w2k and authentication
Steve Langasek
vorlon at netexpress.net
Wed Apr 25 15:09:04 GMT 2001
Hi Tom,
If you're using Linux, replace all 'account' lines in /etc/pam.d/samba with
this line:
account sufficient pam_permit.so
Regards,
Steve Langasek
postmodern programmer
On Wed, 25 Apr 2001, Tom Hudak wrote:
> I'm having some issues with my new flashy 2.2 based PDC. All seems to work
> fine with 9x/ME (ugh, I know...) in that they (lusers) can log in using their
> existing user-names passwords using domain level logins.
> However, when setting up the domain login's on a w2k machine after adding the
> machine to all the authentication files and setting up a trust account for the
> machine name, I can't for the life of me get it to log me in. I had to setup a
> root domain user and get w2k to join the domain using that user but now I
> can't login with that user or any other for that matter.
> I get the following winblows error:
> Your account has been disabled. Please see your system administrator.
> Obviously the account hasn't been disabled, but upon trying to login on this
> machine I get the following in the smbd logs:
> PAM: Init user: thudak
> [2001/04/25 09:19:29, 1] lib/util_sock.c:get_socket_name(1055)
> Gethostbyaddr failed for 10.0.2.214
> [2001/04/25 09:19:29, 4] passdb/pampass.c:proc_pam_start(173)
> PAM: setting rhost to: 10.0.2.214
> [2001/04/25 09:19:29, 4] passdb/pampass.c:proc_pam_start(181)
> PAM: setting tty
> [2001/04/25 09:19:29, 4] passdb/pampass.c:proc_pam_start(188)
> PAM: Init passed for user: thudak
> [2001/04/25 09:19:29, 4] passdb/pampass.c:pam_account(246)
> PAM: Account Management for User: thudak
> [2001/04/25 09:19:29, 0] passdb/pampass.c:pam_account(268)
> PAM: UNKNOWN ERROR for User: thudak
> [2001/04/25 09:19:29, 2] passdb/pampass.c:pam_error_handler(66)
> PAM: Account Check Failed : Authentication service cannot retrieve
> authentication info.
> [2001/04/25 09:19:29, 4] passdb/pampass.c:proc_pam_end(144)
> PAM: PAM_END OK.
> [2001/04/25 09:19:29, 0] passdb/pampass.c:pam_accountcheck(381)
> PAM: Account Validation Failed - Rejecting User!
>
> I'm not sure what exactly is failing, but the UNKNOWN ERROR seems to
> winblows'ish for me... I would like to know at least an error # or something
> to that effect.
> Has anyone else seen this? Any ideas? I'm 1 step away from using w2k inside a
> VMware session to do account management of my Samba2.2 PDC!
> Thanks,
>
More information about the samba-ntdom
mailing list