Access denied from NT

Andrew Bartlett abartlet at pcug.org.au
Tue Nov 27 12:12:03 GMT 2001 

Jim Provan wrote:
> 
> What service level is the NT Box ? Prior to SP3 (I think) you had to use
> plaintext passwords.

INCORRECT:  Prior to SP3 you had the *OPTION* of using plaintext
passwords.  Encrypted passwords have been supported back into the
distant dark days of the protocol.  You will have trouble finding one of
these clients.

> Encrypted passwords had to be used after this. If this is SP3 or lower,
> upgrade to SP6a and
> you should be good to go.
> 
> -----Original Message-----
> From: samba-admin at lists.samba.org [mailto:samba-admin at lists.samba.org]On
> Behalf Of Shubhasis Deb
> Sent: Monday, November 26, 2001 6:29 PM
> To: samba at samba.org
> Subject: Access denied from NT
> 
> Hi,
> 
> I have a problem in accessing samba server from NT
> network neighbourhood. I can see the samba server icon
> on neighbourhood. But while trying to access then it's
> asking for user name & passowrd.
> 
> I am not using local user & password from unix box
> rather it should be authenticated from NT PDC and
> accordingly I have modified the smb.conf file. Here is
> the sample of that.
> 
> 103 flara % more smb.conf
> [global]
> 
>         workgroup = NTPDC1
>         netbios name = FLARA
>         server string = Samba 2.2.2
> 
>         hosts allow = 192.24.206. 127.
> 
>         log file = /var/adm/samba/log.%m
>         max log size = 50
> 
>         security = server

You really should be using 'security=domain'

Run 'smbpasswd -j DOMAINNAME -r ntpdc1 -Uadministrator%password' to add
the machine account and join it.

>         password server = ntpdc1
>         encrypt passwords = yes
>         null passwords = no
>         invalid users = @root, @wheel, @bin, @sys
> 
>         load printers = no
>         show add printer wizard = no
> 
>  socket options = IPTOS_LOWDELAY TCP_NODELAY  \
> IPTOS_THROUGHPUT SO_RCVBUF=4096 SO_SNDBUF=4096
> 
>         interfaces = 192.24.206.120/24
> 
>         local master = no
>         os level = 33
>         domain master = no
>         preferred master = no
> 
> [work_mc]
>         comment = /work/mc
>         path = /work/mc
>         browseable = yes
>         writeable = yes
>         public = no
> 
> FYI nmbd and smbd started from inetd daemon and
> accordingly /etc/services and /etc/inetd.conf file
> modified. Here is the sample of that

It is highly advised to run samba as seperate deamons.
 
> In /etc/services the following lines has been added
> netbios-ssn     139/tcp #SMBD services
> netbios-ns      137/udp #NMBD services
> 
> and on /etc/inetd.conf
> netbios-ssn      stream   tcp    nowait  \
> root    /usr/local/samba/bin/smbd \
>  smbd
> netbios-ns      dgram   udp     wait  \
>    root    /usr/local/samba/bin/nmbd
>  nmbd
> 
> Can anyone has any clue on that?
> 
> thanks for your time.
> 
> Regds
> Shubhasis


-- 
Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net

More information about the samba mailing list