[Samba] Problems using security=server for windows 2003 client.

Andrew Bartlett abartlet at samba.org
Thu Mar 9 00:52:56 GMT 2006

On Wed, 2006-03-08 at 14:52 -0900, Matthew Schumacher wrote:
> Andrew Bartlett wrote:
> > On Wed, 2006-03-08 at 09:51 -0900, Matthew Schumacher wrote:
> > 
> >>I searched around but didn't find an answer to my question, hopefully
> >>someone here knows how to fix this problem.
> >>
> >>The issue is actually pretty simple, if I use "security = user" and add
> >>a user with smbpasswd then I can connect to the share from windows 2003
> >>server.  However, if I set "security = server" then define the same
> >>windows 2003 server as the password server then I can't connect to samba
> >>from it.
> >>
> >>The logs report "password server WINSERVER rejected the password", but I
> >>know it works fine because I can connect from smbclient or windows 2000
> >>clients.  I can't figure out why "security = server" fails when the
> >>windows 2003 server tries to make a connection, but works for other clients.
> > 
> > 
> > If that server is a DC, then you must use 'security=domain'.  

Or security=ads

> > Andrew Bartlett
> > 
> Thanks for your help, but that doesn't seem to fix it.  When I change
> security to domain then I get:
> session setup failed: NT_STATUS_CANT_ACCESS_DOMAIN_INFO
> When I try to login with smbclient and everything breaks.

That is to say, you need to go and read the documentation on becoming a
member of the domain.  

Andrew Bartlett

Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Student Network Administrator, Hawker College  http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20060309/a6703ce0/attachment.bin

More information about the samba mailing list