I've been following the http://wiki.zimbra.com/index.php?tit...imbra_Admin_UI howto and got all working exept joining machines into domain. I have granted 'SeAddUsersPrivilege SeMachineAccountPrivilege' to the 'Domain Admins' group - but when joining machine to the domain with user in 'Domain Admins' group I can see from slapd log that it searches for machine account but it's not there - so joining fails. How this machine account should be created - frankly I'm a bit confused as this howto smb.conf has the following line -
'add machine script = /usr/sbin/adduser --shell /bin/false --disabled-password --quiet --gecos "machine account" --force-badname %u' - this is for adding machine account into local passwd not ldap, right? So how the machine account should get created at all?
Tried manually 'smbpasswd -a -m machinename' - but that gives an error too as it searches ldap for already existing machinename to change passwd. Strange that it doesn't add anything before doing search.
Adding Zimbra user as Samba Workstation Trust account will put it under ou=people not machines - so that won't do either.
Am I missing something here?