winbindd problem

Tim Potter tpot at
Thu Apr 11 16:10:01 GMT 2002

On Thu, Apr 11, 2002 at 12:47:08PM -0500, Esh, Andrew wrote:

> Here it is:
> It's a key in the Registry called:
> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\RestrictAnonymous 
> If it's not there (the default), anonymous logins are allowed.

Here's my collection of links on the subject:

You can also use rpcclient to test whether it is turned on for a given
machine.  Run rpcclient pdcname -U% -c querydispinfo.  If you get an
error (hmm - haven't done it in a while so I can't remember the exact
name of it) then you probably have restrict anonymous set for that
machine.  You can then run rpcclient with -Uusername%password and it should
work when the anonymous connection did not.

Hmm - maybe I should put a level 0 debug in the winbindd log file when
that particular error is encountered?


More information about the samba-technical mailing list