after an upgrade from 4.1.6 to 4.2.0rc4 with security = ADS "force user" did not work anymore
Rowland Penny
repenny241155 at gmail.com
Sat Jan 31 09:01:19 MST 2015
On 31/01/15 16:41, "Dr. Hansjörg Maurer" wrote:
> Am 31.01.2015 13:20, schrieb Rowland Penny:
>> Which is why I said to change 'force user = maurerh' to 'force user =
>> XXX\maurerh', where 'XXX' is your domain/workgroup name.
> I already tried force user = XXX\maurerh but get the same error as with
> force user =maurerh
> Without force user it works
>
>
> with force user:
> smbclient -W XXX -U maurerh //ftpserver/tmpuser
> Enter maurerh's password:
> Domain=[XXX] OS=[Windows 6.1] Server=[Samba 4.2.0rc4]
> tree connect failed: NT_STATUS_INVALID_SID
>
> Without force user
> smbclient -W XXX -U maurerh //ftpserver/tmpgroup
> Enter maurerh's password:
> Domain=[XXX] OS=[Windows 6.1] Server=[Samba 4.2.0rc4]
>
>
> A
> force group = +XXX\groupname
>
> works
>
> Regrads
>
> Hansjörg
>
>
> ----------------------------
> Unser System ist mit einem Mailverschluesselungs-Gateway ausgestattet. Wenn Sie moechten, dass an Sie gerichtete E-Mails verschluesselt werden, senden Sie einfach eine S/MIME-signierte E-Mail oder Ihren PGP Public Key an hansjoerg.maurer at itsd.de.
>
> Our system is equipped with an email encryption gateway. If you want email sent to you to be encrypted please send a S/MIME signed email or your PGP public key to hansjoerg.maurer at itsd.de.
>
OK, I can confirm this, with 'force user' in a share on 4.2.0rc4, a
domain user cannot connect with smbclient. I also do not think this has
anything to do with bug 11044, the user trying to connect is a domain
user and the 'force user' is a domain user, neither of which is in
/etc/passwd.
I have level 10 logs if it helps, should I or the OP raise a bug report ??
Rowland
More information about the samba-technical
mailing list