[Samba] samba domain problems

2006-02-20 Thread Martijn Hazenberg 
Hi All,
 
Im still trying to authenticate some of the samba shares to a win2003
sbs server. I succesfully added the samba pc to the domain. 
Shares with no VALID USER  key are accessible from all pc's.
 
Now ive made a share which should ask for a username and password.
 
[share]
path = /raid/map
writable = yes
read only = no
valid users = (domainuser_1, domain_user_2 )

The complete samba config is : 
 
 
 
[global]
netbios name = DATASVR
server string = DATASVR
socket options = TCP_NODELAY SO_RCVBUF=16384 SO_SNDBUF=16384
idmap uid = 1-2
idmap gid = 1-2
winbind enum users = yes
winbind gid = 1-2
workgroup = TEST
os level = 20
winbind enum groups = yes
socket address = 10.0.0.200
password server = *
preferred master = no
winbind separator = +
max log size = 50
log file = /var/log/samba/log.%m
encrypt passwords = yes
dns proxy = yes
realm = TEST.LOKAAL
security = ADS
wins server = 10.0.0.201
wins proxy = no

 
If, on windows i select the share with the password, i get a password
popup screen, but nothing i type is accepted.
Ive tried   DOMAIN\domain_user  password, and domain_user   password,
but none of the options are OK.
 
 
*  net-fs/samba
  Latest version available: 3.0.14a-r2
  Latest version installed: 3.0.14a-r2
  Size of downloaded files: 15,420 kB
  Homepage:http://www.samba.org/
http://www.openantivirus.org/projects.php
  Description: SAMBA is a suite of SMB and CIFS client/server
programs for UNIX
  License: GPL-2
 
This is what shows up in the logs when i make connection to the
non-passwd shares.
 
[2006/02/20 10:02:27, 1] smbd/service.c:make_connection_snum(642)
  10.0.0.1 (10.0.0.1) connect to service ariston initially as user
DOMAIN+domainuser (uid=10015, gid=1) (pid 9483)
[2006/02/20 10:02:32, 1] smbd/service.c:make_connection_snum(642)
  10.0.0.1 (10.0.0.1) connect to service datasheets initially as user
DOMAIN+domainuser (uid=10015, gid=1) (pid 9483)
[2006/02/20 10:02:38, 1] smbd/service.c:make_connection_snum(642)
  10.0.0.1 (10.0.0.1) connect to service drivers_apps initially as user
DOMAIN+domainuser (uid=10015, gid=1) (pid 9483)
 
seems ok.
 
Nothing shows up in the logs about the denied access to the protected
shares.
 
How can i check whats going wrong. 
 
Thanks 
Martijn
 
 
 

 
 
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

[Samba] Samba Domain Problems?

2004-05-27 Thread Derek Harkness 
I've got a Samba PDC running 2.2.8a.  I'm attempting to add a domain 
member server.  The member server is a linux box running Samba 3.0.4.

PDC config
[global]
   workgroup = UMD
   server string = %h server (Samba %v)
   status = yes
   netbios name = Samba
   lanman auth = no
   wide links = no
  guest account = nobody
   log level = 2
   log file = /usr/local/samba/var/log.user.%m.%U
   max log size = 50
   security = user
   unix password sync = false
   passwd program = /usr/bin/passwd %u
   passwd chat = *password* %n\n *password* %n\n *successful*
  encrypt passwords = yes
   socket options = TCP_NODELAY
   local master = yes
   os level = 35
   domain master = yes
   preferred master = yes
   domain logons = yes
   wins support = yes
   dns proxy = yes
And this has been working fine for a very large number of w2k 
workstations.

Member config
[global]
   workgroup = UMD
   wins server = 141.215.69.131
   dns proxy = no
   winbind separator = +
   winbind use default domain = yes
   use sendfile = yes
   idmap uid = 15000-2
   idmap gid = 15000-2
   security = domain
   password server = PDC
   encrypt passwords = yes
   passdb backend = tdbsam guest
   obey pam restrictions = no
   invalid users = root
When I do a net rpc join -U root I get prompted for the password and 
then Joined domain UMD.  I can see the accounts on the PDC, but if I 
do a wbinfo -t I get

checking the trust secret via RPC calls failed
error code was NT_STATUS_PIPE_NOT_AVAILABLE (0xc0ac)
Could not check secret
So what am I missing here?
Thanks!
Derek
This world is a comedy to those who think and a tragedy to those who 
feel.


PGP.sig
Description: This is a digitally signed message part
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  http://lists.samba.org/mailman/listinfo/samba