Password authentication
Hendrik den Hartog
hartog at ihug.co.nz
Sat May 22 23:39:07 GMT 1999
On Sun 23 May, Adrian Goins wrote:
> Quoting Fam den Hartog (hartog at ihug.co.nz):
> > I've noticed that LOGONS onto the Domain from Win95 Clients ONLY
> > work when the user Logging On has matching [i.e. identical]
> > username/passwd on both the SAMBA machine and the NT box.
>
> interesting. can you post up the global section of your smb.conf file so
> that we can see what all is going on there?
NP's is listed below...
> prior to moving my configuration to having my Sparc5 as a PDC,
> i was working in the opposite direction, with my NT Server as the PDC
> and with all login/password activity synchronized in that direction.
Mmm maybe I need to just clarify that our NT machine is set as PDC.
The *only* parameter I haven't set as per the 'instructions' is
'security=domain'.
I can't do this [yet] as I'm only setting/testing up the NT Server, and
have only a small number of 'test' users set up on the NT machine.
Its when I [try to] LOGON to the Domain from a Win95 client using one
of the 'test' users set on the NT/PDC machine that I get this failure
*unless* there is a matching [identical] username/passwd entry on the
SAMBA box?.
Cheers!
# Global parameters
workgroup = CLASSROOMS
netbios name =
netbios aliases =
server string = Samba Server
interfaces = 209.58.22.172/255.255.255.0 1.0.128.252/255.0.0.0
bind interfaces only = No
security = USER
encrypt passwords = No
update encrypted = No
use rhosts = No
min passwd length = 5
map to guest = Never
null passwords = No
password server = ntserver
smb passwd file = /etc/smbpasswd
hosts equiv =
root directory = /
passwd program = /bin/passwd
passwd chat = *old*password* %o\n *new*password* %n\
passwd chat debug = No
username map =
password level = 2
username level = 0
unix password sync = No
log level = 1
syslog = 1
syslog only = No
log file = /var/log/samba/log.%m
max log size = 50
timestamp logs = Yes
protocol = NT1
read bmpx = Yes
read raw = Yes
write raw = Yes
nt smb support = Yes
nt pipe support = Yes
nt acl support = No
announce version = 4.2
announce as = NT
max mux = 50
max xmit = 65535
name resolve order = lmhosts host wins bcast
max packet = 65535
max ttl = 259200
max wins ttl = 518400
min wins ttl = 21600
time server = No
change notify timeout = 60
deadtime = 0
getwd cache = Yes
keepalive = 300
lpq cache time = 10
max disk size = 0
max open files = 10000
read prediction = No
read size = 16384
shared mem size = 1048576
socket options = TCP_NODELAY
stat cache size = 50
load printers = Yes
printcap name = /etc/printcap
printer driver file = /etc/printers.def
strip dot = No
character set =
mangled stack = 50
coding system =
client code page = 850
stat cache = Yes
domain groups =
domain admin group =
domain guest group =
domain admin users =
domain guest users =
machine password timeout = 604800
add user script =
delete user script =
logon script =
logon path = \\%N\%U\profile
logon drive =
logon home = \\%N\%U
domain logons = No
os level = 0
lm announce = Auto
lm interval = 60
preferred master = No
local master = Yes
domain master = No
browse list = Yes
dns proxy = Yes
wins proxy = No
wins server =
wins support = Yes
kernel oplocks = Yes
ole locking compatibility = Yes
smbrun = /usr/bin/smbrun
config file =
preload =
lock dir = /var/lock/samba
default service =
message command =
dfree command =
valid chars =
remote announce =
remote browse sync =
socket address = 0.0.0.0
homedir map =
time offset = 0
unix realname = No
NIS homedir = No
panic action =
comment =
path =
alternate permissions = No
revalidate = No
username =
guest account = nobody
invalid users =
valid users =
admin users =
read list =
write list =
force user =
force group =
read only = Yes
create mask = 0744
force create mode = 00
directory mask = 0755
force directory mode = 00
guest only = No
guest ok = No
only user = No
hosts allow = 209.58.22. 1.0.128. 127.
hosts deny =
status = Yes
max connections = 0
min print space = 0
strict sync = No
sync always = No
print ok = No
postscript = No
printing = bsd
print command = lpr -r -P%p %s
lpq command = lpq -P%p
lprm command = lprm -P%p %j
lppause command =
lpresume command =
queuepause command =
queueresume command =
printer name =
printer driver = NULL
printer driver location =
default case = lower
case sensitive = No
preserve case = No
short preserve case = No
mangle case = No
mangling char = ~
hide dot files = Yes
delete veto files = No
veto files =
hide files = /.*/Riscos.ea/riscos.ea
veto oplock files =
map system = No
map hidden = No
map archive = Yes
mangled names = Yes
mangled map =
browseable = Yes
blocking locks = Yes
fake oplocks = No
locking = Yes
oplocks = Yes
strict locking = No
share modes = Yes
copy =
include =
exec =
postexec =
root preexec =
root postexec =
available = Yes
volume =
fstype = NTFS
set directory = No
wide links = Yes
follow symlinks = Yes
dont descend =
magic script =
magic output =
delete readonly = No
dos filetimes = No
dos filetime resolution = No
fake directory create times = No
--
More information about the samba-ntdom
mailing list