[Samba] Win 98 clients : access rejected to the server by nmbd
Matthew Booher
mbooher at bellevillemennoniteschool.org
Sun Aug 31 22:04:46 GMT 2003
I recently setup a k12os 3.0 (Redhat 9) Terminal server for a small
private school. This server is also the PDC for the domain. I am running
samba 2.2.8a and openldap 2.1.22. The problem I am having is that i am
having is that some windows 9x machines cannot log on the network. On
the client machine I get the following message “The domain password you
supplied is not correct, or access to the logon server has been denied”.
In the nmbd log I get the following out put.
nmbd/nmbd_processlogon.c:process_logon_packet(69)
process_logon_packet: Logon from 192.168.0.69: code = 0x0
[2003/08/31 17:38:06, 1]
nmbd/nmbd_processlogon.c:process_logon_packet(69)
process_logon_packet: Logon from 192.168.0.69: code = 0x0
[2003/08/31 17:38:06, 0]
nmbd/nmbd_responserecordsdb.c:find_response_record(235)
find_response_record: response packet id 12 received with no matching
record.
[2003/08/31 17:38:06, 0]
nmbd/nmbd_responserecordsdb.c:find_response_record(235)
find_response_record: response packet id 14 received with no matching
record.
Other than the above entry in the nmbd log i get no other sign that the
machine tried to log in there is nothing in the smbd log or in the ldap
log. I can logon to some 9x machines fine and others simply will not
logon. I have triple checked all the networking elements (switches
routers lines etc) all work fine. If anyone can give me any heads up on
why this is happening i would really applicate it. This thing has really
got me stumped.
Thanks,
Matthew Booher
Here is a copy of my smb.conf file if it is needed.
# Global parameters
[global]
#this is the global section of the conf file. It sets parameters for the
#overall machine.
workgroup = LAB
netbios name = SERVER
server string = File and Auth. Server TSERVER
interfaces = 192.168.0.254
bind interfaces only = yes
#
#password encryption for Win 95/98 computers
#
encrypt passwords = yes
unix password sync = yes
#smb passwd file = /etc/smbpasswd
passwd program = /usr/local/sbin/smbldap-passwd.pl -o %u
passwd chat = *new*password* %n\n *new*password* %n\n *successfully*
unix password sync = yes
; passwd chat debug = Yes
#log files and settings for logs of computer connections
#
log file = /var/log/samba/log.%m
max log size = 50
debug level = 2
name resolve order = wins lmhosts bcast
#
#General settings for the connections with reguard to network
#
deadtime = 10
keepalive = 60
socket options = TCP_NODELAY SO_KEEPALIVE SO_RCVBUF=8192 SO_SNDBUF=8192
load printers = no
logon path = \\%L\profile\%U
#logon drive = i:
logon home = \\%L\profile\%U
logon script = %G.bat
# unix realname = yes
#
# Domain login settings. With these, we will always win election!
#
domain logons = Yes
security = user
os level = 65
preferred master = yes
domain master = yes
local master = yes
dns proxy = no
wins proxy = yes
wins support = yes
; short preserve case =
map to guest = never
password level = 0
null passwords = no
kernel oplocks = no
follow symlinks = yes
# sambldap options
ldap suffix = dc=bms,dc=school
# ldap server = 192.168.0.254
ldap admin dn = cn=Manager,dc=bms,dc=school
ldap port = 389
ldap server = 127.0.0.1
ldap ssl = no
# ldap filter = (&(uid%u)(objectclasssambaAccount))
; add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false
-M %u
add user script = /usr/local/sbin/smbldap-useradd.pl -m -d /dev/null -g
1000 -s /bin/false %u
character set = iso8859-1
#================ Share Definitions ===============================
[homes]
path = %H
comment = Home Directoory
read only = No
create mask = 0700
directory mask = 0700
browseable = no
hide dot files = yes
veto files = /.bash*/.k*/.x*/
locking = no
share modes = no
[netlogon]
comment = Network Logon Service
path = /home/samba/netlogon/%G
write list = booz leon mbailey ntadmin boohemd0
admin users = booz leon mbailey boohemd0
writeable = no
browsable = yes
case sensitive = no
locking = No
share modes = no
; hide files =
; dont descend =
[profile]
path = /pchome/profiles
create mask = 0600
#csc policy = disable
directory mode = 0700
#profile acls = no
writable = yes
browsable = yes
[9x_profile]
path = /pchome/profiles/%U
browsable = no
writeable = yes
[admin]
comment = Root on server
path = /
valid users = booz leon mbailey boohemd0
admin users = booz leon mbailey boohemd0
read only = No
create mask = 0700
browseable = No
[tmp]
root preexec = /etc/smblogs %U %m %I
comment = Temporary file space
path = /pchome/tmp
read only = No
create mask = 0755
guest ok = Yes
root postexec = /etc/smblogsout %U %m %I
[scripts]
path = /home/samba/netlogon
create mask = 0755
admin users = booz leon mbailey boohemd0
write list = booz leon mbailey boohemd0
valid users = booz leon mbailey boohemd0
browseable = No
[adm_temp]
comment = Administration temp directory
path = /pchome/adm_temp
valid users = booz leon mbailey boohemd0
write list = booz leon mbailey boohemd0
admin users = booz leon mbailey boohemd0
writable = yes
browseable = No
[wp]
force create mode = 0444
valid users = +wp +adm +teacher
writable = yes
path = /pchome/classes/wp
browseable = no
locking = no
[peach]
guest ok = yes
writeable = yes
path = /pchome/classes/peach
browseable = yes
locking = no
share modes = no
volume = Peachtree_T
[comp_app]
path = /pchome/classes/comp_app
browseable = No
writable = yes
write list = booz root
valid users = +adm +capp_2 +capp_1
force create mode = 0770
force directory mode = 0770
; oplocks = yes
; level2 oplocks = yes
[atrt]
path = /pchome/classes/atrt
read only = No
force create mode = 0777
force directory mode = 0777
guest ok = Yes
browseable = no
# oplocks = No
# share modes = no
# locking = no
[tessel]
path = /pchome/tessel
read only = No
force create mode = 0777
force directory mode = 0777
guest ok = Yes
browsable = no
[quill]
path = /pchome/classes/quill
writable = yes
valid users = +quill +adm +teacher
write list = +quill +adm +teacher
browseable = no
force create mode = 0770
force directory mode = 0770
[yearbook]
path = /pchome/classes/yearbook
writable = yes
valid users = +yearbook +adm +teacher
write list = +yearbook +adm +teacher
browseable = no
force create mode = 0770
force directory mode = 0770
More information about the samba
mailing list