[Samba] Clarification of 'administrator' config w/ldap

jeff sacksteder jsacksteder at gmail.com
Wed Apr 22 01:48:36 GMT 2009 

> run smbpasswd -a root and put in root's password.

Leaving aside for the moment granting privileges to user accounts, I
did the above. I set log level =3 and recorded the following(somewhat
anonymized). Again, root is a normal unix account, I have mappings to
administrator and MYDOMAIN\administrator in smb users. All other
accounts are in LDAP.

[2009/04/21 21:31:51, 3] auth/auth.c:check_ntlm_password(221)
  check_ntlm_password:  Checking password for unmapped user
[MYDOMAIN]\[administrator]@[DELL] with the new password interface
[2009/04/21 21:31:51, 3] auth/auth.c:check_ntlm_password(224)
  check_ntlm_password:  mapped user is: [MYDOMAIN]\[administrator]@[DELL]
[2009/04/21 21:31:51, 3] auth/auth_sam.c:check_sam_security(281)
  check_sam_security: Couldn't find user 'administrator' in passdb.
[2009/04/21 21:31:51, 3] auth/auth_winbind.c:check_winbind_security(80)
  check_winbind_security: Not using winbind, requested domain
[MYDOMAIN] was for this SAM.
[2009/04/21 21:31:51, 2] auth/auth.c:check_ntlm_password(319)
  check_ntlm_password:  Authentication for user [administrator] ->
[administrator] FAILED with error NT_STATUS_NO_SUCH_USER
[2009/04/21 21:31:51, 3] smbd/error.c:error_packet_set(106)
  error packet at smbd/sesssetup.c(105) cmd=115 (SMBsesssetupX)
NT_STATUS_LOGON_FAILURE

>
> jeff sacksteder wrote:
>>
>> As you say, I see 'root = administrator' in smbuser, but I am still
>> unable to authenticate as administrator. During the authentication
>> attempt the following log entry is recorded-
>>
>> check_ntlm_password:  Authentication for user [administrator] ->
>> [administrator] FAILED with error NT_STATUS_NO_SUCH_USER
>>
>>  I believe that I need to use make an entry with pdbedit linking the
>> domain admin sid to root.
>> However, trying that produces-
>>
>> smbldap_search_domain_info: Searching
>> for:[(&(objectClass=sambaDomain)(sambaDomainName=MYDOMAIN))]
>> smbldap_open_connection: connection opened
>> Username not found!
>>
>> So what more do I need to add?
>

More information about the samba mailing list