[Samba] ADS and Winbind ... Can't access with Samba host name ...

C.Lee Taylor leet at leenx.co.za
Fri Dec 19 09:41:10 GMT 2003 

Greetings ...

> please file a bug for me and we'll work on 

    Still waiting for an account ... sorry, I don't have time to wait 
around, I have to fix this problem chop chop ... ;-}

> getting this resolved.  This is the 3rd report
> of the same symptoms.   Thanks. 

    Okay, first I throught that maybe this a problem with Samba3, but I 
know that I have been able to use this, so I tried on both Samba 3.0.0 
(FC1 rpms ) and Samba 3.0.1 ( compiled on FC1 by myself rpms ) ...

    At first I had no joy with either, so I throught that maybe I had 
done something wrong ( blush! ) ... So, I went back to basics ... I 
found that if I removed all the funky options in /etc/krb5.conf and used 
Samba 3.0.0, all seems to work fine ( expect for know bugs in 3.0.0, 
understandable ) ... I think upgraded to Samba 3.0.1, and I could not 
access the Samba server again using is hostname ...

    So now I have two servers for test, both with FC1 and all the 
updates, one with Samba 3.0.0 ( FC1 rpms ) and the other with Samba 
3.0.1 ( self maybe rpms ).

    If anybody wants a copy of my smb.conf and krb5.conf, let me know.

Thanks
Mailed
Lee

> |    I have a Win2K3 ADS domain, I have two FedoraCore systems, one with
> | Samba 3.0.0 and the other with Samba 3.0.1.  Both give me the same
> problem.
> |
> |    If I try access the Samba shares from Win2K3 using the host 
> number, I
> | get prompted for a username and password, and no matter what I type in,
> | I can't get in.
> |
> |    If I use the Samba server IP address, I am able to get into shares
> | without been prompted for user details, but Point'nPrint don't work, it
> | too requests user details.
> |
> |    I do seem to be getting two errors in my logs ... First in smbd.log
> |
> | [2003/12/18 13:50:19, 0] lib/util_sock.c:get_peer_addr(948)
> |  getpeername failed. Error was Transport endpoint is not connected
> | [2003/12/18 16:18:07, 0] lib/util_sock.c:get_peer_addr(948)
> |  getpeername failed. Error was Transport endpoint is not connected
> |
> |    And the other in the machine log with the IP address eg ...
> |        10.1.1.20.log
> | [2003/12/18 14:51:23, 1] smbd/sesssetup.c:reply_spnego_kerberos(172)
> |  Failed to verify incoming ticket!
> | [2003/12/18 14:51:23, 1] smbd/sesssetup.c:reply_spnego_kerberos(172)
> |  Failed to verify incoming ticket!
> |
> |    But in the machine log with the hostname, I am getting normal
> | messages ...
> |
> |    I have tried to make changes in /etc/krb5.conf, but I don't get any
> | further ...
> |
> |    I have tried a few status checks with net, all hosts work fine ...
> |
> | [root at fd1-test-01 samba]# net lookup ldap
> | 10.1.1.16:389
> | 10.1.1.17:389
> |
> | [root at fd1-test-01 samba]# net lookup dc
> | 10.1.1.16
> | 10.1.1.17
> |
> |    But net lookup kdc, master domain don't return any thing, so I don't
> | know what else to look for ...

More information about the samba mailing list