[Samba] Samba rebind user at email.com to user_email.com
Martin Lund
scsi7143 at gmx.com
Fri Jun 19 04:24:16 MDT 2015
Hello List,
I'm dealing with the following issue here:
https://forum.zentyal.org/index.php?topic=25300.0
Although it starts with OpenChange, it ends with Samba4 so I very much hope that somebody on this list can help me out.
Basically I try to authenticate users through the Outlook autoconfigurator using RPC-OVER-HTTP to a samba server. The problem is that in Samba4/LDAP I cannot have users with email address in their name so instead of:
user at company1.com
I can only create
user_company1.com
I don't detail it more because on the top link I have explained everything with pictures. So what I would like to know is how to REBIND the incoming user auth request into a new format if this is possible.
auth_check_password_send: Checking password for unmapped user []\[user at company.com]@[sheep]
[2015/06/19 11:04:28.601720, 2] ../source4/auth/ntlm/auth_util.c:91(map_user_info_cracknames)
map_user_info: Cracknames of account 'user at company.com' -> DOMAIN_ONLY
[2015/06/19 11:04:28.601864, 2] ../source4/auth/ntlm/auth.c:420(auth_check_password_recv)
auth_check_password_recv: NO_METHOD authentication for user [(null)\(null)] FAILED with error NT_STATUS_NO_SUCH_USER
[2015/06/19 11:04:28.602191, 3] ../source4/smbd/service_stream.c:66(stream_terminate_connection)
Terminating connection - 'dcesrv: NT_STATUS_INVALID_PARAMETER'
I realized that since the username:password is coming from windows already as a HASH, there is no modification what I can do on the rpcproxy. The only way to do what I need is to do this from Samba.
This way when the checkbox comes up and the user enters the username at company.com email address and password everything should work fine after he is authenticated.
Thank you!
More information about the samba
mailing list