[SAMBA4] w2k3 can't authenticate against us with its mechine
credentials
Andrew Bartlett
abartlet at samba.org
Sat Dec 9 21:44:42 GMT 2006
On Sat, 2006-12-09 at 16:02 +0100, Stefan (metze) Metzmacher wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi,
>
> I noticed that a w2k3 box gets NT_STATUS_LOGON_FAILURE in the session
> setup reply from samba4, when it tries to do a session setup using krb5
> and it's mechine credentials. After it has joined a samba4 domain.
>
> The AS-REQ and TGS-REQ were fine.
>
> I extended the RPC-JOIN test todo a session setup using mechine
> credentials and it works against samba4 and w2k3...
>
> The session setups of the administrator are working...
>
> see the attached capture and keytab to read the encrypted blobs
>
> Love, Andrew: any ideas?
Given it's a Samba4 error, can you trace down what is returning the
error?
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Red Hat Inc. http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20061210/a9e0aac9/attachment.bin
More information about the samba-technical
mailing list