w2k and authentication

Steve Langasek vorlon at netexpress.net
Wed Apr 25 15:09:04 GMT 2001 

Hi Tom,

If you're using Linux, replace all 'account' lines in /etc/pam.d/samba with
this line:

  account    sufficient   pam_permit.so

Regards,
Steve Langasek
postmodern programmer

On Wed, 25 Apr 2001, Tom Hudak wrote:

> I'm having some issues with my new flashy 2.2 based PDC. All seems to work
> fine with 9x/ME (ugh, I know...) in that they (lusers) can log in using their
> existing user-names passwords using domain level logins.
> However, when setting up the domain login's on a w2k machine after adding the
> machine to all the authentication files and setting up a trust account for the
> machine name, I can't for the life of me get it to log me in. I had to setup a
> root domain user and get w2k to join the domain using that user but now I
> can't login with that user or any other for that matter.

> I get the following winblows error:
> Your account has been disabled. Please see your system administrator.

> Obviously the account hasn't been disabled, but upon trying to login on this
> machine I get the following in the smbd logs:
> PAM: Init user: thudak
> [2001/04/25 09:19:29, 1] lib/util_sock.c:get_socket_name(1055)
>   Gethostbyaddr failed for 10.0.2.214
> [2001/04/25 09:19:29, 4] passdb/pampass.c:proc_pam_start(173)
>   PAM: setting rhost to: 10.0.2.214
> [2001/04/25 09:19:29, 4] passdb/pampass.c:proc_pam_start(181)
>   PAM: setting tty
> [2001/04/25 09:19:29, 4] passdb/pampass.c:proc_pam_start(188)
>   PAM: Init passed for user: thudak
> [2001/04/25 09:19:29, 4] passdb/pampass.c:pam_account(246)
>   PAM: Account Management for User: thudak
> [2001/04/25 09:19:29, 0] passdb/pampass.c:pam_account(268)
>   PAM: UNKNOWN ERROR for User: thudak
> [2001/04/25 09:19:29, 2] passdb/pampass.c:pam_error_handler(66)
>   PAM: Account Check Failed : Authentication service cannot retrieve
> authentication info.
> [2001/04/25 09:19:29, 4] passdb/pampass.c:proc_pam_end(144)
>   PAM: PAM_END OK.
> [2001/04/25 09:19:29, 0] passdb/pampass.c:pam_accountcheck(381)
>   PAM: Account Validation Failed - Rejecting User!
>
> I'm not sure what exactly is failing, but the UNKNOWN ERROR seems to
> winblows'ish for me... I would like to know at least an error # or something
> to that effect.
> Has anyone else seen this? Any ideas? I'm 1 step away from using w2k inside a
> VMware session to do account management of my Samba2.2 PDC!
> Thanks,
>

More information about the samba-ntdom mailing list