[Samba] W2k no longer has Trust to samba pdc
MLB
mbruntel at .comcast.net
Thu Aug 1 05:13:02 GMT 2002
SMB.conf, smbpasswd, log files attached to this message.
I have several W2k Workstations, with a SAMBA 2.2.3 PDC.
Looking at the logs it seems that stevedallas (W2K client) is getting
validation errors as "visitor"
(which DOES exist...)
I am not sure what happened, but I must have removed all of the important
parts of the
server validation.
OUTLAND is domain, W2k/ clients are milo and lola.
They WERE working fine on the domain. I did SOMETHING (??)
and now I get a message that says (when I try and log on: The system
cannot log you on to this domain because the system computer account in
its primary domain is missing or the password on that account is
incorrect.
>
now: I tried to delete the machine accounts (milo$ and lola$)
using userdel and smbpasswd -x to eliminate all traces.
Tried to change out of domain, changed machine name, log
in: still no good, same messages.
Then I tried the same thing, but this time also deleted the
secrets.tdb file. Then did a smbpasswd to add the root account
again.
STILL same problem
HELP! I have no idea what to do!
The last thing I tried was to change the machine name
and out of the outland domain.
So I tried to change the name of the client to stevedallas,
and the workgroup to temp
That change worked ok. After this, I logged in, ok (as admin),
and was then able to change back to outland domain.
Now I was able to log in as workstation/administator
and I added new user/browse and it did see the outland domain.
I click my outland domain name, and next and the message:
The user could not be added because the following error
has occurred.
The trust relationship between this workstation and the primary
domain failed.
SO I am stuck without getting any user logins (at least I
can login as admin...
please point me in the right direction??? thanks
-------------- next part --------------
# Samba config file created using SWAT
# from lola (192.168.10.184)
# Date: 2002/07/21 09:58:22
# Global parameters
[global]
client code page = 437
workgroup = OUTLAND
netbios name = OUTLANDSVR
server string = Mitch's SAMBA Server %U
encrypt passwords = Yes
update encrypted = Yes
map to guest = Bad User
passwd program = /usr/bin/passwd %u
passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *passwd:*all*authentication*tokens*updated*successfully*
unix password sync = Yes
log level = 1
log file = /var/log/samba/log.%m
max log size = 200
debug hires timestamp = Yes
debug uid = Yes
time server = Yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
printcap name = lpstat
domain admin group = root @admins mbruntel administrator
domain guest group = nobody
add user script = /usr/sbin/useradd -d /dev/null -g 200 -s /bin/false -M %u
logon script = welcome
domain logons = Yes
os level = 66
preferred master = True
domain master = True
wins support = Yes
guest account = visitor
valid users = @family @admins administrator
admin users = mbruntel @admins root administrator
printer admin = mbruntel @family administrator @admins
hosts allow = 192.168.20.0
hosts deny = 68.0.0.0
printing = cups
[homes]
comment = Home Directories
read only = No
[netlogon]
comment = Network Logon Service
path = /var/lib/samba/netlogon
valid users =
read list = @family
write list = mbruntel ntadmin @admins root family
force group = @family
guest ok = Yes
max connections = 20
[Profiles]
comment = samba profiles here
path = /var/lib/samba/profiles
valid users = @family @admins ntadmin root
admin users = mbruntel @admins root ntadmin
create mask = 0600
directory mask = 0700
guest ok = Yes
browseable = No
[printers]
comment = All Printers
path = /var/spool/samba
create mask = 0700
guest ok = Yes
printable = Yes
print command = lpr-cups -P %p -o raw %s -r # using client side printer drivers.
lpq command = lpstat -o %p
lprm command = cancel %p-%j
browseable = No
[print$]
comment = PlugnPray Printer Support
path = /var/lib/samba/printers
write list = @adm root mbruntel
[mbruntel]
comment = Mitch's home Service
path = /home/mbruntel/dosroot/realroot
guest account =
valid users = mbruntel administrator
read only = No
max connections = 4
[cbruntel]
comment = Cheryl's Service
path = /home/cbruntel/dosroot/realroot
valid users = cbruntel
admin users = mbruntel @admins root cbruntel
read only = No
inherit permissions = Yes
max connections = 4
[zbruntel]
comment = Zack's Service
path = /home/zbruntel/dosroot/realroot
valid users = zbruntel
admin users = mbruntel zbruntel
force user = zbruntel
force group = family
read only = No
inherit permissions = Yes
max connections = 4
[moogirl]
comment = Mmoommoo Moogirl's Service
path = /home/moogirl/dosroot/realroot
valid users = moogirl
force user = moogirl
force group = family
read only = No
inherit permissions = Yes
max connections = 4
[common]
comment = A place to shareFiles!
path = /home/common/dosroot/realroot
admin users = mbruntel cbruntel zbruntel moogirl
read only = No
guest ok = Yes
max connections = 20
[mbruntel-admin]
comment = MB-linux Dir only-nofiles here
path = /home/mbruntel/dosroot
valid users = mbruntel
force group = family
read only = No
inherit permissions = Yes
max connections = 20
browseable = No
[cbruntel-admin]
comment = cb Linux home directory only-no files here
path = /home/cbruntel/dosroot
valid users = cbruntel
force group = family
read only = No
inherit permissions = Yes
max connections = 20
browseable = No
[software]
comment = Install SW here
path = /software
admin users = zbruntel cbruntel moogirl mbruntel
force group = family
read only = No
inherit permissions = Yes
guest ok = Yes
max connections = 20
[files]
comment = ALL File Storage HERE!
path = /files
admin users = mbruntel cbruntel moogirl zbruntel
force group = family
read only = No
inherit permissions = Yes
guest ok = Yes
max connections = 20
[bigfiles]
comment = Big&Files Directory
path = /files
admin users = mbruntel cbruntel zbruntel moogirl
force group = family
read only = No
inherit permissions = Yes
guest ok = Yes
max connections = 20
[cdrom]
comment = LINUX CDROM! R-0
path = /cd
guest ok = Yes
max connections = 1
fake oplocks = Yes
root preexec = /etc/mount /cd
root postexec = /etc/umount /cd
[mail]
comment = Home Mail directories
path = /var/spool/mail/
admin users = mbruntel cbruntel
read only = No
inherit permissions = Yes
max connections = 10
strict sync = Yes
sync always = Yes
[root]
comment = root share?
path = /tmp
guest account =
valid users = @family @admins root
[root at mitchbnj1 samba]#
-------------- next part --------------
[root at mitchbnj1 samba]# cat log.stevedallas
My analysis of this log:
stevedallas is W2kBox
mbruntel logged in as admin onto box. did connect as mbruntel to shares.
invalid user visitor (but as shown at end of this document (etc/passwd & etc/smbpasswd)
DO exist.
samba]# cat log.stevedallas�[K
[2002/07/29 20:27:56.566631, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:27:56.586252, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service bigfiles as user mbruntel (uid=0, gid=505) (pid 752)
[2002/07/29 20:27:56.588633, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service bigfiles
[2002/07/29 20:27:56.947764, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:28:05.962794, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:28:05.978528, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:28:06.134215, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:28:26.396284, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:28:26.406508, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:28:26.560309, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:28:29.838232, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:28:29.849095, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:28:29.961569, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:37:37.827386, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:37:49.684799, 0, effective(0, 0), real(0, 0)] lib/util_sock.c:read_data(436)
read_data: read failure for 4. Error = Connection reset by peer
[2002/07/29 20:37:49.686734, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service netlogon
[2002/07/29 20:37:49.693133, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service bigfiles
[2002/07/29 20:37:49.694993, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service software
[2002/07/29 20:37:49.727504, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service mbruntel
[2002/07/29 20:37:52.809610, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:37:52.865421, 1, effective(0, 0), real(0, 0)] smbd/reply.c:reply_sesssetup_and_X(998)
Rejecting user 'mbruntel': bad password
[2002/07/29 20:37:56.047275, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:37:56.110695, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:37:56.145079, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service mbruntel as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:37:56.280447, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:37:56.302975, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:37:56.340457, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service software as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:37:56.485673, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:37:56.516293, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:37:56.551314, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service bigfiles as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:37:56.680524, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:37:56.734304, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:37:56.749747, 1, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(478)
Couldn't find group @family
[2002/07/29 20:37:56.769262, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service netlogon as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:37:59.461929, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:37:59.528468, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:37:59.545469, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service mbruntel as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:37:59.586743, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service mbruntel
[2002/07/29 20:38:01.551140, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:38:01.581683, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:38:03.265237, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:38:03.310911, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:38:03.330582, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service software as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:38:03.338351, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service software
[2002/07/29 20:39:17.573355, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:39:17.592850, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:39:17.611403, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service bigfiles as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:39:17.617410, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service bigfiles
[2002/07/29 20:39:44.076562, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:39:44.096425, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:39:44.115149, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service bigfiles as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:39:44.128830, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service bigfiles
[2002/07/29 20:40:21.673719, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:40:21.685676, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:40:21.863445, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:40:38.465749, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:40:38.477364, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:40:38.594353, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:42:24.978179, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:42:25.009327, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:42:25.166913, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:44:52.464669, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:44:52.476336, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:44:52.484655, 1, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(478)
Couldn't find group @family
[2002/07/29 20:44:52.497015, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service netlogon as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:44:52.499224, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service netlogon
[2002/07/29 20:45:02.019169, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:45:02.032943, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:45:02.053397, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service bigfiles as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:45:02.058609, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service bigfiles
[2002/07/29 20:45:02.322751, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:45:02.331913, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:45:02.349757, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service mbruntel as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:45:02.353656, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service mbruntel
[2002/07/29 20:45:02.657868, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:45:02.694398, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:45:02.715332, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service software as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:45:02.736329, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service software
[2002/07/29 20:45:02.826934, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:45:02.853623, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:45:02.862000, 1, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(478)
Couldn't find group @family
[2002/07/29 20:45:02.874595, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service netlogon as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:45:02.885089, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service netlogon
[2002/07/29 20:55:53.307839, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:55:53.333854, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:55:53.363081, 1, effective(0, 505), real(0, 0)] smbd/service.c:make_connection(615)
stevedallas (192.168.10.184) connect to service software as user mbruntel (uid=0, gid=505) (pid 21093)
[2002/07/29 20:55:53.373651, 1, effective(0, 0), real(0, 0)] smbd/service.c:close_cnum(653)
stevedallas (192.168.10.184) closed connection to service software
[2002/07/29 20:55:57.110896, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[2002/07/29 20:55:57.123765, 0, effective(0, 0), real(0, 0)] smbd/service.c:make_connection(381)
mbruntel logged in as admin user (root privileges)
[2002/07/29 20:55:57.373206, 0, effective(0, 0), real(0, 0)] smbd/password.c:authorise_login(872)
authorise_login: rejected invalid user visitor
[root at mitchbnj1 samba]# grep visitor /etc/samba/smbpasswd�[K
visitor:509:F98959B0A0B6EF2DAAD3B435B51404EE:7C6578AE77113B8035674123CCE32B2B:[UX ]:LCT-3D37611C:
[root at mitchbnj1 samba]# grep visitor /etc/samba/smbpasswd�[K
[root at mitchbnj1 samba]# grep visitor /etc/passwd�[K
visitor:x:509:200::/dev/null:/bin/false
More information about the samba
mailing list