[Samba] winbind use default domain = yes doesn't work on Samba 4.13?

Jiří Černý cerny at svmetal.cz
Thu Nov 19 15:02:30 UTC 2020

Hello everybody.

I just upgraded our Fedora fileserver to version 30, which has Samba
Now, I can see this errors in log:

check_ntlm_password:  Authentication for user [dmu60evo] -> [dmu60evo]
FAILED with error NT_STATUS_NO_SUCH_USER, authoritative=1
  Auth: [SMB2,(null)] user []\[dmu60evo] at [Čt, 19 lis 2020
15:50:26.373477 CET] with [NTLMv2] status [NT_STATUS_NO_SUCH_USER]
workstation [] remote host [ipv4:] mapped to
[]\[dmu60evo]. local host [ipv4:] 
  {"timestamp": "2020-11-19T15:50:26.373527+0100", "type":
"Authentication", "Authentication": {"version": {"major": 1, "minor":
2}, "eventId": 4625, "logonId": "0", "logonType": 3, "status":
"NT_STATUS_NO_SUCH_USER", "localAddress": "ipv4:",
"remoteAddress": "ipv4:", "serviceDescription":
"SMB2", "authDescription": null, "clientDomain": "", "clientAccount":
"dmu60evo", "workstation": "", "becameAccount": null, "becameDomain":
null, "becameSid": null, "mappedAccount": "dmu60evo", "mappedDomain":
"", "netlogonComputer": null, "netlogonTrustAccount": null,
"netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0,
"netlogonTrustAccountSid": null, "passwordType": "NTLMv2", "duration":

So, we have user dmu60evo in our domain, but on client machine, we are
not able to use username in format DOMAIN\dmu60evo. So we have to use
winbind use default domain = yes.

Is this normal? Some new setting has to be done? 
Or it's just bug in Fedora package?

Thanks for answers.


More information about the samba mailing list