[Samba] Problems with Samba 3 and XP Roaming Profiles

Tue Apr 27 18:56:24 GMT 2004

I've got some annoying Problems with roaming profiles. Perhaps someone is
able to help me...
I would like to use Samba as a PDC and for storing NT roaming profiles. When
I first installed Samba 3.02 and XP SP1 (Before that I used Samba 2.2.8a and
XP without SP1), XP downloaded the old profiles it found. But upon shutdown
or logoff, changes to the profiles were not written to the server. I checked
the XP event log and found entrys about rights and some offline stuff. I
added
csc policy = disable
profile acls = yes
to the profiles share, and there where no more errors in the event log. But
profiles are still not written to the server. All I get on the XP side are
many warnings from COM+ that I do not understand. They may not be of much
use, since they are in German, but I include some anyway:

1. Das COM+-Ereignissystem konnte keine Instanz des Abonnenten
partition:{41E90F3E-56C1-4633-81C3-6E8BAC8BDD70}!new:{D3938AB0-5B9D-11D1-8DD
2-00AA004ABD5E} erstellen. CoGetObject gab HRESULT 80070422 zurück.
2. Das COM+-Ereignissystem hat versucht, das
EventObjectChange::ChangedSubscription-Ereignis auszulösen, hat aber einen
ungültigen Rückgabecode erhalten. HRESULT war 80040201.

They are just warnings (the problems I had before were error messages). They
do not occur when I log off, but roughly once per day.

On the side of the server I find entrys like this:
...
[2004/04/23 01:41:36, 0] rpc_server/srv_pipe.c:api_pipe_netsec_process(1371)
  failed to decode PDU
[2004/04/23 01:41:36, 0] rpc_server/srv_pipe_hnd.c:process_request_pdu(605)
  process_request_pdu: failed to do schannel processing.
...

These entrys occur when I log on to the server. When I log off, I just get
somthing like this:
..
[2004/04/27 04:03:33, 1] smbd/service.c:make_connection_snum(705)
  server (10.0.0.10) connect to service profiles initially as user frank
(uid=500, gid=100) (pid 16947)
[2004/04/27 04:03:38, 1] smbd/service.c:close_cnum(887)
  server (10.0.0.10) closed connection to service profiles
...

I tried removing the old profiles, but this did not help. No new profiles
were created on the server. I include my smb.conf:

[global]

   workgroup = FREUNDE

  netbios name = schluesselmann

   server string = Samba Server %v

map acl inherit = yes
time server = yes

   log file = /var/log/samba3log.%m

   max log size = 50

   hosts allow = 10.0.0.0/24 127.0.0.0/8

  map to guest = bad user

   security = user
  encrypt passwords = yes
  smb passwd file = /etc/samba/private/smbpasswd

unix password sync = Yes
pam password change = yes
passwd program = /usr/bin/passwd %u
passwd chat = *New*UNIX*password* %n\n *Re*ype*new*UNIX*password* %n\n \
*passwd:*all*authentication*tokens*updated*successfully*

   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

   interfaces = eth0

   local master = yes

   os level = 33

   domain master = yes

   preferred master = yes

   domain logons = yes

   logon path = \\%N\profiles\%U

  logon home = \\%N\%U\profile

   wins support = yes

   dns proxy = no

   dos charset = 850
   unix charset = ISO8859-1

#============================ Share Definitions
==============================
[homes]
   comment = Home Directories
   browseable = no
   writable = yes
   veto files = /.*/
   create mode = 0600
   directory mode = 0700
 [netlogon]
   comment = Network Logon Service
   path = /home/netlogon
   guest ok = yes
   writable = no
[profiles]
    path = /home/profiles
    browseable = yes
    csc policy = disable
    share modes = no
    profile acls = yes
    create mode = 0600
    directory mode = 0700
    read only = no
    writable = yes
[transfer]
       comment = Jeder darf schreiben
       path = /shares/transfer
       writeable = Yes
       create mode = 0666
       directory mode = 0777