Description of problem: when using "winbind separator = ." in /etc/samba/smb.conf (security = ADS) and attempting "net ads join" The following error occurs, on occassion (seems to happen mostly when Windows Domain Controllers) are on separate subnet over a WAN connection) error: Failed to join domain: Improperly formed account name workaround is to use "\" or possibly any other separator besides "." in /etc/samba/smb.conf, e.g. "winbind separator = \" issue "net ads join" and then edit /etc/samba/smb.conf to put back the "." separator and restart winbind. -- error only occurs at initial ads join. Version-Release number of selected component (if applicable): I've seen this behavior sporadically over the last few years. How reproducible: occurs only occassionally, mostly when I attempt to join a host in a remote location, with the nearest MS Domain Controller on a different subnet), but I would not swear that that is always the case. Steps to Reproduce: 1.include " winbind separator = ." in /etc/samba/smb.conf , using security = ADS 2.config /etc/krb5.conf appropriately 3.run "net ads join" Actual results: Failed to join domain: Improperly formed account name (I beleive its appending a "." to the hostname on join. Expected results: Joined 'HOSTNAME' to realm 'SOME.DOMAIN.COM' Additional info:
Do not use "." in this context.217662