LinkStation and Active Directory Groups/Users

[kboykin]

   

Model LS-WTGL/R1-V3 F/W 3.09

 

I have setup the LinkStation on a local subnet with a file server/domain controller in a remote office. I have verified the time and successfully joined the box to the domain(it shows up in AD anyway).

 

I have made sure the box has an A record in DNS.

 

Whenever I go to User or Group Management I get "acquistion failed" or "cannot obtain".

 

Occasionally restarting it will work, but then on next refresh same thing. 

 

I have tried setting the delegation to "kerberos only" also, with no luck.

 

Any suggestions?

 

Thanks

[PCPiranha]

Is the time on the lkinstation within 5 min. of the domain controller?  Also what version of server?

Message Edited by PCPiranha on 08-24-2009 07:21 PM

[kboykin]

   

Time witin 25 seconds

Server 2003 R2

[PCPiranha]

What time zone are you in, and what GMT are you putting in?

[kboykin]

   

Both server and linkstation are in +8 GMT

[PCPiranha]

and is there any DST or "Summer Time" in effect?

[kboykin]

   

Shouldn't be and if the time was off it wouldn't have let me join it to the domain.

 

Thanks

 

[PCPiranha]

How are you connected to the remote location?  Is there any security between the local and remote sites?

[kboykin]

   

The Linkstation is in the same office as the DC (sitting on top of it). I have tried opening ports 389 and 3268 on the servers firewall and disabling the firewall completely.

[PCPiranha]

hmmm, sorry:

 

"I have setup the LinkStation on a local subnet with a file server/domain controller in a remote office."

 

this comment made me believe they weren't in the same office.  Let me look into this.  Was this unit purchased in the US?

[kboykin]

   

The unit was purchased in Hong Kong.

 

Its odd it worked for a few minutes, then stopped.

[PCPiranha]

Does your domain controller require Digitally Signed SMB Packets? OnWindows 2003 Server these policies are enabled by default.  They need tobe set to 'Disable', not 'Enable', or 'Not Defined'.  If not I would initialize the unit and set it back up.  Make sure the settings are correct:

 

 

Configuring the Buffalo Nas for Active Directory:

• A computer account with the name of the Buffalo NAS needs to becreated on the domain. It needs to be configured so that a pre-2000machine can use this account.

• In "IP Address Properties" under "Network", the DNS server address needs to be set to the Domain Controller's address.

• The clock on the Buffalo needs to be set to the same timezoneas the Domain Controller and the times need to be with in 5 minutes ofeach other.

• The "Workgroup/Domain" page under "Network" needs to be set tothe following settings - If ever a field is too short to enter the fullinformation (particularly the Domain Name and the Domain Controllerfields) they need to be filled in as much as possible:

Workgroup and Domain Properties:

• Network Type: "Active Directory"
• Active Directory Domain Name (NetBIOS Name): NETBIOS Legacy Domain name, ex. "DOMAIN"
• Active Directory Domain Name (DNS/Realm Name): Full Domain name, ex. "domain.com"
• Active Directory Domain controller Name: Domain Controller name, ex. "server"
• AD Administrator Name & AD Administrator Password: Theuser name and password of an account with administration privileges sothe Buffalo can properly be added to the network. This information willnot be stored.
• WINS Server IP Address: IP address of the WINS server (if not using WINS, enter domain controller's IP address)

 

 

If you still don't have any luck I would contact your local support for additional information.

[kboykin]

   

Okay,

 

Removed everything. Factory reset.

 

Created AD object. Gave it delegation rights.

Created A record.

Disabled local security policy for Digitally Signed SMB packets

Set static IP on linkstation.

Entered Domain information.

Check for correct time/zone.

 

Hit enter. No Errors.

Same issue. Cant find groups or users.

Tried restarts also.

 

The only thing I am thinking is maybe the box doesn't like being in a Child Domain.