[linux] SAMBA Server - autentifikacia voci Samba PDC
Mike
mike na spinet.sk
Pondělí Srpen 27 15:48:24 CEST 2007
Zdravim konferu,
mozno mi budete vediet pomoct, mam taky maly problem, ktory riesim uz
druhy den.
Mam dve masiny - linuxy, jeden je nastaveny ako PDC, druhy je obycajny
server ktory je clenom domeny. Na PDC ide prihlasovanie bez problemov.
Winbind ide pritom bez problemov, getent passwd mi vypise domenovych
pouzivatelov tiez.
Ked sa vsak chcem prihlasit cez sambu na druhy server, tak mi nepozna
domenovych pouzivatelov.
Priklad:
root na archiv:~# smbclient -d3 -L \\archiv -U DOMENA\\BFU_USER
... nic zaujimave...
Password: ZADAM HESLO
Doing spnego session setup (blob length=58)
got OID=1 3 6 1 4 1 311 2 2 10
got principal=NONE
Got challenge flags:
Got NTLMSSP neg_flags=0x60890235
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x60080215
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x60080215
SPNEGO login failed: Logon failure
session setup failed: NT_STATUS_LOGON_FAILURE
To iste na strane SMB daemona s debug levelom 10:
... vela veci...
... spojenie s PDC, dostane odpoved, cestu k profilu a pod.. a potom: ...
Finding user DOMENA+bfu_user
Trying _Get_Pwnam(), username as lowercase is DOMENA+bfu_user
Trying _Get_Pwnam(), username as given is DOMENA+bfu_user
Trying _Get_Pwnam(), username as uppercase is DOMENA+BFU_USER
Checking combinations of 0 uppercase letters in DOMENA+bfu_user
Get_Pwnam_internals didn't find user [DOMENA+bfu_user]!
...
Finding user bfu_user
Trying _Get_Pwnam(), username as lowercase is bfu_user
Trying _Get_Pwnam(), username as uppercase is BFU_USER
Checking combinations of 0 uppercase letters in bfu_user
Get_Pwnam_internals didn't find user [bfu_user]!
make_server_info_info3: pdb_init_sam failed!
check_ntlm_password: winbind authentication for user [bfu_user] FAILED
with error NT_STATUS_NO_SUCH_USER
check_ntlm_password: Authentication for user [bfu_user] -> [bfu_user]
FAILED with error NT_STATUS_NO_SUCH_USER
pri mensom debug leveli to vypise len:
make_server_info_info3: pdb_init_sam failed!
Priznam sa ze netusim co s tym, Google ani Samba.org nejako nepomahaju.
Na PDC sa chyby nejako do logov nepisu, takze predpokladam ze tam je
vsetko ok.
este pridam SMB.Conf tej masiny:
[global]
workgroup = DOMENA
server string = %h server (Archiv)
security = DOMAIN
password server = *
obey pam restrictions = Yes
encrypt passwords = yes
passdb backend = tdbsam
domain master = No
...
Dik za pomoc
Mike
Další informace o konferenci linux