interdomain trust problem

Lin Li linl at xandros.com
Fri Dec 2 19:25:41 GMT 2005 

I have a samba (3.0.20b) domain and NT4 domain trusted each other. My 
samba (3.0.20b) client machine joined the samba domain. When I try to 
authenticate an nt domain user on the client machine, I got error 
NO_SUCH_USER. The log on the samba pdc shows:

[2005/12/02 11:08:26, 3] auth/auth.c:check_ntlm_password(219)
  check_ntlm_password:  Checking password for unmapped user
[NT4DOMAIN]\[nt1]@[DAVE-SBS2] with the new password interface
[2005/12/02 11:08:26, 3] auth/auth.c:check_ntlm_password(222)
  check_ntlm_password:  mapped user is: [NT4DOMAIN]\[nt1]@[DAVE-SBS2]
[2005/12/02 11:08:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
  push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
[2005/12/02 11:08:26, 3] smbd/uid.c:push_conn_ctx(388)
  push_conn_ctx(100) : conn_ctx_stack_ndx = 0
[2005/12/02 11:08:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2005/12/02 11:08:26, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
  pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
[2005/12/02 11:08:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
  push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
[2005/12/02 11:08:26, 3] smbd/uid.c:push_conn_ctx(388)
  push_conn_ctx(100) : conn_ctx_stack_ndx = 0
[2005/12/02 11:08:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2005/12/02 11:08:26, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
  pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
[2005/12/02 11:08:26, 3] libsmb/namequery_dc.c:rpc_dc_name(145)
  rpc_dc_name: Returning DC NT4MASTER (172.16.3.10) for domain NT4DOMAIN
[2005/12/02 11:08:26, 3] libsmb/cliconnect.c:cli_start_connection(1407)
  Connecting to host=NT4MASTER
[2005/12/02 11:08:26, 3] lib/util_sock.c:open_socket_out(867)
  Connecting to 172.16.3.10 at port 445
[2005/12/02 11:08:26, 2] lib/util_sock.c:open_socket_out(904)
  error connecting to 172.16.3.10:445 (Connection refused)
[2005/12/02 11:08:26, 3] lib/util_sock.c:open_socket_out(867)
  Connecting to 172.16.3.10 at port 139
[2005/12/02 11:08:26, 3] auth/auth_util.c:make_server_info_info3(1158)
  User nt1 does not exist, trying to add it
[2005/12/02 11:08:26, 0] auth/auth_util.c:make_server_info_info3(1173)
  make_server_info_info3: pdb_init_sam failed!
[2005/12/02 11:08:26, 0] libsmb/samlogon_cache.c:netsamlogon_cache_store(123)
  netsamlogon_cache_store: cannot open netsamlogon_cache.tdb for write!
[2005/12/02 11:08:26, 2] auth/auth.c:check_ntlm_password(317)
  check_ntlm_password:  Authentication for user [nt1] -> [nt1] FAILED with error
NT_STATUS_NO_SUCH_USER



It seems in the make_server_info_info3 call , samba tries to look for 
the user on the samba pdc. If I add a user with the same name but 
different password on the samba pdc, the authentication suceded. I see 
similar question asked in the samba mail list. Any help?

Thanks,
Lin

More information about the samba-technical mailing list