[Samba] interdomain authorization with samba-3.0alpha20
Krempasky, Ivan
Ivan.Krempasky at hp.com
Mon Jan 27 12:54:00 GMT 2003
Hello
I am trying to allow win2k and nt4 users from 2 domains , d1 and d2 to access shares on a tru64 v5.1A server
using samba-3.0alpha20.
Setup:
=====
1. there are 2 domains ,d1 and d2 with trust relationship established
2. d1 is a w2k domain and d2 is an nt4 domain
3. samba on the unix server has the following parameters set:
security = server
password server = pdc_d1
workgroup = d1
4. Users from d1 can map shares on the unix server OK, users from d2 cannot.
The samba log says:
[2003/01/21 11:36:45, 0] passdb/pdb_smbpasswd.c:(1350)
unable to open passdb database.
[2003/01/21 11:36:45, 1] auth/auth_server.c:(359)
password server pdc_d1 rejected the password
[2003/01/21 11:36:45, 2] auth/auth.c:(271)
check_password: Authentication for user [MAMORO] -> [feed_it] FAILED with err
or NT_STATUS_LOGON_FAILURE
[2003/01/21 11:36:45, 2] smbd/server.c:(533)
Closing connections
MAMORO is an d2 account
5. Using samba settings
security = server
password server = pdc_d2
workgroup = d2
users from d2 can map shares but users from d1 cannot
6. A d2 user can successfuly access shares on a w2k server in domain d1
7. I played around with security=domain but with no success.
Finally:
Thanks for reading this line. I am new to samba and I spent a week grepping for possible recommended settings in the inet
and samba mail lists. ANy hint/suggestion/question is welcomed
Thanks for your time
Ivan
More information about the samba
mailing list