[Samba] secrets_fetch_trusted_domain_password
Beast
indorama at rad.net.id
Thu Mar 18 14:21:18 GMT 2004
It apparently samba stored trusted info on secret.tdb so only samba PDC was able to retrieve this info, am I correct? (though trust account waqs stored in ldap).
I can't browse samba BDC from (trusted) NT domain, it always ask for username/password again.
samba domain = IRSJKT
NT domain = DOMJKT
msg from samba BDC :
[2004/03/18 21:16:42, 5] auth/auth_util.c:make_user_info_map(216)
make_user_info_map: Mapping user [DOMJKT]\[administrator] from workstation [mynt]
[2004/03/18 21:16:42, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2004/03/18 21:16:42, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2004/03/18 21:16:42, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2004/03/18 21:16:42, 5] auth/auth_util.c:debug_nt_user_token(486)
NT user token: (NULL)
[2004/03/18 21:16:42, 5] auth/auth_util.c:debug_unix_user_token(505)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2004/03/18 21:16:42, 5] passdb/secrets.c:secrets_fetch_trusted_domain_password(300)
secrets_fetch failed!
[2004/03/18 21:16:42, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2004/03/18 21:16:42, 5] libsmb/trustdom_cache.c:trustdom_cache_fetch(172)
no entry for trusted domain DOMJKT found.
Even it attempt to resolve/map the username againts IRSJKT which will failed if both username and password combination is not same.
Anyone having problem with NT/Samba Trust relationship?
--beast
More information about the samba
mailing list