[Samba] Connection dropping every 24 hours from Windows Client.
Rowland penny
rpenny at samba.org
Wed Dec 11 08:14:13 UTC 2019
On 11/12/2019 00:46, Hans Rasmussen via samba wrote:
> Hello
>
>
>
> I have a problem with my Windows 10 drive connections dropping every 24
> hours, very briefly. It's enough to cause me to be unable to save my file,
> or access a geodatabase. I have followed much trouble shooting and I
> believe that its due to the KDC Service ticket lifetime expiring, I have it
> set for 24 hours in smb.conf.
>
>
>
> I have a Samba 4.9 DC and an Ubuntu 18.04 member file server where the
> shares are running 4.7.6 and connected to the DC by Winbindd. I notice
> that when my 24 hours is up, smbstatus will show that I have a new PID. The
> files are unfortunately still being held open by the old PID and are no
> longer accessible (I think.).
>
>
>
> Here is the global part of my DC smb.conf
>
> [global]
>
> workgroup = MYNET
>
> realm = mynet.mynet.com
>
> netbios name = MY_DC
>
> server role = active directory domain controller
>
> server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl,
> winbind, ntp_signd, kcc, dnsupdate
>
> idmap_ldb:use rfc2307 = yes
>
> kdc:service ticket lifetime = 24
>
> kdc:user ticket lifetime = 360
>
> kdc:renewal lifetime = 1800
>
> dsdb:schema update allowed = true
>
> tls enabled = yes
>
> tls keyfile = tls/myKey.pem
>
> tls certfile = tls/myCert.pem
>
> tls cafile =
>
> wins support = yes
>
> ldap server require strong auth = no
>
>
>
> And here is the global part of my file server smb.conf
>
> workgroup = MYNET
>
> client signing = yes
>
> client use spnego = yes
>
> kerberos method = secrets and keytab
>
> realm = MYNET.MYNET.COM
>
> security = ads
>
> idmap config * : backend = tdb
> idmap config *:range = 50000-1000000
Hmm, where are the 'idmap config MYNET' lines ??
Or are you using sssd ?
Rowland
More information about the samba
mailing list