Problems Authenticating NT Users Agains Domain

Simo Sorce simo.sorce at polimi.it
Fri Oct 27 15:29:24 GMT 2000 

You must create any user you want to connect to the server in local
passwd.
Another way is to use winbindd that behave similar to NIS for unix
clients.

Vos Alexander wrote:
> 
> Dear all,
> 
> We have set up an HP UX 11 machine running samba 2.0.6.
> The samba machine is member of the domain tflxxx and should authenticate
> users again the domain and not against the local users.
> 
> The samba machine should expose the directory /data_share to a NT user group
> called ggsamba (which is defined as global group on the NT PDC). The
> username map attribute of the global section contains a mapping file, which
> I understoud, should map unix accounts against NT accounts. In my case the
> unix group unixgroup to  ggsamba.
> 
> In my case the authentication fails somehow.
> 
> Does someone has a clue how to solve the problem or where I missed
> something?
> As far as I understodd the mapping should surround the need to setup the
> users twice?
> 
> Here is the smb.conf:
> # Samba config file created using SWAT
> # from 172.27.16.40 (172.27.16.40)
> # Date: 2000/10/27 13:03:35
> 
> # Global parameters
> [global]
>         workgroup = TFLxxx
>         netbios name = TFLSAMBA
>         server string = Samba Server
>         security = DOMAIN
>         encrypt passwords = Yes
>         password server = tflNTPDC
>         username map = /opt/samba/domaingroup.map
>         log file = /var/opt/samba/log.%m
>         max log size = 2000
>         domain groups = ggsamba
>         local master = No
>         read only = No
>         short preserve case = No
>         dos filetime resolution = Yes
> 
> [data_share]
>         comment = data_share
>         path = /data_share
>         valid users = @unixgroup
> 
> The file /opt/samba/domaingroup.map
> unixgroup = ggsamba
> 
> The log for my machine contains the following
> [2000/10/27 12:50:49, 0] lib/util_sec.c:(52)
>   Failed to set uid privileges to (-1,-2) now set to (0,0)
> [2000/10/27 12:50:49, 0] lib/util.c:(2456)
>   PANIC: failed to set uid
> 
> Thanks in advance.
> 
> Kind regards,
> 
> Alexander Vos
> 
> TFL Information Technology
> Networking and SAP Core
> 
> Phone:  +49 (0) 76 21 / 9 40 21 09
> Fax:    +49 (0) 76 21 / 9 40 21 00
> Mobile: +49 (0) 1 71 / 5 84 91 35
> Email:  alexander.vos at tfl.com
> Private:        alexander.vos at t-online.de

-- 
Simo Sorce - Integrazione Sistemi Unix/Windows - Politecnico di Milano
E-mail: simo.sorce at polimi.it
Tel.int: 02 2399 2425 - Fax.int. 02 2399 2451
-----------------------------------------------------------------
Be happy, use Linux!

More information about the samba-ntdom mailing list