NT domain: errors in diagnostic tests 3 and 7+

Jeremy Malcolm Jeremy at Malcolm.wattle.id.au
Wed Dec 15 02:52:08 GMT 1999 

Hi,

I have an NT domain to which I have added a Samba 2 server.  I've
successfully caused the Samba server to join the domain.  My aim is to have
shares which anyone in the domain can access without a password.  However it
is not working; either (a) the Windows 95/98 clients are being prompted for
a password (and no password is accepted); or (b) they are getting "The share
name was not found".

The difference between (a) and (b) seems to be that in the case of (b) I
have manually added the user and their Windows password to smbpasswd, and in
the former case I have not.  Do I *need* to add them manually (smbadduser)
and set their Windows/samba passwords (smbpasswd)?  I have got "add user
script" defined, which I thought was supposed to circumvent this
requirement, but it doesn't seem to be working.

The share names - office$, network$, programs$, masters$ - are correct, so
the "share name was not found" errors that I am getting in (b) must be
spurious.  In (b), they can browse the Samba server in Network Neighbourhood
and see the visible shares (not in (a): they are prompted for a password).

When I try diagnostic test 3 on the samba server, I am prompted for a
password to view the shares, although I can just press Enter.  When I try
diagnostic test 7, I get "session setup failed - ERRSRV - ERR bad pw (Bad
password - name/password pair in a tree connect or session setup invalid)".
In diagnostic test 8 I get "The specified network password is not correct".

Below is the output of smbtestparm, I can also send smb.conf if needed.  I
have tried changing the security from "domain" to "user" or "share" but to
no avail.

Many thanks in advance for any advice!

--
JEREMY MALCOLM Jeremy at Malcolm.wattle.id.au http://malcolm.wattle.id.au
SIG of the day: [x] Contact  [ ] Web  [ ] PGP  [ ] Taglines #1  [ ] #2
Residence: 208/112 Mounts Bay Road, West Perth, Western Australia 6005
Phone: +61-8-9226 0689 (H), +61-8-9325 4400 (W) | Fax: +61-8-9421 1762
Mobile: 0419 911 079 | Email: jmm at proctors.com.au, info at netcafe.net.au

Load smb config files from /etc/samba.d/smb.conf
Processing section "[homes]"
Processing section "[printers]"
Processing section "[programs$]"
Processing section "[office$]"
Processing section "[network$]"
Processing section "[masters$]"
Processing section "[cd_rom_j]"
Processing section "[cd_rom_k]"
Processing section "[Kyocera]"
Loaded services file OK.
WARNING: You have some share names that are longer than 8 chars
These may give errors while browsing or may not be accessible
to some older clients
Press enter to see a dump of your service definitions
# Global parameters
	workgroup = MR
	netbios name =
	netbios aliases =
	server string = Whitestar
	interfaces =
	bind interfaces only = No
	security = DOMAIN
	encrypt passwords = Yes
	update encrypted = No
	use rhosts = No
	min passwd length = 5
	map to guest = Bad User
	null passwords = Yes
	password server = MRPERTH
	smb passwd file = /etc/samba.d/smbpasswd
	hosts equiv =
	root directory = /
	passwd program = /usr/bin/passwd
	passwd chat = *old*password* %o\n *new*password* %n\n *new*password* %n\n
*changed*
	passwd chat debug = No
	username map =
	password level = 0
	username level = 0
	unix password sync = No
	log level = 2
	syslog = 1
	syslog only = No
	log file =
	max log size = 50
	timestamp logs = Yes
	protocol = NT1
	read bmpx = Yes
	read raw = Yes
	write raw = Yes
	nt smb support = Yes
	nt pipe support = Yes
	nt acl support = No
	announce version = 4.2
	announce as = NT
	max mux = 50
	max xmit = 65535
	name resolve order = lmhosts host wins bcast
	max packet = 65535
	max ttl = 259200
	max wins ttl = 518400
	min wins ttl = 21600
	time server = No
	change notify timeout = 60
	deadtime = 0
	getwd cache = Yes
	keepalive = 300
	lpq cache time = 10
	max disk size = 0
	max open files = 10000
	read prediction = No
	read size = 16384
	shared mem size = 1048576
	socket options = TCP_NODELAY
	stat cache size = 50
	load printers = Yes
	printcap name = lpstat
	printer driver file = /etc/samba.d/printers.def
	strip dot = No
	character set =
	mangled stack = 50
	coding system =
	client code page = 850
	stat cache = Yes
	domain groups =
	domain admin group =
	domain guest group =
	domain admin users =
	domain guest users =
	machine password timeout = 604800
	add user script = /usr/sbin/adduser %u
	delete user script =
	logon script =
	logon path = \\%N\%U\profile
	logon drive =
	logon home = \\%N\%U
	domain logons = No
	os level = 0
	lm announce = Auto
	lm interval = 60
	preferred master = No
	local master = Yes
	domain master = No
	browse list = Yes
	dns proxy = No
	wins proxy = No
	wins server =
	wins support = No
	kernel oplocks = Yes
	ole locking compatibility = Yes
	smbrun = /usr/bin/smbrun
	config file =
	preload =
	lock dir = /var/lock/samba.d
	default service =
	message command =
	dfree command =
	valid chars =
	remote announce =
	remote browse sync =
	socket address = 0.0.0.0
	homedir map =
	time offset = 0
	unix realname = No
	NIS homedir = No
	panic action =
	comment =
	path =
	alternate permissions = No
	revalidate = No
	username =
	guest account = nobody
	invalid users =
	valid users =
	admin users =
	read list =
	write list =
	force user =
	force group =
	read only = Yes
	create mask = 0744
	force create mode = 00
	directory mask = 0755
	force directory mode = 00
	guest only = No
	guest ok = No
	only user = No
	hosts allow = 192.168.1. 192.168.2. 127.
	hosts deny =
	status = Yes
	max connections = 0
	min print space = 0
	strict sync = No
	sync always = No
	print ok = No
	postscript = No
	printing = lprng
	print command = lp -c -d%p %s; rm %s
	lpq command = lpstat -o%p
	lprm command = cancel %p-%j
	lppause command = lp -i %p-%j -H hold
	lpresume command = lp -i %p-%j -H resume
	queuepause command = lpc stop %p
	queueresume command = lpc start %p
	printer name =
	printer driver = NULL
	printer driver location =
	default case = lower
	case sensitive = No
	preserve case = Yes
	short preserve case = Yes
	mangle case = No
	mangling char = ~
	hide dot files = Yes
	delete veto files = No
	veto files =
	hide files =
	veto oplock files =
	map system = No
	map hidden = No
	map archive = Yes
	mangled names = Yes
	mangled map =
	browseable = Yes
	blocking locks = Yes
	fake oplocks = No
	locking = Yes
	oplocks = Yes
	strict locking = No
	share modes = Yes
	copy =
	include =
	exec =
	postexec =
	root preexec =
	root postexec =
	available = Yes
	volume =
	fstype = NTFS
	set directory = No
	wide links = Yes
	follow symlinks = Yes
	dont descend =
	magic script =
	magic output =
	delete readonly = No
	dos filetimes = No
	dos filetime resolution = No
	fake directory create times = No

[homes]
	comment = Home Directories

[printers]
	comment = All Printers
	path = /var/spool/samba
	create mask = 0700
	guest ok = Yes
	print ok = Yes
	browseable = No

[programs$]
	path = /mnt/mrdrives/programs
	read only = No
	guest only = Yes
	guest ok = Yes

[office$]
	path = /mnt/mrdrives/Office
	read only = No
	guest only = Yes
	guest ok = Yes

[network$]
	path = /mnt/mrdrives/Network
	read only = No
	guest only = Yes
	guest ok = Yes

[masters$]
	path = /mnt/mrdrives/Masters
	read only = No
	guest only = Yes
	guest ok = Yes

[cd_rom_j]
	path = /mnt/cdrom1
	read only = No
	guest only = Yes
	guest ok = Yes

[cd_rom_k]
	path = /mnt/cdrom2
	read only = No
	guest only = Yes
	guest ok = Yes

[Kyocera]
	comment = Kyocera 1500
	path = /var/spool/lpd/kyocera1500
	guest ok = Yes
	print ok = Yes
	print command = lpr -b -P%p %s
	printer name = Kyocera 1500

More information about the samba mailing list