[Samba] pdb_increment_bad_password_count

David Hoskinson david.hoskinson at datatrak.net
Thu Sep 15 07:18:22 MDT 2011

After moving from Redhat AS4 to RHEL 5.5 we started noticing these error messages in the messages log.  Upgrade procedure was to build new machine with updated OS, install new samba, duplicate existing ldap server connections, and then shutdown the old box and put new one in place.  Messages were not seen on AS4 box and smb.conf file is identical on new box.  I am wondering if there was a change in samba/ldap connectivity between versions where a field or fields in our samba ldap schema need to have values entered now where they didn't before.  I have provided some information and can provide more if needed.  Authentication is successful if correct password is given.  If password is incorrect the error message appears.  LDAP server has had no changes to it, or its schema.
Sep 15 12:51:39 xxx301 smbd[22218]: [2011/09/15 12:51:39, 0] passdb/passdb.c:pdb_increment_bad_password_count(1477)
Sep 15 12:51:39 xxx301 smbd[22218]:   pdb_increment_bad_password_count: pdb_get_account_policy failed.
Sep 15 12:51:53 xxx301 smbd[22218]: [2011/09/15 12:51:53, 0] lib/util_sock.c:read_data(540)
Sep 15 12:51:53 xxx301 smbd[22218]:   read_data: read failure for 4 bytes to client 192.168.x.x. Error = Connection
Old system:
New system
Relevant parts of smb.conf
passdb backend = ldapsam:ldap://172.x.x.x
ldap suffix = dc=prod,dc=xxx,dc=yyy
ldap machine suffix = ou=people
ldap user suffix = ou=people
ldap group suffix = ou=groups
ldap passwd sync = yes
ldap admin dn = cn=root,dc=prod,dc=xxx,dc=yyy
obey pam restrictions = yes
Thanks for any suggestions....

David Hoskinson | DATATRAK International
Systems Engineer
Mayfield Heights, Ohio, USA
+1.440.443.0082 x 124 (p) | + (m)
david.hoskinson at datatrak.net<mailto:david.hoskinson at datatrak.net> | www.datatrak.net<http://www.datatrak.net/>

More information about the samba mailing list