[Samba] failed to verify PAC server signature warning

Markus Moeller huaraz at moeller.plus.com
Wed Sep 26 19:25:16 GMT 2007


Is there a way to stop the below warning or does anybody know why I get this 
messages ?  I set the log level to 0 and still get the below warnings for 
every request filing up log files unnecessarily.

Sep 26 19:58:23 moelma smbd[19879]: [2007/09/26 19:58:23, 0] 
libads/authdata.c:decode_pac_data(882)
Sep 26 19:58:23 moelma smbd[19879]:   decode_pac_data: failed to verify PAC 
server signature


I am using samba-3.0.24-2.28 one Suse SLES 10 with MIT Kerberos 1.4.3 using 
RC4-hmac as default with a windows 2003 kdc. The keytab has RC4 and DES 
enties for host/fqdn and HOST/fqdn and RC4 only entries for cifs/fqdn and 
CIFS/fqdn.

The smb.conf has:

  security = ADS
  password server = *
  use kerberos keytab = yes
  encrypt passwords = yes
  client ntlmv2 auth = yes
  lanman auth = no
  ntlm auth = no

Thank you
Markus 





More information about the samba mailing list