On Fri, Feb 10, 2006 at 05:02:54PM -0800, Frank P. Miles wrote: > On Fri, Feb 10, 2006 at 04:42:29PM -0800, Steve Langasek wrote: > > On Fri, Feb 10, 2006 at 01:27:43PM -0800, Frank P. Miles wrote:
> > > Users who have a different local (WinXX) password than samba password > > > cannot connect. The samba logs show the error message: > > What does "WinXX" refer to, please? > These are all machines running Windows-XP "Professional". No weirdness > or password expiration or such seen using pdbedit. The affected users > seem to be able to change their passwords via smbpasswd by ssh'ing into > the host running samba. Again, it only affects users with different > samba and WinXP passwords. Within XP, the password dialog box pops up > (as it should); but it apparently fails, and pops up again...and again... > For each attempt, the same message appears in the log: Hmm. > > > passdb/pdb_tdb.c:tdb_update_ridrec_only(680) smbd[25580]: Unable to > > > modify TDB > > > passwd ! Error: Record does not exist > > > smbd[25580]: occured while storing the RID index > > > (RID_00000bd2) > > > It works for users with the same password on both systems. This was a > > > problem with 3.0.21a-1 as well, but not a problem on reverting to 3.0.20b. > We recently got rid of our last Win2K a short time ago, so can't test it > with that. > > Do you have 'update encrypted = yes' set in your smb.conf? > No. Ok. So there are two questions; why is something trying to change the password record for the user, and why is it failing? I think this one will need punted upstream. > > Could you post your complete smb.conf for review? > Ok, slightly munged: > ; --------------- start of smb.conf > [global] > netbios name = MY-MACHINES-NAME > workgroup = MY-WORKGROUP > interfaces = eth0, lo > bind interfaces only = yes > hosts allow = LIST-OF-HOSTS > hosts deny = ALL > guest account = nobody > > passdb backend = tdbsam > encrypt passwords = true > passwd program = /usr/bin/passwd %u > passwd chat = *Enter\snew\sUNIX\spassword:* %n\n > *Retype\snew\sUNIX\spassword:* %n\n . > name resolve order = bcast lmhosts host wins > > username map = /etc/samba/username.map > > server string = %h > socket options = TCP_NODELAY > printing = cups > printcap name = cups > load printers = yes > > local master = yes > preferred master = No > > preserve case = yes > short preserve case = yes > wins support = no Nothing interesting here at all, it seems; not a DC, not a domain member, nothing fancy at all. Some of your options are redundant and unnecessary (local master, preferred master, preserve case), but that shouldn't break anything... -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. [EMAIL PROTECTED] http://www.debian.org/
signature.asc
Description: Digital signature