[Samba] ClearCase and Samba

Wed Oct 2 17:07:35 GMT 2002

What are the problems or concerns around DOMAIN vs SERVER?  More 
specifically what impact does it have on the WINDOWS domain?

# Samba config file created using SWAT
# Date: 2002/09/20 12:51:09

# Global parameters
        workgroup = INDY
        netbios name = SUNTST1
        security = SERVER
        encrypt passwords = Yes
        map to guest = Bad User
        password server = ***.***.***.***
        username map = /usr/local/samba/lib/username.map
        lanman auth = No
        log level = 3
        log file = /usr/local/samba/log/samba.%m
        max open files = 30000
        wins server = ***.***.***.***
        kernel oplocks = No
        remote announce = ***.***.***.***
        create mask = 0775
        security mask = 0775
        directory mask = 0775 
        directory security mask = 0775
        oplocks = No

        comment = Clearcase Viewstore
        path = /clearcase/viewstore
        read only = No

        comment = Clearcase Vobstore
        path = /clearcase/vobstore
        read only = No

Mathew Spurgeon
Eli Lilly and Company
Software Engineering Support Team
Phone: (317)  276-7436
Mobile:  (317)  716-7789
mspurgeon at lilly.com

Javid Abdul-AJAVID1 <AJAVID1 at motorola.com>
Sent by: samba-admin at lists.samba.org
10/02/2002 11:28 AM

        To:     "'Bradley W. Langhorst'" <brad at langhorst.com>, SPURGEON_MATHEW_D at LILLY.COM
        cc:     samba at lists.samba.org, WEBBER_LARRY at LILLY.COM
        Subject:        RE: [Samba] ClearCase and Samba

yes, secuirty=server is not a good option, it keeps your auth connection
even after auth is done, so thats the reason prob after a while password
serer was rejecting users,
you should monitor your windows password server as to what it is doing

-----Original Message-----
From: Bradley W. Langhorst [mailto:brad at langhorst.com]
Sent: Wednesday, October 02, 2002 11:13 AM
Cc: samba at lists.samba.org; WEBBER_LARRY at LILLY.COM
Subject: Re: [Samba] ClearCase and Samba

security=SERVER is fraught with troubles...
have you considered using security=DOMAIN?

On Wed, 2002-10-02 at 11:54, SPURGEON_MATHEW_D at LILLY.COM wrote:
> In August we started having windows domain controller issues.  Could it 

> the number of users that are running ClearCase at a given point in time? 

> We have between 40 - 70 users accessing the VOBs at any given time.  The 

> samba config file is setup not run  security = SERVER. 
> The error logs:
> [2002/10/02 10:38:15, 2] passdb/pdb_smbpasswd.c:(170)
>   startsmbfilepwent_internal: unable to open file 
> /usr/local/samba/private/smbpa
> sswd. Error was No such file or directory
> [2002/10/02 10:38:15, 0] passdb/pdb_smbpasswd.c:(1367)
>   unable to open passdb database.
> [2002/10/02 10:38:15, 1] smbd/password.c:(555)
>   Couldn't find user 'rm38144' in passdb.
> [2002/10/02 10:38:15, 2] smbd/reply.c:(962)
>   NT Password did not match for user 'rm38144'!
> [2002/10/02 10:38:15, 1] smbd/reply.c:(998)
>   Rejecting user 'rm38144': bad password
> [2002/10/02 10:38:15, 3] smbd/error.c:(91)
>   error string = No such file or directory
> [2002/10/02 10:38:15, 3] smbd/error.c:(103)
>   error packet at smbd/reply.c(1000) cmd=115 (SMBsesssetupX) 
> [2002/10/02 10:38:15, 3] smbd/process.c:(860)
>   Transaction 397 of length 74
> I see that the NT Password did not match for user rm38144, however the 
> password and the UNIX password are the same.  Could this be something 

> the clearcase_albd account?
the interesting part of the transactionis higher in the log i think
security=SERVER is tried first then 
falls through to smbpasswd if there is some problem.
all I'm seeing is the part after falling through to smbpasswd (which
does not exist in your case)


To unsubscribe from this list go to the following URL and read the
instructions:  http://lists.samba.org/mailman/listinfo/samba
To unsubscribe from this list go to the following URL and read the
instructions:  http://lists.samba.org/mailman/listinfo/samba

-------------- next part --------------
HTML attachment scrubbed and removed

More information about the samba mailing list