[Samba] 3rd problem when starting samba-4.13.17

深圳_极速e栈 2728481257 at qq.com
Thu Sep 8 15:09:49 UTC 2022

Compile and install samba-4.13.17 from the source code. After the installation and configuration are completed, three problems are found:

3.ntlm_auth authentication failed
What am I doing wrong? Would appreciate your answer.

[root at myradius e_zhangiso]# cat /etc/redhat-release
CentOS Linux release 7.9.2009 (Core)
[root at myradius e_zhangiso]# /usr/local/samba/sbin/smbd -V
Version 4.13.17

[root at myradius e_zhangiso]# cat /etc/nsswitch.conf
passwd:     files sss winbind
shadow:     files sss
group:      files sss winbind

[root at myradius e_zhangiso]# cat /etc/krb5.conf
# Configuration snippets may be placed in this directory as well
#includedir /etc/krb5.conf.d/

 default = FILE:/var/log/krb5libs.log
 kdc = FILE:/var/log/krb5kdc.log
 admin_server = FILE:/var/log/kadmind.log

 dns_lookup_realm = false
 ticket_lifetime = 24h
 renew_lifetime = 7d
 forwardable = true
 rdns = false
 pkinit_anchors = FILE:/etc/pki/tls/certs/ca-bundle.crt
 default_realm = TESTENTERPRISE.NET
 default_ccache_name = KEYRING:persistent:%{uid}

  kdc = ad.testenterprise.net
  admin_server = ad.testenterprise.net

 .testenterprise.net = TESTENTERPRISE.NET
 testenterprise.net = TESTENTERPRISE.NET

[root at myradius samba]# cat smbd.log
[2022/09/08 17:34:53.249399,  0] ../../source3/printing/nt_printing.c:252(nt_printing_init)
  nt_printing_init: error checking published printers: WERR_ACCESS_DENIED
[2022/09/08 17:34:53.252411,  1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh)
  Failed to fetch record!

[root at myradius samba]# cat winbindd.log
[2022/09/07 22:07:49.731308,  1] ../../lib/ldb-samba/ldb_wrap.c:79(ldb_wrap_debug)
  ldb: Failed to connect to '/usr/local/samba/private/secrets.ldb' with backend 'tdb': Unable to open tdb '/usr/local/samba/private/secrets.ldb': No such file or directory

[root at myradius samba]# wbinfo -t
checking the trust secret for domain TESTENTERPRISE via RPC calls succeeded
[root at myradius samba]# wbinfo -a vtest1%Zsl123789
plaintext password authentication failed
Could not authenticate user vtest1%Zsl123789 with plaintext password
challenge/response password authentication succeeded
[root at myradius samba]# ntlm_auth --request-nt-key --domain = TESTENTERPRISE.NET --username = vtest1 --password = Zsl123789
NT_STATUS_NO_SUCH_USER: The specified account does not exist. (0xc0000064)

More information about the samba mailing list