[Samba] Machine accounts keep expiring

Umberto Zanatta uzanatta at gmail.com
Fri Dec 15 16:55:35 GMT 2006 

Hi,

I've a problem with samba and ldap but it's the first time that samba
works so bad.

I made a network with samba and a few of windows client. Since four
months (the networks was made on january) and every 10/12 days the
workstations go out from the domain.

The user can't log, and when i try logging with administrator It ask me
to change him password.

So I must unjoin the workstation from the domain and join again.

on log files i found that:

auth/auth_sam.c:sam_account_ok(159)
 sam_account_ok: Account for user 'administrator' password expired!.
[2006/10/12 18:00:18, 1] auth/auth_sam.c:sam_account_ok(160)
 sam_account_ok: Password expired at 'Thu, 27 Apr 2006 13:55:38
GMT' (1146138938) unix time.
 account expires!


Pdbedit writes down:

Unix username:        administrator
NT username:          administrator
Account Flags:        [UX         ]
User SID:             S-1-5-21-1994751369-3554935017-608830866-500
Primary Group SID:    S-1-5-21-1994751369-3554935017-608830866-512
Full Name:            administrator
Home Directory:
HomeDir Drive:        H:
Logon Script:         studio.bat
Profile Path:
Domain:               STUDIO
Account desc:
Workstations:
Munged dial:
Logon time:           0
Logoff time:          Fri, 13 Dec 1901 21:45:51 GMT
Kickoff time:         Fri, 13 Dec 1901 21:45:51 GMT
Password last set:    Tue, 24 Oct 2006 14:09:22 GMT
Password can change:  0
Password must change: Sun, 22 Apr 2007 14:09:22 GMT
Last bad password   : 0
Bad password count  : 0
Logon hours         : FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF


LDIF:
dn: uid=administrator,ou=Users,dc=studiopietrobon,dc=it
objectClass: inetOrgPerson
objectClass: sambaSamAccount
objectClass: posixAccount
objectClass: shadowAccount
gidNumber: 0
uidNumber: 0
homeDirectory: /dev/null
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaKickoffTime: 2147483647
sambaPwdCanChange: 0
sambaHomeDrive: H:
sambaPrimaryGroupSID: S-1-5-21-1994751369-3554935017-608830866-512
sambaSID: S-1-5-21-1994751369-3554935017-608830866-500
loginShell: /bin/false
gecos: Netbios Domain Administrator
uid: administrator
sn: administrator
cn: administrator
sambaLMPassword: DA799E7A1B55D618AAD3B435B51404EE
sambaNTPassword: A28857A34205EF945BD07DD17568DF5C
sambaPwdLastSet: 1161691762
sambaPwdMustChange: 1177243762
userPassword:: e1NTSEF9RWV1dyt4a1hTVzRrUDdud3BjQXZMR0JjaDlZeFNtZGw=
sambaAcctFlags: [UX         ]

I had change sambaPwdMustChange by:

# smbldap-usermod -B 0 administrator

but it still doesn't work.

 check_ntlm_password:  Checking password for unmapped user []\[]@[PIETROBON]
with the new password interface
[2006/12/15 17:18:22, 3, effective(0, 0), real(0, 0)]
auth/auth.c:check_ntlm_password(222)
  check_ntlm_password:  mapped user is: [STUDIO]\[]@[PIETROBON]
[2006/12/15 17:18:22, 3, effective(0, 0), real(0, 0)]
auth/auth.c:check_ntlm_password(268)
  check_ntlm_password: guest authentication for user [] succeeded


samba runs on ubuntu 5.10.

Thank you in advance for your assistance.

Umberto Zanatta

More information about the samba mailing list