[Samba] SAMBA and CTDB
Robert Dale
Robert.Dale at Arrowecs.dk
Thu Apr 16 02:06:21 MDT 2015
Getting the following error when trying to add to the domain the username and password are correct because they work on other machines.
=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2015.04.16 09:50:06 =~=~=~=~=~=~=~=~=~=~=~=
INFO: Current debug levels:
all: 5
tdb: 5
printdrivers: 5
lanman: 5
smb: 5
rpc_parse: 5
rpc_srv: 5
rpc_cli: 5
passdb: 5
sam: 5
auth: 5
winbind: 5
vfs: 5
idmap: 5
quota: 5
acls: 5
locking: 5
msdfs: 5
dmapi: 5
registry: 5
scavenger: 5
dns: 5
ldb: 5
lp_load_ex: refreshing parameters
Initialising global parameters
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
INFO: Current debug levels:
all: 5
tdb: 5
printdrivers: 5
lanman: 5
smb: 5
rpc_parse: 5
rpc_srv: 5
rpc_cli: 5
passdb: 5
sam: 5
auth: 5
winbind: 5
vfs: 5
idmap: 5
quota: 5
acls: 5
locking: 5
msdfs: 5
dmapi: 5
registry: 5
scavenger: 5
dns: 5
ldb: 5
params.c:pm_process() - Processing configuration file "/etc/samba/smb.conf"
Processing section "[global]"
doing parameter config backend = registry
pm_process() returned Yes
lp_load_ex: changing to config backend registry
Freeing parametrics:
Initialising global parameters
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
INFO: Current debug levels:
all: 5
tdb: 5
printdrivers: 5
lanman: 5
smb: 5
rpc_parse: 5
rpc_srv: 5
rpc_cli: 5
passdb: 5
sam: 5
auth: 5
winbind: 5
vfs: 5
idmap: 5
quota: 5
acls: 5
locking: 5
msdfs: 5
dmapi: 5
registry: 5
scavenger: 5
dns: 5
ldb: 5
lp_load_ex: refreshing parameters
Initialising global parameters
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
INFO: Current debug levels:
all: 5
tdb: 5
printdrivers: 5
lanman: 5
smb: 5
rpc_parse: 5
rpc_srv: 5
rpc_cli: 5
passdb: 5
sam: 5
auth: 5
winbind: 5
vfs: 5
idmap: 5
quota: 5
acls: 5
locking: 5
msdfs: 5
dmapi: 5
registry: 5
scavenger: 5
dns: 5
ldb: 5
doing parameter registry shares = yes
process_registry_service: service name global
Processing section "[global]"
doing parameter server string = Samba Server Version %v
doing parameter registry shares = yes
doing parameter netbios name = gpfs-nd
doing parameter idmap config *:range = 1025-2025
doing parameter winbind use default domain = yes
doing parameter fileid:mapping = fsname
doing parameter vfs objects = gpfs fileid
doing parameter gpfs:sharemodes = no
doing parameter force unknown acl user = yes
doing parameter bind interfaces only = yes
doing parameter interfaces = vlan199
doing parameter ctdbd socket = /usr/local/var/run/ctdb/ctdbd.socket
doing parameter passdb backend = tdbsam
doing parameter workgroup = FORK
doing parameter realm = fork.viasat.dom
doing parameter clustering = yes
doing parameter idmap config *:backend = tdb2
doing parameter dedicated keytab file = /etc/krb5.keytab
doing parameter kerberos method = secrets and keytab
doing parameter security = ads
doing parameter winbind enum users = yes
doing parameter winbind enum groups = yes
Netbios name list:-
my_netbios_names[0]="GPFS-ND"
added interface vlan199 ip=192.168.199.81 bcast=192.168.199.255 netmask=255.255.255.0
added interface vlan199 ip=192.168.199.84 bcast=192.168.199.255 netmask=255.255.255.0
Registering messaging pointer for type 2 - private_data=(nil)
Registering messaging pointer for type 9 - private_data=(nil)
Registered MSG_REQ_POOL_USAGE
Registering messaging pointer for type 11 - private_data=(nil)
Registering messaging pointer for type 12 - private_data=(nil)
Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
Registering messaging pointer for type 1 - private_data=(nil)
Registering messaging pointer for type 5 - private_data=(nil)
Enter fork\rodal's password:
libnet_Join:
libnet_JoinCtx: struct libnet_JoinCtx
in: struct libnet_JoinCtx
dc_name : NULL
machine_name : 'GPFS-ND'
domain_name : *
domain_name : 'FORK.VIASAT.DOM'
account_ou : NULL
admin_account : 'fork\rodal'
machine_password : NULL
join_flags : 0x00000023 (35)
0: WKSSVC_JOIN_FLAGS_IGNORE_UNSUPPORTED_FLAGS
0: WKSSVC_JOIN_FLAGS_JOIN_WITH_NEW_NAME
0: WKSSVC_JOIN_FLAGS_JOIN_DC_ACCOUNT
0: WKSSVC_JOIN_FLAGS_DEFER_SPN
0: WKSSVC_JOIN_FLAGS_MACHINE_PWD_PASSED
0: WKSSVC_JOIN_FLAGS_JOIN_UNSECURE
1: WKSSVC_JOIN_FLAGS_DOMAIN_JOIN_IF_JOINED
0: WKSSVC_JOIN_FLAGS_WIN9X_UPGRADE
0: WKSSVC_JOIN_FLAGS_ACCOUNT_DELETE
1: WKSSVC_JOIN_FLAGS_ACCOUNT_CREATE
1: WKSSVC_JOIN_FLAGS_JOIN_TYPE
os_version : NULL
os_name : NULL
create_upn : 0x00 (0)
upn : NULL
modify_config : 0x01 (1)
ads : NULL
debug : 0x01 (1)
use_kerberos : 0x00 (0)
secure_channel_type : SEC_CHAN_WKSTA (2)
db_open_ctdb: opened database 'g_lock.tdb' with dbid 0x4d2a432b
db_open_ctdb: opened database 'secrets.tdb' with dbid 0x7132c184
Opening cache file at /var/cache/samba/gencache.tdb
Opening cache file at /var/cache/samba/gencache_notrans.tdb
sitename_fetch: Returning sitename for FORK.VIASAT.DOM: "Default-First-Site-Name"
ads_dns_lookup_srv: 2 records returned in the answer section.
sitename_fetch: Returning sitename for FORK.VIASAT.DOM: "Default-First-Site-Name"
no entry for PRD-SR-01.FORK.VIASAT.DOM#20 found.
resolve_lmhosts: Attempting lmhosts lookup for name PRD-SR-01.FORK.VIASAT.DOM<0x20>
resolve_lmhosts: Attempting lmhosts lookup for name PRD-SR-01.FORK.VIASAT.DOM<0x20>
startlmhosts: Can't open lmhosts file /etc/samba/lmhosts. Error was No such file or directory
resolve_wins: WINS server resolution selected and no WINS servers listed.
resolve_hosts: Attempting host lookup for name PRD-SR-01.FORK.VIASAT.DOM<0x20>
namecache_store: storing 2 addresses for PRD-SR-01.FORK.VIASAT.DOM#20: 192.168.164.19,192.168.160.51
Connecting to 192.168.164.19 at port 445
Socket options:
SO_KEEPALIVE = 0
SO_REUSEADDR = 0
SO_BROADCAST = 0
TCP_NODELAY = 1
TCP_KEEPCNT = 9
TCP_KEEPIDLE = 7200
TCP_KEEPINTVL = 75
IPTOS_LOWDELAY = 0
IPTOS_THROUGHPUT = 0
SO_REUSEPORT = 0
SO_SNDBUF = 23080
SO_RCVBUF = 87380
SO_SNDLOWAT = 1
SO_RCVLOWAT = 1
SO_SNDTIMEO = 0
SO_RCVTIMEO = 0
TCP_QUICKACK = 1
TCP_DEFER_ACCEPT = 0
Doing spnego session setup (blob length=120)
got OID=1.3.6.1.4.1.311.2.2.30
got OID=1.2.840.48018.1.2.2
got OID=1.2.840.113554.1.2.2
got OID=1.2.840.113554.1.2.2.3
got OID=1.3.6.1.4.1.311.2.2.10
got principal=not_defined_in_RFC4178 at please_ignore
Got challenge flags:
Got NTLMSSP neg_flags=0x62898215
NTLMSSP_NEGOTIATE_UNICODE
NTLMSSP_REQUEST_TARGET
NTLMSSP_NEGOTIATE_SIGN
NTLMSSP_NEGOTIATE_NTLM
NTLMSSP_NEGOTIATE_ALWAYS_SIGN
NTLMSSP_NEGOTIATE_NTLM2
NTLMSSP_NEGOTIATE_TARGET_INFO
NTLMSSP_NEGOTIATE_VERSION
NTLMSSP_NEGOTIATE_128
NTLMSSP_NEGOTIATE_KEY_EXCH
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x60088215
NTLMSSP_NEGOTIATE_UNICODE
NTLMSSP_REQUEST_TARGET
NTLMSSP_NEGOTIATE_SIGN
NTLMSSP_NEGOTIATE_NTLM
NTLMSSP_NEGOTIATE_ALWAYS_SIGN
NTLMSSP_NEGOTIATE_NTLM2
NTLMSSP_NEGOTIATE_128
NTLMSSP_NEGOTIATE_KEY_EXCH
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x60088215
NTLMSSP_NEGOTIATE_UNICODE
NTLMSSP_REQUEST_TARGET
NTLMSSP_NEGOTIATE_SIGN
NTLMSSP_NEGOTIATE_NTLM
NTLMSSP_NEGOTIATE_ALWAYS_SIGN
NTLMSSP_NEGOTIATE_NTLM2
NTLMSSP_NEGOTIATE_128
NTLMSSP_NEGOTIATE_KEY_EXCH
Bind RPC Pipe: host PRD-SR-01.FORK.VIASAT.DOM auth_type 0, auth_level 1
rpc_api_pipe: host PRD-SR-01.FORK.VIASAT.DOM
rpc_read_send: data_to_read: 52
check_bind_response: accepted!
rpc_api_pipe: host PRD-SR-01.FORK.VIASAT.DOM
rpc_read_send: data_to_read: 32
rpc_api_pipe: host PRD-SR-01.FORK.VIASAT.DOM
rpc_read_send: data_to_read: 200
rpc_api_pipe: host PRD-SR-01.FORK.VIASAT.DOM
rpc_read_send: data_to_read: 32
saf_fetch: Returning "PRD-SR-02.FORK.VIASAT.DOM" for "FORK.VIASAT.DOM" domain
get_dc_list: preferred server list: "PRD-SR-02.FORK.VIASAT.DOM, *"
name FORK.VIASAT.DOM#1C found.
sitename_fetch: Returning sitename for FORK.VIASAT.DOM: "Default-First-Site-Name"
name PRD-SR-02.FORK.VIASAT.DOM#20 found.
get_dc_list: returning 4 ip addresses in an ordered list
get_dc_list: 192.168.164.20:389 192.168.160.55:389 192.168.160.51:389 192.168.164.19:389
create_local_private_krb5_conf_for_domain: wrote file /var/cache/samba/smb_krb5/krb5.conf.FORK with realm FORK.VIASAT.DOM KDC list = kdc = 192.168.164.19
kdc = 192.168.164.20
kdc = 192.168.160.55
Bind RPC Pipe: host PRD-SR-01.FORK.VIASAT.DOM auth_type 0, auth_level 1
rpc_api_pipe: host PRD-SR-01.FORK.VIASAT.DOM
rpc_read_send: data_to_read: 52
check_bind_response: accepted!
rpc_api_pipe: host PRD-SR-01.FORK.VIASAT.DOM
rpc_read_send: data_to_read: 32
libnet_Join:
libnet_JoinCtx: struct libnet_JoinCtx
out: struct libnet_JoinCtx
account_name : NULL
netbios_domain_name : 'FORK'
dns_domain_name : 'FORK.VIASAT.DOM'
forest_name : 'FORK.VIASAT.DOM'
dn : NULL
domain_sid : *
domain_sid : S-1-5-21-3229373007-2367934159-2541705515
modified_config : 0x00 (0)
error_string : 'failed to join domain 'FORK.VIASAT.DOM' over rpc: Access denied'
domain_is_ad : 0x01 (1)
result : WERR_ACCESS_DENIED
Failed to join domain: failed to join domain 'FORK.VIASAT.DOM' over rpc: Access denied
return code = -1
root at gpfs-nd-01#
More information about the samba
mailing list