[Samba] ntlm_auth NT_STATUS_INVALID_HANDLE with windbind

Alessandro dedalus2000 at gmail.com
Sun Oct 16 12:47:24 MDT 2011

I should use an authenticated proxy with Squid, but I have a problem 
with winbind.
I'm working on a PDC, debian squeeze with samba from backport (ver. 
2:3.5.11~dfsg-1~bpo60+1 )

Here the problem: I can authenticate users.

/usr/bin/ntlm_auth --username=myname --domain=MYCOMPANY
password: XXXX
NT_STATUS_INVALID_HANDLE: Invalid handle (0xc0000008)

wbinfo -a myname
Enter myname's password: XXXX
plaintext password authentication failed
Could not authenticate user myname with plaintext password
Enter myname's password: XXXX
challenge/response password authentication failed
error code was NT_STATUS_INVALID_HANDLE (0xc0000008)
error messsage was: Invalid handle
Could not authenticate user myname with challenge/response

With --domain argument the result is the same

wbinfo seems to work fine with all other arguments (-u, -g, etc.. a 
strange behavior: with -m it gives two domains, "BUILTIN" and "MYCOMPNAY")

I found the following bug:

I could compile samba from source applying the #7481 patch, but I'm not 
sure this is my case, because the workaround exposed at the end of #7481 
doesn't work for me.
Any idea?


More information about the samba mailing list