difficulties to log in domain

Luke Kenneth Casson Leighton lkcl at samba.org
Wed Jan 12 13:38:15 GMT 2000 

great!

please could people remember that logs of less than 100 for dce/rpc errors
are almost completely useless to me, and please also remember that i
absolutely detest the "debug timestamps", so please either set this
parameter to "no", or use grep -v "2000/01/11" on the log output, to get
rid of the dated lines, they're a damn nuisance.

log level 100s are a bit like netmon traces / packet dumps, only better
:-) :-)

thx!

luke

On Wed, 12 Jan 2000, Lonnie J. Borntreger wrote:

> Luke,
> 
> The latest TNG (9PM CST).  Getting closer, I have the .mac file, so I'm
> assuming that something is wrong with my config.  (I attached the,
> hopefully, relevant files).
> 
> Lonnie Borntreger
> 
> *** Command results ***
> gto-> smbpasswd -j WHNET
> Joining Domain as PDC
> error connecting to 10.0.0.7:445 (Connection refused)
> rpc_check_hdr: error in rpc header
> rpc_pipe_bind failed
> cli_nt_setup_creds: request challenge failed
> 2000/01/11 21:10:43 : change_trust_account_password: Failed to change
> password for domain WHNET.
> Unable to join domain WHNET.
> 
> 
> *** log.smb ***
> [2000/01/11 21:10:32, 1] lib/util.c:map_nt_and_unix_username(3647)
>   map_nt_and_unix_username: NT->Unix map DISABLED
> [2000/01/11 21:10:32, 1] lib/util.c:map_nt_and_unix_username(3647)
>   map_nt_and_unix_username: NT->Unix map DISABLED
> [2000/01/11 21:10:33, 0] rpc_client/cli_pipe.c:rpc_check_hdr(117)
>   rpc_check_hdr: error in rpc header
> [2000/01/11 21:10:33, 0] rpc_client/cli_connect.c:cli_con_get(185)
>   rpc_pipe_bind failed
> [2000/01/11 21:10:33, 1] rpc_client/cli_login.c:cli_nt_setup_creds(55)
>   cli_nt_setup_creds: request challenge failed
> [2000/01/11 21:10:33, 0]
> rpc_client/msrpc_netlogon.c:domain_client_validate(106)
>   domain_client_validate: credentials failed (\\.)
> [2000/01/11 21:10:33, 0] rpc_client/cli_pipe.c:rpc_check_hdr(117)
>   rpc_check_hdr: error in rpc header
> [2000/01/11 21:10:33, 0] rpc_client/cli_connect.c:cli_con_get(185)
>   rpc_pipe_bind failed
> [2000/01/11 21:10:33, 1] rpc_client/cli_login.c:cli_nt_setup_creds(55)
>   cli_nt_setup_creds: request challenge failed
> [2000/01/11 21:10:33, 0]
> rpc_client/msrpc_netlogon.c:domain_client_validate(106)
>   domain_client_validate: credentials failed (\\.)
> 
> *** smbpasswd ***
> gto$:801:...:...:[DUWP       ]:LCT-387ABF75:
> 67goat:21749:...:...:[U          ]:LCT-38785238:Lonnie Borntreger
> donnab:21752:...:...:[U          ]:LCT-3878523D:Donnaa Borntreger
> guest:60000:...:...:[U          ]:LCT-3878557D:Guest
> 
> *** /etc/passwd ***
> gto$:x:801:800:GTO:/:/bin/false
> 
> *** /etc/group ***
> other::1:67goat,donnab,pocket0$,gto$
> staff::10:root,67goat,gto$,pocket0$
> samba::800:pocket0$,gto$
> 
> *** my attempts to do the group mapping ***
> builtingroup.map:samba = Users
> builtingroup.map:samba = Domain Users
> domaingroup.map:samba = Domain Users
> domaingroup.map:samba = WHNET\Users
> 
> *** smb.conf ***
> [global]
>         passwd chat debug = True
>         interfaces = 10.0.0.7/255.255.255.0
>         dont descend = /proc,/dev,/devices
>         server string = Borntreger PDC (%v,%h)
>         security = user
>         lock directory = /usr/local/samba/var/locks
>         dead time = 15
>         max log size = 1000
>         client code page = 437
>         nt smb support = yes
>         server ntlmv2 = yes
>         client ntlmv2 = auto
>         encrypt passwords = yes
>         smbpasswd file = /usr/local/samba/private/smbpasswd
>         domain group map = /usr/local/samba/lib/domaingroup.map
>         builtin group map = /usr/local/samba/lib/builtingroup.map
>         domain user map = /usr/local/samba/lib/domainuser.map
>         username map = /usr/local/samba/lib/user.map
>         null passwords = true
>         domain logons = yes
>         logon script = %U.bat
>         unix realname = yes
>         workgroup = WHNET
>         domain master = yes
>         name resolve order = lmhosts bcast host wins
>         os level = 65
>         preferred master = yes
>         local master = yes
>         wins support = yes
>         socket options = TCP_NODELAY
>         guest account = guest
>         hide dot files = no
>         browseable = yes
>         writable = yes
> 
> 
> [... shares ...]
> 

<a href="mailto:lkcl at samba.org"   > Luke Kenneth Casson Leighton    </a>
<a href="http://www.cb1.com/~lkcl"> Samba and Network Development   </a>
<a href="http://samba.org"        > Samba Web site                  </a>
<a href="http://www.iss.net"      > Internet Security Systems, Inc. </a>
<a href="http://mcp.com"          > Macmillan Technical Publishing  </a>

 ISBN1578701503 DCE/RPC over SMB: Samba and Windows NT Domain Internals

More information about the samba-ntdom mailing list