[Samba] Unable to login using 3.0.2a-SuSE as PDC and WinXP
badewanne
badewanne at hot.ee
Sun Mar 7 02:08:04 GMT 2004
Hello,
I've got a strange problem here: I installed Samba 3.0.2a using
the official rpms on a SuSE 9.0 machine.
I configured samba in the smb.conf as a PDC and created user and
machine accounts on the system as well as in the smbpasswd. Afterwards
I was able to join the domain with my Windows XP client.
After a reboot I am unable to log on to the Domain on my WinXP client.
There's just the following error message:
"Windows cannot connect to the domain, either because the domain
controller is down or otherwise unavailable, or because your computer
account was not found. Please try again later. If this message
continues to appear contact your Sys Admin for help."
"Requiresignorseal" on the client (Win XP SP1) is already disabled.
Nonetheless I can see the shared drives on the server after a local
login on my client, but I cannot access them as the server refuses my
login (user/pass). It is definately no typo or caps lock error.
My smb.conf:
[global]
workgroup = domain
guest account = nobody
keep alive = 30
os level = 80
kernel oplocks = false
security = user
encrypt passwords = yes
socket options = TCP_NODELAY
map to guest = Bad User
interfaces = 192.168.1.1/255.255.255.0
wins support = no
logon script = %U.bat
domain logons = yes
domain master = yes
username level = 3
password level = 3
log level = 3
[NetLogon]
path = /usr/samba/netlogon
browseable = yes
public = no
read only = no
valid users = steven
read list = steven
write list = steven
force create mode = 0777
force directory mode = 0777
The following is what the log file says (log level 3) after trying a
logon:
WinXP client name: cli
Domain name: DOMAIN
Samba server name: SERVER
========================snip========================
[2004/03/07 00:06:34, 3] smbd/oplock.c:init_oplocks(1226)
open_oplock_ipc: opening loopback UDP socket.
[2004/03/07 00:06:34, 3] smbd/oplock.c:init_oplocks(1257)
open_oplock ipc: pid = 2346, global_oplock_port = 32770
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 0 of length 72
[2004/03/07 00:06:34, 2] smbd/reply.c:reply_special(105)
netbios connect: name1=SERVER name2=ABC
[2004/03/07 00:06:34, 2] smbd/reply.c:reply_special(112)
netbios connect: local=server remote=cli, name type = 0
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 1 of length 137
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBnegprot (pid 2346)
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [PC NETWORK PROGRAM 1.0]
[2004/03/07 00:06:34, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [LANMAN1.0]
[2004/03/07 00:06:34, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [Windows for Workgroups 3.1a]
[2004/03/07 00:06:34, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [LM1.2X002]
[2004/03/07 00:06:34, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [LANMAN2.1]
[2004/03/07 00:06:34, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [NT LM 0.12]
[2004/03/07 00:06:34, 3] smbd/negprot.c:reply_nt1(329)
using SPNEGO
[2004/03/07 00:06:34, 3] smbd/negprot.c:reply_negprot(532)
Selected protocol NT LM 0.12
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 2 of length 238
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBsesssetupX (pid 2346)
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/sesssetup.c:reply_sesssetup_and_X(638)
wct=12 flg2=0xc807
[2004/03/07 00:06:34, 2] smbd/sesssetup.c:setup_new_vc_session(591)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2004/03/07 00:06:34, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(518)
Doing spnego session setup
[2004/03/07 00:06:34, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(549)
NativeOS=[Windows 2002 2600 Service Pack 1] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[]
[2004/03/07 00:06:34, 3] smbd/sesssetup.c:reply_spnego_negotiate(427)
Got OID 1 3 6 1 4 1 311 2 2 10
[2004/03/07 00:06:34, 3] smbd/sesssetup.c:reply_spnego_negotiate(430)
Got secblob of size 38
[2004/03/07 00:06:34, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62)
Got NTLMSSP neg_flags=0xe008b297
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 3 of length 260
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBsesssetupX (pid 2346)
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/sesssetup.c:reply_sesssetup_and_X(638)
wct=12 flg2=0xc807
[2004/03/07 00:06:34, 2] smbd/sesssetup.c:setup_new_vc_session(591)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2004/03/07 00:06:34, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(518)
Doing spnego session setup
[2004/03/07 00:06:34, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(549)
NativeOS=[Windows 2002 2600 Service Pack 1] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[]
[2004/03/07 00:06:34, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(616)
Got user=[] domain=[] workstation=[CLI] len1=1 len2=0
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] auth/auth.c:check_ntlm_password(219)
check_ntlm_password: Checking password for unmapped user []\[]@[CLI] with the new password interface
[2004/03/07 00:06:34, 3] auth/auth.c:check_ntlm_password(222)
check_ntlm_password: mapped user is: [DOMAIN]\[]@[CLI]
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] passdb/lookup_sid.c:fetch_sid_from_gid_cache(235)
fetch sid from gid cache 65533 -> S-1-5-21-2903860860-3466111512-1381306433-132067
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] auth/auth.c:check_ntlm_password(268)
check_ntlm_password: guest authentication for user [] succeeded
[2004/03/07 00:06:34, 3] libsmb/ntlmssp_sign.c:ntlmssp_sign_init(319)
NTLMSSP Sign/Seal - Initialising with flags:
[2004/03/07 00:06:34, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62)
Got NTLMSSP neg_flags=0x60088215
[2004/03/07 00:06:34, 3] smbd/password.c:register_vuid(221)
User name: nobody Real name: nobody
[2004/03/07 00:06:34, 3] smbd/password.c:register_vuid(240)
UNIX uid 65534 is UNIX user nobody, and will be vuid 100
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 4 of length 82
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBtconX (pid 2346)
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/service.c:make_connection_snum(543)
Connect path is '/tmp' for service [IPC$]
[2004/03/07 00:06:34, 3] lib/util_seaccess.c:se_access_check(251)
[2004/03/07 00:06:34, 3] lib/util_seaccess.c:se_access_check(252)
se_access_check: user sid is S-1-5-21-2903860860-3466111512-1381306433-501
se_access_check: also S-1-5-21-2903860860-3466111512-1381306433-514
se_access_check: also S-1-1-0
se_access_check: also S-1-5-2
se_access_check: also S-1-5-32-546
se_access_check: also S-1-5-21-2903860860-3466111512-1381306433-132067
se_access_check: also S-1-5-21-2903860860-3466111512-1381306433-132069
[2004/03/07 00:06:34, 3] smbd/vfs.c:vfs_init_default(203)
Initialising default vfs hooks
[2004/03/07 00:06:34, 3] lib/util_seaccess.c:se_access_check(251)
[2004/03/07 00:06:34, 3] lib/util_seaccess.c:se_access_check(252)
se_access_check: user sid is S-1-5-21-2903860860-3466111512-1381306433-501
se_access_check: also S-1-5-21-2903860860-3466111512-1381306433-514
se_access_check: also S-1-1-0
se_access_check: also S-1-5-2
se_access_check: also S-1-5-32-546
se_access_check: also S-1-5-21-2903860860-3466111512-1381306433-132067
se_access_check: also S-1-5-21-2903860860-3466111512-1381306433-132069
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (65534, 65533) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/service.c:make_connection_snum(705)
cli (192.168.0.1) connect to service IPC$ initially as user nobody (uid=65534, gid=65533) (pid 2346)
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/reply.c:reply_tcon_and_X(326)
tconX service=IPC$
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 5 of length 108
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBntcreateX (pid 2346)
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (65534, 65533) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/nttrans.c:nt_open_pipe(503)
nt_open_pipe: Known pipe NETLOGON opening.
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 6 of length 140
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBwriteX (pid 2346)
[2004/03/07 00:06:34, 3] rpc_server/srv_pipe.c:api_pipe_bind_req(860)
api_pipe_bind_req: \PIPE\NETLOGON -> \PIPE\lsass
[2004/03/07 00:06:34, 3] rpc_server/srv_pipe.c:check_bind_req(732)
check_bind_req for \PIPE\NETLOGON
[2004/03/07 00:06:34, 3] smbd/pipes.c:reply_pipe_write_and_X(199)
writeX-IPC pnum=7050 nwritten=72
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 7 of length 63
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBreadX (pid 2346)
[2004/03/07 00:06:34, 3] smbd/pipes.c:reply_pipe_read_and_X(242)
readX-IPC pnum=7050 min=1024 max=1024 nread=68
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 8 of length 156
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBwriteX (pid 2346)
[2004/03/07 00:06:34, 3] rpc_server/srv_pipe_hnd.c:free_pipe_context(544)
free_pipe_context: destroying talloc pool of size 0
[2004/03/07 00:06:34, 3] rpc_server/srv_pipe.c:api_rpcTNP(1509)
api_rpcTNP: rpc command: NET_REQCHAL
[2004/03/07 00:06:34, 3] rpc_server/srv_pipe_hnd.c:free_pipe_context(544)
free_pipe_context: destroying talloc pool of size 26
[2004/03/07 00:06:34, 3] smbd/pipes.c:reply_pipe_write_and_X(199)
writeX-IPC pnum=7050 nwritten=88
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 9 of length 63
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBreadX (pid 2346)
[2004/03/07 00:06:34, 3] smbd/pipes.c:reply_pipe_read_and_X(242)
readX-IPC pnum=7050 min=1024 max=1024 nread=36
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 10 of length 184
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBwriteX (pid 2346)
[2004/03/07 00:06:34, 3] rpc_server/srv_pipe_hnd.c:free_pipe_context(544)
free_pipe_context: destroying talloc pool of size 0
[2004/03/07 00:06:34, 3] rpc_server/srv_pipe_hnd.c:free_pipe_context(544)
free_pipe_context: destroying talloc pool of size 0
[2004/03/07 00:06:34, 3] smbd/pipes.c:reply_pipe_write_and_X(199)
writeX-IPC pnum=7050 nwritten=116
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 11 of length 63
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBreadX (pid 2346)
[2004/03/07 00:06:34, 3] smbd/pipes.c:reply_pipe_read_and_X(242)
readX-IPC pnum=7050 min=1024 max=1024 nread=32
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 12 of length 184
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBwriteX (pid 2346)
[2004/03/07 00:06:34, 3] rpc_server/srv_pipe_hnd.c:free_pipe_context(544)
free_pipe_context: destroying talloc pool of size 0
[2004/03/07 00:06:34, 3] rpc_server/srv_pipe.c:api_rpcTNP(1509)
api_rpcTNP: rpc command: NET_AUTH2
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(65534, 65533) : sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(100) : conn_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
[2004/03/07 00:06:34, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(100) : conn_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
[2004/03/07 00:06:34, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (65534, 65533) - sec_ctx_stack_ndx = 0
[2004/03/07 00:06:34, 3] rpc_server/srv_pipe_hnd.c:free_pipe_context(544)
free_pipe_context: destroying talloc pool of size 36
[2004/03/07 00:06:34, 3] smbd/pipes.c:reply_pipe_write_and_X(199)
writeX-IPC pnum=7050 nwritten=116
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 13 of length 63
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBreadX (pid 2346)
[2004/03/07 00:06:34, 3] smbd/pipes.c:reply_pipe_read_and_X(242)
readX-IPC pnum=7050 min=1024 max=1024 nread=40
[2004/03/07 00:06:34, 3] smbd/process.c:process_smb(890)
Transaction 14 of length 45
[2004/03/07 00:06:34, 3] smbd/process.c:switch_message(685)
switch message SMBclose (pid 2346)
========================snip========================
Is here anybody who can help? I'm looking for the failure for 2 days
now and I read hundereds of tutorials and other stuff google told me
to, but I don't find a solution. I also tried Samba 2.2.8 before I
upgraded to 3.0.2 - no success.
Any help and every hint is welcome.
Steve
More information about the samba
mailing list