interdomain trust problem
Lin Li
linl at xandros.com
Fri Dec 2 19:27:55 GMT 2005
Forget to mention that "wbinfo -u" on the client machine shows the users
on the trust domain correctly.
Thanks,
Lin
Lin Li wrote:
> I have a samba (3.0.20b) domain and NT4 domain trusted each other. My
> samba (3.0.20b) client machine joined the samba domain. When I try to
> authenticate an nt domain user on the client machine, I got error
> NO_SUCH_USER. The log on the samba pdc shows:
>
> [2005/12/02 11:08:26, 3] auth/auth.c:check_ntlm_password(219)
> check_ntlm_password: Checking password for unmapped user
> [NT4DOMAIN]\[nt1]@[DAVE-SBS2] with the new password interface
> [2005/12/02 11:08:26, 3] auth/auth.c:check_ntlm_password(222)
> check_ntlm_password: mapped user is: [NT4DOMAIN]\[nt1]@[DAVE-SBS2]
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
> push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
> [2005/12/02 11:08:26, 3] smbd/uid.c:push_conn_ctx(388)
> push_conn_ctx(100) : conn_ctx_stack_ndx = 0
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
> pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
> push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
> [2005/12/02 11:08:26, 3] smbd/uid.c:push_conn_ctx(388)
> push_conn_ctx(100) : conn_ctx_stack_ndx = 0
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
> pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
> [2005/12/02 11:08:26, 3] libsmb/namequery_dc.c:rpc_dc_name(145)
> rpc_dc_name: Returning DC NT4MASTER (172.16.3.10) for domain NT4DOMAIN
> [2005/12/02 11:08:26, 3] libsmb/cliconnect.c:cli_start_connection(1407)
> Connecting to host=NT4MASTER
> [2005/12/02 11:08:26, 3] lib/util_sock.c:open_socket_out(867)
> Connecting to 172.16.3.10 at port 445
> [2005/12/02 11:08:26, 2] lib/util_sock.c:open_socket_out(904)
> error connecting to 172.16.3.10:445 (Connection refused)
> [2005/12/02 11:08:26, 3] lib/util_sock.c:open_socket_out(867)
> Connecting to 172.16.3.10 at port 139
> [2005/12/02 11:08:26, 3] auth/auth_util.c:make_server_info_info3(1158)
> User nt1 does not exist, trying to add it
> [2005/12/02 11:08:26, 0] auth/auth_util.c:make_server_info_info3(1173)
> make_server_info_info3: pdb_init_sam failed!
> [2005/12/02 11:08:26, 0]
> libsmb/samlogon_cache.c:netsamlogon_cache_store(123)
> netsamlogon_cache_store: cannot open netsamlogon_cache.tdb for write!
> [2005/12/02 11:08:26, 2] auth/auth.c:check_ntlm_password(317)
> check_ntlm_password: Authentication for user [nt1] -> [nt1] FAILED
> with error
> NT_STATUS_NO_SUCH_USER
>
>
>
> It seems in the make_server_info_info3 call , samba tries to look for
> the user on the samba pdc. If I add a user with the same name but
> different password on the samba pdc, the authentication suceded. I see
> similar question asked in the samba mail list. Any help?
>
> Thanks,
> Lin
>
More information about the samba-technical
mailing list