Is it possible to connect a DOS pc to a windows 2003 domain
We are in the process of upgrading our domain from windows 2000 to windows 2003.
We have a few old DOS machines that need to be able to access a share on a server on the domain. We are using MS Lan Manager 2.2a, and everything works fine on the 2000 domain.
Is this possible? Is there any specific settings we need to change?
The command we are using from the DOS pc is:
net logon username password /DOMAIN:domainname /y
The error that occurs:
NET3779 Your logon attempt has failed due to an incorrect username or password.
[I've checked the error NET3779, and it talks about invalid characters in the pc name, which doesn't seem at all connected]
I've tried setting the LAN Manager auth level to "Send LM & NTLM - Use NTLMv2 session if negotiated" and I've disabled "Do not store LAN manager hash value on next password change" from advice I found online and it didn't make any difference. I've also tried setting "Digitally sign communications (always/if server agrees) to disabled and that didn't help.
Is it even possible to connect DOS PCs to windows server 2003 domains? What do I need to do?
When I last used this sort of technique it was booting from a floppy or USB flash drive. I used
net use G: \\servername\sharename
in the autoexec.bat and then typed in a valid username and password when prompted. Any other settings were in the protocol.ini or system.ini file. I'd have to go dig those up to see but I'm assuming the domain was specified in one of those.
Is your net logon statement in the autoexec.bat?
I definitely have the files on another drive and have a Server 2003 domain I could try it on to confirm but it might take me a few days to get the chance to test it.
It's probably worth noting that the "DOS" I'm using on my newest device is from the Windows XP boot floppy. Prior to that I used the "DOS" from 98se boot floppy. At some point a few years ago I hit a situation where the 98se DOS wouldn't work and had to upgrade to the XP DOS.
OK, I haven't tested it to see if it works yet but covering the concept of what is on the disk we have (I'll leave out the custom settings):
Config.sys
device=c:\net\ifshlp.sys
dos=high,umb
lastdrive=z
Autoexec.bat
@ECHO OFF
SET DIRCMD=/O:GN
path=c:\;c:\net
c:\net\net initialize
c:\net\netbind.com
c:\net\umb.com
c:\net\tcptsr.exe
c:\net\tinyrfc.exe
c:\net\nmtsr.exe
c:\net\emsbfr.exe
c:\net\net start
net use G: \\servername\sharename
G:
protocol.ini
;modify netcard=, lana0=, the device specific section, and bindings= if used with any other NIC.
[network.setup]
version=0x3110
;netcard=ms$elnk3,1,MS$ELNK3,1
;netcard=el90x$,1,EL90X$,1
netcard=e1000$
transport=tcpip,TCPIP
;lana0=ms$elnk3,1,tcpip
;lana0=el90x$,1,tcpip
lana0=e1000$,1,tcpip
;this section is device specific
;[EL90X$]
;DRIVERNAME=EL90X$
;MAXTRANSMITS=40
[E1000$]
DRIVERNAME = E1000$
;[ms$elnk3]
;DRIVERNAME=ELNK3$
; IOADDRESS=0x300
; SLOT=1
; MAXTRANSMITS=6
[protman]
drivername=PROTMAN$
PRIORITY=MS$NDISHLP
[tcpip]
NBSessions=6
DefaultGateway0=
SubNetMask0=
IPAddress0=
DisableDHCP=0
DriverName=TCPIP$
;BINDINGS=ms$elnk3
;BINDINGS=EL90X$
BINDINGS=E1000$
LANABASE=0
Note I didn't strip out sections about different NIC drivers.
system.ini
[network]
filesharing=no
printsharing=no
;autologon=yes
autologon=no
computername=asdfg
lanroot=C:\NET
username=testid
;modify workgroup= if used with any other domain
workgroup=DOMAINNAME
passwordcaching=no
reconnect=no
dospophotkey=N
lmlogon=0
logondomain=DOMAINNAME
preferredredir=full
autostart=full
maxconnections=8
[network drivers]
;modify netcard= if used with any other NIC.
;netcard=elnk3.dos
;netcard=EL90X.DOS
netcard=e1000.dos
transport=tcpdrv.dos,nemm.dos
devdir=C:\NET
LoadRMDrivers=yes
[Password Lists]
*Shares=C:\net\Share000.PWL
Note the domain name is the "short" domain name. So if your domain is seen as "company with a long name" and "COMPANY" just use the short one.
now there are a ton of other files involved on the boot disk but the settings that matter based on how you were trying to do it versus how I do it is the "net use" statement and the autologon= setting.
I'll give it a shot today and let you know what happens.
I'm getting logged on to the domain but when I try the net use statement I get Error 5: Access has been denied. Let me check some things and see if I can get it to work.
Perhaps you need to enable lmhash on the 2003 domain servers for backwards compatibility?
This site might give some clues (here)
Ooh...nevermind...more info for you...here and here. Maybe they can give more info.
Is your password "complex"? If so, it may not be an invalid computer name, so much as an invalid password ... just a thought. Try resetting your password to something trivial.