domain/share authen

Luke Kenneth Casson Leighton lkcl at
Sat Apr 4 15:53:03 GMT 1998

On Sat, 4 Apr 1998, Jens B. Jorgensen wrote:

> What's the difference between a) connecting to an NT domain controller
> and authenticating for a connection to IPC$ and b) doing an actual NT
> login, other than extra info you might get back about the user account.


an NT login _is_ authentication using a connection to IPC$ (note the
change of wording).

the question i think you are asking is, what is the difference between
connecting anonymously to IPC$ and then doing a SAMLOGON, and doing a
SMBsesssetupX with the username/password/domain?

the answer (and i can only speculate here from what documentation is
available publicly) is, nothing.  the username/password/domain from the
SAMLOGON is passed to the SAM "local security authority", and the
username/password/domain from the SMBsessetupX is _also_ passed to the SAM

or to the Netware LSA, if you have that installed.

> I mean, they both would use the same user/password database, right? Or


> would it depend on what whether security for the share was share/user?

yes.  but i've never bothered with share level security (i don't like it)
so i wouldn't be able to even describe the difference to you, technically!


More information about the samba-ntdom mailing list