A new problem

Andrew Perrin - Demography aperrin at demog.Berkeley.EDU
Thu Jun 11 15:22:01 GMT 1998 

This morning there's a new problem on our NTDOM setup: the system seems to
have made the switch incorrectly when one user logs out and another logs
onto an NT machine in the domain.  New user gets [homes] fine, but
the profile share doesn't work; the error received is "your roaming
profile is not available," and trying to connect manually to the share
fails with "access is denied."

Here's a level 3 log from the machine serving the profile:
1998/06/11 08:17:33 Transaction 298 of length 87
switch message SMBtrans2 (pid 17095)
chdir to /home/davis/hdir1/carlm/ntprofile
chdir to /home/davis/hdir1/carlm/ntprofile
1998/06/11 08:17:33 chdir (/home/davis/hdir1/carlm/ntprofile) failed
cnum=49
1998/06/11 08:17:33 error packet at line 4642 cmd=50 (SMBtrans2) eclass=2
ecode=4
error string = Permission denied
1998/06/11 08:17:33 Transaction 299 of length 87
switch message SMBtrans2 (pid 17095)
chdir to /home/davis/hdir1/carlm/ntprofile
chdir to /home/davis/hdir1/carlm/ntprofile
1998/06/11 08:17:33 chdir (/home/davis/hdir1/carlm/ntprofile) failed
cnum=49
1998/06/11 08:17:33 error packet at line 4642 cmd=50 (SMBtrans2) eclass=2
ecode=4
error string = Permission denied

This takes some interpreting: carlm is the user who was logged onto the NT
machine *before* -- NOT the one who's logging in now.  The one who's
logging in now is aperrin; so it's getting the new login well enough to
get the credentials right and to get the right [homes] share, but not well
enough to renegotiate the [ntprofile] directory.  Relevant parts of
smb.conf on the machine serving profiles follow.

Samba 1.9.19-prealpha, Solaris 2.6, NT4.0 SP3.

[global]
        workgroup = DEMOGRAPHY
        smbrun = /usr/LOCAL/samba/bin/smbrun
        lock dir = /usr/LOCAL/samba/var/locks
        debug level = 3
        wins support = no
        wins server = 128.32.163.196
        os level = 0
        preferred master = no
        domain logons = no
        encrypt passwords = yes
        security = domain
        password server = boserup
        log file = /var/log/samba.%m.log
        load printers = no
        hide dot files = no
        default service = homes
        time server = true
        guest account = nobody
 
[homes]
        guest ok = no
        read only = no
        browseable = yes
        wide links = yes
        printable = no
        Comment = Home Directory (%U)
 
[ntprofile]
        guest ok = no
        read only = no
        browseable = yes
        wide links = yes
        printable = no
        path = /home/davis/hdir1/%U/ntprofile
        Comment = Profile Directory (%U)


---------------------------------------------------------------------
Andrew J. Perrin - aperrin at demog.berkeley.edu - NT/Unix Admin/Support
Department of Demography    -    University of California at Berkeley
2232 Piedmont Avenue #2120  -    Berkeley, California, 94720-2120 USA
http://demog.berkeley.edu/~aperrin --------------------------SEIU1199

More information about the samba-ntdom mailing list