
    Other OS
  • torpesco Level 1 Level 1 (0 points)
    Currently Being Moderated
    Feb 18, 2010 11:30 PM (in response to bomek)
    That's annoying. I was about to buy a Mac Mini Server to replace a failing Windows 2000 Server box on a network that does include some Windows 7 clients.

    Guess I either need to go with another Windows Server box or possibly consider going with one of the F/OSS alternatives. Good thing I read this discussion thread before buying.
    Mac OS X (10.6.2)
  • Michael Mussato Level 1 Level 1 (0 points)
    Currently Being Moderated
    Mar 9, 2010 12:41 AM (in response to ndangelo)
    Hi all

    Same problem here. XP and Vista log on fine, 7 (after all the Registry hacking) joins the domain (with ignorable error message) but domain user can't log on, already known error:

    "trust relationship between this workstation and the primary domain failed"

    Apple, do us all a favor and take care of this problem. solution, as mentioned in this and many other discussions: update the smb server!

    I'm really starting to think about writing some Mac OS X viruses...don't be evil steve...
    Several, Other OS
1 2 3 4 Previous Next

Actions

More Like This

  • Retrieving data ...

Bookmarked By (1)

Legend

  • This solved my question - 10 points
  • This helped me - 5 points
This site contains user submitted content, comments and opinions and is for informational purposes only. Apple disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Apple Support Communities Terms of Use.