[AD + samba] Не могу подключиться к домену

[root@static samba]# cat smb.conf


[global]
        unix charset = LOCALE
        realm = DOMAIN.RU
        server string = samba1
        security = ADS

netbios name = portal
password server = 192.168.10.225
auth methods = winbind

        log level = 3
        syslog = 0
        log file = /var/log/samba/log.%m
        max log size = 100
        name resolve order = lmhosts host wins bcast
        printcap name = CUPS
        local master = No
        domain master = No
        dns proxy = No
        ldap ssl = no
        #panic action = /usr/share/samba/panic-action %d
        idmap uid = 10000-20000
        idmap gid = 10000-20000
        template shell = /bin/nologin
        invalid users = root

[share]
        path = /home/share
        read only = No
        create mask = 0777
        directory mask = 0777

[root@static samba]# cat ../krb5.conf

[libdefaults]
default_realm = DOMAIN.RU
krb4_get_tickets = false

[appdefaults]
proxiable = true
ticket_lifetime = 24h
debug = true
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false

[realms]
DELRUS-MSK.RU = {
        kdc = ad-server
        admin_server = ad-server
        default_domain = DOMAIN.RU
}


[domain_realm]
.domain.ru = DOMAIN.RU
domain.ru = DOMAIN.RU

[kdc]
enable-kerberos4 = false

[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log

[root@static samba]# kinit
Password for portal@DOMAIN.RU:
[root@static samba]# net ads info
LDAP server: 192.168.10.225
LDAP server name: OBERON.domain.ru
Realm: DOMAIN.RU
Bind Path: dc=DOMAIN.RU,dc=RU
LDAP port: 389
Server time: Sun, 26 Sep 2010 04:39:42 MSD
KDC server: 192.168.10.225
Server time offset: 0
[root@static samba]#

[root@static samba]# net ads join -U portal
portal's password:
The workgroup in /etc/samba/smb.conf does not match the short
domain name obtained from the server.
Using the name [MOSCOW] from the server.
You should set "workgroup = MOSCOW" in /etc/samba/smb.conf.
Using short domain name -- MOSCOW
Failed to set servicePrincipalNames. Please ensure that
the DNS domain of this server matches the AD domain,
Or rejoin with using Domain Admin credentials.
Failed to disable machine account for 'PORTAL' in realm 'DOMAIN.RU'
Failed to disable machine account in AD.  Please do so manually.
Failed to join domain: Type or value exists
[root@static samba]#