[Samba] SAMBA PDC LOGIN - UPN (user at realm) to DOM\USER

Andrew Grimmett agrimmett at lssidata.com
Mon Jun 14 10:30:40 MDT 2010

I have looked and looked but have not been able to find out how to allow 
UPN authentication to be processed by a Samba PDC?  Is it possible to 
strip the "@domain" from the user before authentication at samba or map 
the UPN user to a dom\username for authentication?



/var/log/samba/log.user:  SAM Logon (Interactive). Domain:[domain].  
User:[user at domain@XENDESKTOP1] Requested Domain:[domain]
/var/log/samba/log.user:  check_ntlm_password:  Checking password for 
unmapped user [domain]\[user at domain]@[XENDESKTOP1] with the new password 
/var/log/samba/log.user:  check_ntlm_password:  mapped user is: 
[domain]\[user at domain]@[XENDESKTOP1]
/var/log/samba/log.user:  check_sam_security: Couldn't find user 
'user at domain' in passdb.
/var/log/samba/log.user:  check_ntlm_password:  Authentication for user 
[user at domain] -> [user at domain] FAILED with error NT_STATUS_NO_SUCH_USER

More information about the samba mailing list