[Samba] Clarification of 'administrator' config w/ldap
jeff sacksteder
jsacksteder at gmail.com
Wed Apr 22 01:48:36 GMT 2009
> run smbpasswd -a root and put in root's password.
Leaving aside for the moment granting privileges to user accounts, I
did the above. I set log level =3 and recorded the following(somewhat
anonymized). Again, root is a normal unix account, I have mappings to
administrator and MYDOMAIN\administrator in smb users. All other
accounts are in LDAP.
[2009/04/21 21:31:51, 3] auth/auth.c:check_ntlm_password(221)
check_ntlm_password: Checking password for unmapped user
[MYDOMAIN]\[administrator]@[DELL] with the new password interface
[2009/04/21 21:31:51, 3] auth/auth.c:check_ntlm_password(224)
check_ntlm_password: mapped user is: [MYDOMAIN]\[administrator]@[DELL]
[2009/04/21 21:31:51, 3] auth/auth_sam.c:check_sam_security(281)
check_sam_security: Couldn't find user 'administrator' in passdb.
[2009/04/21 21:31:51, 3] auth/auth_winbind.c:check_winbind_security(80)
check_winbind_security: Not using winbind, requested domain
[MYDOMAIN] was for this SAM.
[2009/04/21 21:31:51, 2] auth/auth.c:check_ntlm_password(319)
check_ntlm_password: Authentication for user [administrator] ->
[administrator] FAILED with error NT_STATUS_NO_SUCH_USER
[2009/04/21 21:31:51, 3] smbd/error.c:error_packet_set(106)
error packet at smbd/sesssetup.c(105) cmd=115 (SMBsesssetupX)
NT_STATUS_LOGON_FAILURE
>
> jeff sacksteder wrote:
>>
>> As you say, I see 'root = administrator' in smbuser, but I am still
>> unable to authenticate as administrator. During the authentication
>> attempt the following log entry is recorded-
>>
>> check_ntlm_password: Authentication for user [administrator] ->
>> [administrator] FAILED with error NT_STATUS_NO_SUCH_USER
>>
>> I believe that I need to use make an entry with pdbedit linking the
>> domain admin sid to root.
>> However, trying that produces-
>>
>> smbldap_search_domain_info: Searching
>> for:[(&(objectClass=sambaDomain)(sambaDomainName=MYDOMAIN))]
>> smbldap_open_connection: connection opened
>> Username not found!
>>
>> So what more do I need to add?
>
More information about the samba
mailing list