[Samba] Difficulties with samba and ADS
Chris
chrisd at better-investing.org
Tue Jul 6 16:30:09 GMT 2004
Hello.
I thought I had this fixed 3 times now... but it keeps coming up. I have 2
smbservers that are part of an ADS domain (windows 2003 server).
I have my samba servers set up, and it works great for a month or so, then it
starts giving smbmount and smbclient a hard time. This is very bad news
because I rely upon smbmount heavily.
When I try to view the shares my main server, and use the correct password for
user chris:
# smbclient -L smbserver -U chris -W domainname
Password:
session setup failed: NT_STATUS_NO_LOGON_SERVERS
When I try to view the shares on my main server with no password for user
chris:
# smbclient -L smbserver -U chris -W domainname
Password:
Anonymous login successful
Domain=[DOMAINNAME] OS=[Unix] Server=[Samba 3.0.4]
Sharename Type Comment
--------- ---- -------
print$ Disk Windows Printer Drivers
accthp8150 Printer
genadmhp4si Printer
DOMAINNAME_tmp Disk
IPC$ IPC IPC Service (SMBSERVER)
ADMIN$ IPC IPC Service (SMBSERVER)
Anonymous login successful
Domain=[DOMAINNAME] OS=[Unix] Server=[Samba 3.0.4]
Server Comment
--------- -------
SMBSERVER SMBSERVER
DOMAINSERVER
Workgroup Master
--------- -------
DOMAINNAME DOMAINSERVER
When I try an smbmount with correct password:
# smbmount //smbserver/chris /mnt/misc -o username=chris,workgroup=domainname
Password:
23598: session setup failed: ERRDOS - 2215
SMB connection failed
When I try a smbmount with no passwd:
# smbmount //smbserver/chris /mnt/misc -o username=chris,workgroup=domainname
Password:
Anonymous login successful
23599: tree connect failed: ERRDOS - ERRnoaccess (Access denied.)
SMB connection failed
Smbmount works just fine on windows machines on the domain, and my old 2.0.7
samba servers on the old NT domain (which I am trying to migrate from).
I have read the documents, scoured the internet and bought a book on the
subject, and I just can't see what I am doing wrong here! Can someone please
give me a hand? I am thinking it is a kerberos thing... but I cannot be
certain.
I include my smb.conf at the bottom of this post.
Thank you very much!
Chris
============smb.conf===================================
[global]
netbios name = SMBSERVER
socket options = TCP_NODELAY SO_RCVBUF=16384 SO_SNDBUF=16384
dns proxy = no
realm = DOMAINNAME.INT
workgroup = DOMAINNAME
netbios aliases = SMBSERVER
server string = SMBSERVER
security = ADS
wins proxy = no
map to guest = Bad User
password server = domainserver.domainname.int
name resolve order = lmhosts wins bcast
time server = Yes
os level = 0
preferred master = No
local master = No
domain master = No
wins server = 208.226.104.10
hosts allow = 127.0.0.1, 208.226.104.
oplocks = No
follow symlinks = No
printing = cups
printcap name = CUPS
load printers = yes
[print$]
comment = Windows Printer Drivers
path = /var/lib/samba/printers
browseable = yes
read only = yes
guest ok = yes
write list = @ntadmin,root,administrator
[homes]
path = %H/sam
valid users = +%U, %U
write list = +%U
force user = %U
force group = %U
read only = No
create mask = 0660
directory mask = 0770
browseable = No
[DOMAINNAME_tmp]
path = /DOMAINNAME_tmp
admin users = chrisd, kurtk, administrator
force user = %U
force group = %G
read only = No
create mask = 0666
directory mask = 0777
guest ok = Yes
More information about the samba
mailing list