NT Can't connect to encrypted share

Luke Kenneth Casson Leighton lkcl at switchboard.net
Thu Feb 19 18:58:17 GMT 1998 

hm.  the username you are using to log in has an entry in
private/smbpasswd, yes?

comments and ramblings, etc:

you are implicitly using the default guest account of "nobody" here.
check that its uid is 65534 not -2.

[global]
	workgroup = SANDBOX

; *** this line should be of the format s-1-5-21-xxx-yyy-zzz.
	domain sid = S-1-5-21-222-222-222

;	Added the following four lines to see if they make profiles work.

	domain master = yes
	local master = yes
	preferred master = yes
	os level = 200
	domain logons = yes

	security = user
; Samba seems to require the prior line for trust logins.
; **** and more.

	wins support = yes
	smbrun = /usr/LOCAL/samba/bin/smbrun
	lock dir = /usr/LOCAL/samba/var/locks
	debug level = 5 
	log file = /var/log/samba.log
	load printers = no
	hide dot files = no
	revalidate = yes
	printing = bsd
        default service = homes
	encrypt passwords = yes

	logon path = \\vuk\profile
; **** recommend \\%L\%U\profile as all your users will have the same
; **** profile if you do this.  also, putting machine names into the
; **** smb.conf file makes it non-portable.

[netlogon]
	guest ok = no
	read only = no
; **** read only = yes
; **** IT IS A SECURITY RISK TO PUT writeable = yes on the netlogon
; **** share.

	path = /home/davis/12s7/smb/netlogon/aperrin
	browseable = no
; **** browseable = yes.


[profile]
	guest ok = no
	guest only = no
	read only = no
	browseable = yes
	wide links = yes
	printable = no
	path = /home/davis/hdir1/%U/.ntprofile

oo.  interesting.  wow.  fascinating.  does this work, then?  wow, cool.
i wonder what the implications of doing this are.  hm.  when one user logs
out, the connection isn't dropped, and the next user uses the same smbd
process...

hm.  i wonder.

hey, i have an idea.  what happens if you clear all the oplocks before
responding to the "SMBlogoffX"?  sorry, thinking out loud...

	Comment = Profile Directory (%U)

[homes]
        guest ok = no
        read only = no
        browseable = yes
        wide links = yes
        printable = no
        create mask = 0775
	path = /home/davis/hdir1/%U
        Comment = Home Directory (%U)

[test]
	guest ok = no
	read only = no
	browseable = yes
	wide links = yes
	printable = no
	path = /usr/LOCAL/samba/test
	Comment = Sandbox

[cdrom]
	guest ok =no 
	read only = yes
	browseable = yes
	path = /cdrom
	wide links = no
	Comment = CD-ROM


<a href="mailto:lkcl at samba.anu.edu.au" > Luke Kenneth Casson Leighton  </a>
<a href="http://mailhost.cb1.com/~lkcl"> Samba and Network Development </a>
<a href="http://www.samba.co.uk"       > Samba and Network Consultancy </a>

More information about the samba-ntdom mailing list