interdomain trust problem

Lin Li linl at xandros.com
Fri Dec 2 19:27:55 GMT 2005 

Forget to mention that "wbinfo -u" on the client machine shows the users 
on the trust domain correctly.

Thanks,
Lin

Lin Li wrote:

> I have a samba (3.0.20b) domain and NT4 domain trusted each other. My 
> samba (3.0.20b) client machine joined the samba domain. When I try to 
> authenticate an nt domain user on the client machine, I got error 
> NO_SUCH_USER. The log on the samba pdc shows:
>
> [2005/12/02 11:08:26, 3] auth/auth.c:check_ntlm_password(219)
>  check_ntlm_password:  Checking password for unmapped user
> [NT4DOMAIN]\[nt1]@[DAVE-SBS2] with the new password interface
> [2005/12/02 11:08:26, 3] auth/auth.c:check_ntlm_password(222)
>  check_ntlm_password:  mapped user is: [NT4DOMAIN]\[nt1]@[DAVE-SBS2]
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
>  push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
> [2005/12/02 11:08:26, 3] smbd/uid.c:push_conn_ctx(388)
>  push_conn_ctx(100) : conn_ctx_stack_ndx = 0
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
>  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
>  pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:push_sec_ctx(256)
>  push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
> [2005/12/02 11:08:26, 3] smbd/uid.c:push_conn_ctx(388)
>  push_conn_ctx(100) : conn_ctx_stack_ndx = 0
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:set_sec_ctx(288)
>  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
> [2005/12/02 11:08:26, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
>  pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
> [2005/12/02 11:08:26, 3] libsmb/namequery_dc.c:rpc_dc_name(145)
>  rpc_dc_name: Returning DC NT4MASTER (172.16.3.10) for domain NT4DOMAIN
> [2005/12/02 11:08:26, 3] libsmb/cliconnect.c:cli_start_connection(1407)
>  Connecting to host=NT4MASTER
> [2005/12/02 11:08:26, 3] lib/util_sock.c:open_socket_out(867)
>  Connecting to 172.16.3.10 at port 445
> [2005/12/02 11:08:26, 2] lib/util_sock.c:open_socket_out(904)
>  error connecting to 172.16.3.10:445 (Connection refused)
> [2005/12/02 11:08:26, 3] lib/util_sock.c:open_socket_out(867)
>  Connecting to 172.16.3.10 at port 139
> [2005/12/02 11:08:26, 3] auth/auth_util.c:make_server_info_info3(1158)
>  User nt1 does not exist, trying to add it
> [2005/12/02 11:08:26, 0] auth/auth_util.c:make_server_info_info3(1173)
>  make_server_info_info3: pdb_init_sam failed!
> [2005/12/02 11:08:26, 0] 
> libsmb/samlogon_cache.c:netsamlogon_cache_store(123)
>  netsamlogon_cache_store: cannot open netsamlogon_cache.tdb for write!
> [2005/12/02 11:08:26, 2] auth/auth.c:check_ntlm_password(317)
>  check_ntlm_password:  Authentication for user [nt1] -> [nt1] FAILED 
> with error
> NT_STATUS_NO_SUCH_USER
>
>
>
> It seems in the make_server_info_info3 call , samba tries to look for 
> the user on the samba pdc. If I add a user with the same name but 
> different password on the samba pdc, the authentication suceded. I see 
> similar question asked in the samba mail list. Any help?
>
> Thanks,
> Lin
>

More information about the samba-technical mailing list