[Samba] net ads join -- strange message

Rowland penny rpenny at samba.org
Fri Oct 25 08:55:50 UTC 2019


On 25/10/2019 08:33, nathalie ramat wrote:
> hello,
>
> Le 23/10/2019 à 12:45, Rowland penny via samba a écrit :
>> On 23/10/2019 10:51, nathalie ramat via samba wrote:
>>> Hello,
>>>
>>> I have an server ad  - everything seems ok
>>> I have a windows client and a linux client . The users must to 
>>> connect on windows or on linux with the same home.
>>>
>>> when I join my client linux with the command net ads join -U 
>>> administration I have after the following message
>>>
>>> net ads join -U administrator
>>> Enter administrator's password:
>>>
>>> Error reading password from file descriptor 0: empty password
>>>
>>> Error reading password from file descriptor 0: empty password
>>>
>>> Error reading password from file descriptor 0: empty password
>>>
>>> Error reading password from file descriptor 0: empty password
>>>
>>> Error reading password from file descriptor 0: empty password
>>>
>>> Error reading password from file descriptor 0: empty password
>>>
>>> Error reading password from file descriptor 0: empty password
>>> Using short domain name -- SAMBADOM
>>> Joined 'CLIENTBLUESEYE' to dns domain 'sambadom.calais.fr'
>>>
>>> but my machine is joined to my samba AD.
>>>
>>> Why I have this error ?
>>
>> I do not think this has anything to do with Samba, but 'The users 
>> must to connect on windows or on linux with the same home' may give a 
>> hint, are you using something like pam-mount ?
>>
>>
>
> yes i use pam_mount.
OK, I think your PAM stack is incorrect, the error message is coming 
from Samba and pam-mount should only be contacted after authentication.
>
>
> I have modified the script pam_mount.conf.xml .to create the directory 
> of my  user.
>
> <?xml version="1.0" encoding="UTF-8"?>
>
> <pam_mount>
> <debug enable="1"/>
> <mkmountpoint enable="1" />
> <mntoptions allow="nosuid,nodev,loop,encryption,fsck" />
> <mntoptions require="nosuid,nodev" />
> <lsof>/usr/bin/lsof %(MNTPT) </lsof>
> <cifsmount> /sbin/mount.cifs //%(SERVER)/%(VOLUME) %(MNTPT) -o 
> "user=%(USER),domain=SAMBADOM,uid=%(USER),gid=%(USERGID),cifsacl,file_mode=0700,dir_mode=0700" 
> </cifsmount>
> <umount>/bin/umount %(MNTPT) </umount>
> <volume 
> options="username=%(DOMAIN_USER),workgroup=%(DOMAIN_NAME),uid=%(DOMAIN_USER),fmask=700,file_mode=0700,dir_mode=0700" 
> mountpoint="/etudiants/%(USER)" path="%(DOMAIN_USER)" 
> server="blueyestest" fstype="cifs" />
> </pam_mount>
>
>
>
> The home of my user  mount correctly. I have juste problem via les acl .
>
> on the server my user have this rights
>
> root at blueyestest:/home/SAMBADOM/specifique/testjeudi# ls -l
> total 12
> -rwxrwxr--+ 1 SAMBADOM/testjeudi SAMBADOM/specifique    0 oct.  21 
> 11:59 testlinux21102019
> drwxrwxr--+ 2 SAMBADOM/testjeudi SAMBADOM/specifique 4096 oct.  17 
> 13:39 testwindow17102019
>
> root at blueyestest:/home/SAMBADOM/specifique/testjeudi# getfacl 
> testlinux21102019
> # file: testlinux21102019
> # owner: SAMBADOM/testjeudi
> # group: SAMBADOM/specifique
> user::rwx
> group::r--
> group:SAMBADOM/specifique:r--
> group:SAMBADOM/testjeudi:rwx
> mask::rwx
> other::r--
>
> on my client linux the rights are :
>
>  -rwx------ 1 testjeudi specifique    0 oct.  21 11:59 testlinux21102019
>
That looks correct to me, you are mounting it in this way:

<volume options=fmask=700,file_mode=0700,dir_mode=0700"

Rowland





More information about the samba mailing list