winbindd and ftp

vda vda at port.imtp.ilyichevsk.odessa.ua
Fri Dec 21 02:23:04 GMT 2001


On Friday 21 December 2001 01:04, carl.huang at mic.com.tw wrote:

Tried to reproduce your steps with no success.
This is what I do:

> About my successful process:
> 1.First make the PDC(a win2000 server) work.
> 2.complie samba2.2.2 with --with-winbind(also with other items) and install
> it. config /etc/samba/smb.conf.
> 3.join samba to domain.
> 4.Add users into PDC.
> 5.config /etc/nsswitch.conf and /etc/pam.d/login
> 6.restart /etc/rc.d/init.d/smb.
> 7.start winbindd. ----- winbindd -i -d 3 -s /etc/samba/smb.conf ( you can
> see how it works).
> 8. use "wbinfo" and "getent" to test whether winbindd works.
> 9. I can telnet the machine with samba, using naspdc+username or
> naspdc\username.

All done. getent shows domain users. I can login as domain.user too (I like 
this separator, no need to press <shift> :-)

> 10.I can "smbclient  //smbhost/myshare -U naspdc\\username".  (naspdc is
> domain name).

This fails for me. Neither -U test nor -U port.test nor -U port\\test works. 
If I killall winbindd, -U test works provided test has UID assigned via entry 
in /etc/passwd and test password (obtained from PDC) is typed correctly.

> 11.I also  can access samba from win2000Pro. If i had logined the domain,
> needn't password anymore.

Does not work for me either.

Samba log of unsuccessful smbclient connect via port.test is at the end of 
email (manta is a name of connecting client). I suspect that samba tries to 
verify password against username 'port.test' on PDC! It should use 'test'.

> # /etc/samba/smb.conf

I used your smb.conf with minor modifications:

/etc/samba/smb.conf
-------------------
[global]
  workgroup = PORT
  ;server string = Samba Server
  ;netbios name = naswb
  guest account = guest
  log file = /var/log/samba.%m
  log level = 3
  max log size = 0

  security = domain
  password server = *

  password level = 4
  username level = 4

  encrypt passwords = yes
  winbind separator = .
  winbind cache time = 10
  template shell = /bin/bash
  template homedir = /home/%D.%U
  winbind uid = 10000-20000
  winbind gid = 10000-20000
  winbind enum users = yes
  winbind enum groups = yes
  username map = /etc/samba/smbusers

  socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
  wins server = 172.16.42.102
  dns proxy = no 

# Share Definitions
[homes]
  comment = Home Directories
  browseable = no
  writable = yes
  valid users = %S
  create mode = 0664
  directory mode = 0775
   
;[printers]
;  comment = All Printers
;  path = /var/spool/samba
;  browseable = no
;# Set public = yes to allow user 'guest account' to print
;  guest ok = no
;  writable = no
;  printable = yes

;[myshare]
;  comment = test folder
;  path = /home/share
;  ;valid users = asdf administrator hjf
;  ;public = no
;  writable = yes
;  ;printable = no
;  ;create mask = 0765


samba log
---------
[2001/12/21 12:17:21, 3] ../smbd/process.c:process_smb(860)
  Transaction 1 of length 168
[2001/12/21 12:17:21, 3] ../smbd/process.c:switch_message(667)
  switch message SMBnegprot (pid 18023)
[2001/12/21 12:17:21, 3] ../smbd/sec_ctx.c:set_sec_ctx(320)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2001/12/21 12:17:21, 3] ../smbd/negprot.c:reply_negprot(349)
  Requested protocol [PC NETWORK PROGRAM 1.0]
[2001/12/21 12:17:21, 3] ../smbd/negprot.c:reply_negprot(349)
  Requested protocol [MICROSOFT NETWORKS 1.03]
[2001/12/21 12:17:21, 3] ../smbd/negprot.c:reply_negprot(349)
  Requested protocol [MICROSOFT NETWORKS 3.0]
[2001/12/21 12:17:21, 3] ../smbd/negprot.c:reply_negprot(349)
  Requested protocol [LANMAN1.0]
[2001/12/21 12:17:21, 3] ../smbd/negprot.c:reply_negprot(349)
  Requested protocol [LM1.2X002]
[2001/12/21 12:17:21, 3] ../smbd/negprot.c:reply_negprot(349)
  Requested protocol [Samba]
[2001/12/21 12:17:21, 3] ../smbd/negprot.c:reply_negprot(433)
  Selected protocol NT LANMAN 1.0
[2001/12/21 12:17:21, 3] ../smbd/process.c:process_smb(860)
  Transaction 2 of length 139
[2001/12/21 12:17:21, 3] ../smbd/process.c:switch_message(667)
  switch message SMBsesssetupX (pid 18023)
[2001/12/21 12:17:21, 3] ../smbd/sec_ctx.c:set_sec_ctx(320)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2001/12/21 12:17:21, 3] ../smbd/reply.c:reply_sesssetup_and_X(855)
  Domain=[PORT]  NativeOS=[Unix] NativeLanMan=[Samba]
[2001/12/21 12:17:21, 3] ../smbd/reply.c:reply_sesssetup_and_X(866)
  sesssetupX:name=[PORT.TEST]
[2001/12/21 12:17:21, 0] ../lib/username.c:map_username(87)
  can't open username map /etc/samba/smbusers. Error No such file or directory
[2001/12/21 12:17:21, 3] ../libsmb/namequery.c:resolve_lmhosts(749)
  resolve_lmhosts: Attempting lmhosts lookup for name PORT<0x1c>
[2001/12/21 12:17:21, 3] ../libsmb/namequery.c:resolve_wins(691)
  resolve_wins: Attempting wins lookup for name PORT<0x1c>
[2001/12/21 12:17:21, 3] ../libsmb/namequery.c:resolve_wins(709)
  resolve_wins: WINS server == <172.16.42.102>
[2001/12/21 12:17:21, 3] ../lib/util_sock.c:open_socket_in(839)
  bind succeeded on port 0
[2001/12/21 12:17:21, 2] ../libsmb/namequery.c:name_query(417)
  Got a positive name query response from 172.16.42.102 ( 172.16.42.102 
172.16.42.102 )
[2001/12/21 12:17:21, 3] ../lib/util_sock.c:open_socket_in(839)
  bind succeeded on port 0
[2001/12/21 12:17:21, 3] ../libsmb/namequery.c:resolve_lmhosts(749)
  resolve_lmhosts: Attempting lmhosts lookup for name PORT_PDC<0x20>
[2001/12/21 12:17:21, 3] ../libsmb/namequery.c:resolve_hosts(789)
  resolve_hosts: Attempting host lookup for name PORT_PDC<0x20>
[2001/12/21 12:17:21, 3] ../lib/util_sock.c:open_socket_out(871)
  Connecting to 172.16.42.102 at port 139
[2001/12/21 12:17:21, 0] 
../rpc_client/cli_netlogon.c:cli_net_sam_logon_internal(411)
  cli_net_sam_logon_internal: NT_STATUS_NO_SUCH_USER
[2001/12/21 12:17:21, 0] ../smbd/password.c:domain_client_validate(1608)
  domain_client_validate: unable to validate password for user PORT.TEST in 
domain PORT to Domain controller *. Error was NT_STATUS_NO_SUCH_USER.
[2001/12/21 12:17:21, 1] ../smbd/password.c:pass_check_smb(546)
  Couldn't find user 'port.test' in passdb.
[2001/12/21 12:17:21, 2] ../smbd/reply.c:reply_sesssetup_and_X(970)
  NT Password did not match for user 'port.test'!
[2001/12/21 12:17:21, 2] ../smbd/reply.c:reply_sesssetup_and_X(980)
  Defaulting to Lanman password for port.test
[2001/12/21 12:17:21, 1] ../smbd/password.c:pass_check_smb(546)
  Couldn't find user 'port.test' in passdb.
[2001/12/21 12:17:21, 1] ../smbd/reply.c:reply_sesssetup_and_X(995)
  Rejecting user 'port.test': authentication failed
[2001/12/21 12:17:21, 3] ../smbd/error.c:error_packet(111)
  error packet at ../smbd/reply.c(997) cmd=115 (SMBsesssetupX) eclass=2 
ecode=2
[2001/12/21 12:17:21, 3] ../smbd/process.c:timeout_processing(1085)
  end of file from client
[2001/12/21 12:17:21, 3] ../smbd/sec_ctx.c:set_sec_ctx(320)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2001/12/21 12:17:21, 2] ../smbd/server.c:exit_server(458)
  Closing connections
[2001/12/21 12:17:21, 3] ../smbd/connection.c:yield_connection(50)
  Yielding connection to 
[2001/12/21 12:17:21, 3] ../smbd/server.c:exit_server(493)
  Server exit (normal exit)




More information about the samba mailing list