Get "Your account has been disabled" when trying to logon to NT Wrkstn
Russell W. Quong
quong at best.com
Fri Oct 9 07:08:39 GMT 1998
(Been using samba 1.9.16/17/18 for almost a year happily).
I grabbed the 2.0.0 alpha code as of Oct 2 to get PDC support.
Using 2.0.35 linux kernel, slackware 3.5, egcs 1.0.3 compiler.
Massaged a header file and the Makefile and got samba to compile
Set up samba to be the PDC, for our doamin ITU.
The NT Workstation client sees the domain.
At the NT workstation login:
a) If I give a bad user name (not in smbpasswd) we get
a message saying "bad username or password"
b) If I try to logon as myself (and I'm in the smbpasswd file)
I get the "your account has been disabled" message
on the NT box. I get this message whether or not I type
my password correctly (!)
I am 99.8% sure I set up profiles INCORRECTLY. Is this the cause of
my problem?
Actually I tried to set up a profile by just editing text files on the
linux-samba box. I never: made a default profile on the NT box with
the user manager and copied it over the linux-samba box.
================================================================
Here's my config file:
[global]
log file = ...
admin users = quong
guest account = nobody
hosts allow = 209.24.153. localhost
; You will need a world readable lock directory and "share modes=yes"
; if you want to support the file sharing modes for multiple users
; of the same files
lock directory = /usr/local/var/locks
share modes = yes
socket options = IPTOS_LOWDELAY TCP_NODELAY
logon path = \\%N\profile\%U
logon script = netlogon-samba
include = /usr/local/exp-samba/lib/%U.conf
security = user
mangled stack = 200
mangle case = no
case sensitive = no
default case = lower
preserve case = yes
short preserve case = no
auto services = homes
mangled map = (*.html *.htm) (*.java *.jav)
workgroup = ITU
preferred master = yes
domain master = yes
remote announce = 209.24.153.127/ITU
interfaces = ....
;;; Win95/WfW = 02, NT = 32, we beat Win 95 and NT
os level = 40
wins support = yes
;;; NT PDC issues
; update encrypted = yes
smb passwd file = /usr/local/exp-samba/private/smbpasswd
encrypt passwords = yes
domain logons = yes
passwd chat debug = yes
...
[netlogon]
path = /usr/local/etc/samba
[profile]
root preexec = /usr/local/etc/samba/buildprofile %U
path = /usr/local/exp-samba/lib/profile
[homes]
.... other share data ...
================================================================
Here's a sample of the log file (debug at 3; debug=5 was too much).
[1998/10/08 01:19:28, 3] smbd/password.c:authorise_login(759)
ACCEPTED: guest account and guest ok
[1998/10/08 01:19:28, 3] smbd/service.c:make_connection(380)
Connect path is /tmp
[1998/10/08 01:19:28, 3] lib/util.c:ChDir(1232)
chdir to /tmp
[1998/10/08 01:19:28, 3] lib/util.c:ChDir(1232)
chdir to /local/usr/local/exp-samba/bin
[1998/10/08 01:19:28, 3] smbd/service.c:make_connection(482)
rain (209.24.153.34) connect to service IPC$ as user nobody (uid=65534, gid=10
0) (pid 1067)
[1998/10/08 01:19:28, 3] smbd/reply.c:reply_tcon_and_X(340)
tconX service=ipc$ user=nobody
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 3 of length 95
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBntcreateX (pid 1067)
[1998/10/08 01:19:28, 3] lib/util.c:ChDir(1232)
chdir to /tmp
[1998/10/08 01:19:28, 3] smbd/nttrans.c:nt_open_pipe(388)
nt_open_pipe: Known pipe lsarpc opening.
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 4 of length 152
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBtrans (pid 1067)
[1998/10/08 01:19:28, 3] smbd/ipc.c:reply_trans(3739)
trans <\PIPE\> data=72 params=0 setup=2
[1998/10/08 01:19:28, 3] smbd/ipc.c:named_pipe(3604)
named pipe command on <> name
[1998/10/08 01:19:28, 3] smbd/ipc.c:api_fd_reply(3404)
Got API command 0x26 on pipe "lsarpc" (pnum 703b)api_pipe_bind_req: \PIPE\lsar
pc -> \PIPE\lsass
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 5 of length 164
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBtrans (pid 1067)
[1998/10/08 01:19:28, 3] smbd/ipc.c:reply_trans(3739)
trans <\PIPE\> data=84 params=0 setup=2
[1998/10/08 01:19:28, 3] smbd/ipc.c:named_pipe(3604)
named pipe command on <> name
[1998/10/08 01:19:28, 3] smbd/ipc.c:api_fd_reply(3404)
Got API command 0x26 on pipe "lsarpc" (pnum 703b)Doing \PIPE\lsarpc
[1998/10/08 01:19:28, 3] rpc_server/srv_util.c:api_rpc_command(226)
api_rpc_command: LSA_OPENPOLICY
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 6 of length 132
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBtrans (pid 1067)
[1998/10/08 01:19:28, 3] smbd/ipc.c:reply_trans(3739)
trans <\PIPE\> data=52 params=0 setup=2
[1998/10/08 01:19:28, 3] smbd/ipc.c:named_pipe(3604)
named pipe command on <> name
[1998/10/08 01:19:28, 3] smbd/ipc.c:api_fd_reply(3404)
Got API command 0x26 on pipe "lsarpc" (pnum 703b)Doing \PIPE\lsarpc
[1998/10/08 01:19:28, 3] rpc_server/srv_util.c:api_rpc_command(226)
api_rpc_command: LSA_ENUMTRUSTDOM
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 7 of length 124
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBtrans (pid 1067)
[1998/10/08 01:19:28, 3] smbd/ipc.c:reply_trans(3739)
trans <\PIPE\> data=44 params=0 setup=2
[1998/10/08 01:19:28, 3] smbd/ipc.c:named_pipe(3604)
named pipe command on <> name
[1998/10/08 01:19:28, 3] smbd/ipc.c:api_fd_reply(3404)
Got API command 0x26 on pipe "lsarpc" (pnum 703b)Doing \PIPE\lsarpc
[1998/10/08 01:19:28, 3] rpc_server/srv_util.c:api_rpc_command(226)
api_rpc_command: LSA_CLOSE
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 8 of length 46
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBclose (pid 1067)
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 9 of length 97
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBntcreateX (pid 1067)
[1998/10/08 01:19:28, 3] smbd/nttrans.c:nt_open_pipe(388)
nt_open_pipe: Known pipe NETLOGON opening.
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 10 of length 152
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBtrans (pid 1067)
[1998/10/08 01:19:28, 3] smbd/ipc.c:reply_trans(3739)
trans <\PIPE\> data=72 params=0 setup=2
[1998/10/08 01:19:28, 3] smbd/ipc.c:named_pipe(3604)
named pipe command on <> name
[1998/10/08 01:19:28, 3] smbd/ipc.c:api_fd_reply(3404)
Got API command 0x26 on pipe "NETLOGON" (pnum 703c)api_pipe_bind_req: \PIPE\NE
TLOGON -> \PIPE\lsass
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 11 of length 166
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBtrans (pid 1067)
[1998/10/08 01:19:28, 3] smbd/ipc.c:reply_trans(3739)
trans <\PIPE\> data=86 params=0 setup=2
[1998/10/08 01:19:28, 3] smbd/ipc.c:named_pipe(3604)
named pipe command on <> name
[1998/10/08 01:19:28, 3] smbd/ipc.c:api_fd_reply(3404)
Got API command 0x26 on pipe "NETLOGON" (pnum 703c)Doing \PIPE\NETLOGON
[1998/10/08 01:19:28, 3] rpc_server/srv_util.c:api_rpc_command(226)
api_rpc_command: NET_REQCHAL
[1998/10/08 01:19:28, 0] passdb/smbpass.c:getsmbfilepwent(178)
getsmbfilepwent: malformed password entry (uid not number)
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 12 of length 200
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBtrans (pid 1067)
[1998/10/08 01:19:28, 3] smbd/ipc.c:reply_trans(3739)
trans <\PIPE\> data=120 params=0 setup=2
[1998/10/08 01:19:28, 3] smbd/ipc.c:named_pipe(3604)
named pipe command on <> name
[1998/10/08 01:19:28, 3] smbd/ipc.c:api_fd_reply(3404)
Got API command 0x26 on pipe "NETLOGON" (pnum 703c)Doing \PIPE\NETLOGON
[1998/10/08 01:19:28, 3] rpc_server/srv_util.c:api_rpc_command(226)
api_rpc_command: NET_AUTH2
[1998/10/08 01:19:28, 3] smbd/process.c:process_smb(565)
Transaction 13 of length 338
[1998/10/08 01:19:28, 3] smbd/process.c:switch_message(402)
switch message SMBtrans (pid 1067)
[1998/10/08 01:19:28, 3] smbd/ipc.c:reply_trans(3739)
trans <\PIPE\> data=258 params=0 setup=2
[1998/10/08 01:19:28, 3] smbd/ipc.c:named_pipe(3604)
named pipe command on <> name
[1998/10/08 01:19:28, 3] smbd/ipc.c:api_fd_reply(3404)
Got API command 0x26 on pipe "NETLOGON" (pnum 703c)Doing \PIPE\NETLOGON
[1998/10/08 01:19:28, 3] rpc_server/srv_util.c:api_rpc_command(226)
api_rpc_command: NET_SAMLOGON
[1998/10/08 01:19:28, 3] rpc_server/srv_netlog.c:api_net_sam_logon(621)
SAM Logon (Interactive). Domain:[ITU]. User:[quong]
[1998/10/08 01:19:38, 3] lib/util.c:ChDir(1232)
chdir to /local/usr/local/exp-samba/bin
[1998/10/08 01:22:28, 3] smbd/process.c:process_smb(565)
Transaction 14 of length 46
[1998/10/08 01:22:28, 3] smbd/process.c:switch_message(402)
switch message SMBclose (pid 1067)
================
RQ
More information about the samba-ntdom
mailing list