Modify

Ticket #2542 (closed defect: fixed)

Opened 3 years ago

Last modified 3 years ago

LDAP Master/Samba PDC Slave, Access Denied

Reported by: pablo.garcia@… Owned by: jacalvo@…
Milestone: 2.0.X Component: samba
Severity: normal Keywords: samba, pdc, domain, windows
Cc:

Description

I am trying to add a WinXP SP3 (and Windows 2003) with the Samba PDC in domain. I get this message when I join with a administrator users domain.

My info:

  • Zentyal 2.0.7 Slave LDAP.
  • extend.ldif (attach)
  • log on join with administrator user domain (C:\WINDOWS\Debug\NetSetup? - attach)
  • /etc/samba/smb.conf (attach)
  • Logs in /var/log/messages , /var/log/syslog (pasted) 
==> syslog <==
Nov 24 20:33:13 servebox slapd[930]: connection_read(13): no connection!
Nov 24 20:33:14 servebox smbd_audit: admin_pdc|192.168.1.2|connect|ok|IPC$
Nov 24 20:33:14 servebox smbd_audit: admin_pdc|192.168.1.2|disconnect|ok|IPC$
Nov 24 20:33:14 servebox slapd[930]: connection_read(13): no connection!

==> messages <==
Nov 24 20:33:14 servebox smbd_audit: admin_pdc|192.168.1.2|connect|ok|IPC$
Nov 24 20:33:14 servebox smbd_audit: admin_pdc|192.168.1.2|disconnect|ok|IPC$

Attachments

smb.rtf Download (2.3 KB) - added by anonymous 3 years ago.
NetSetup.txt Download (1.8 KB) - added by anonymous 3 years ago.
extend.rtf Download (1.7 KB) - added by anonymous 3 years ago.
extend.ldif
access_deneid.4.log Download (47.3 KB) - added by anonymous 3 years ago.
error_pdc.txt Download (78.7 KB) - added by anonymous 3 years ago.
Error PDC

Change History

Changed 3 years ago by anonymous

Changed 3 years ago by anonymous

Changed 3 years ago by anonymous

extend.ldif

Changed 3 years ago by anonymous

comment:1 Changed 3 years ago by anonymous

  • priority changed from normal to high

I try differents options to get a solution, the last:

I have used the same username on Windows and Zentyal (dominios) but when i try to join the domain i get another time the messages "Access Denied". Here is the log: 

[2010/11/25 17:43:29,  3] libsmb/ntlm_check.c:350(ntlm_password_check)ntlm_password_check: NT MD4 password check failed for user dominios
[2010/11/25 17:43:29,  2] passdb/pdb_ldap.c:1199(init_ldap_from_sam)init_ldap_from_sam: Setting entry for user: dominios
[2010/11/25 17:43:29,  3] auth/auth_winbind.c:54(check_winbind_security)check_winbind_security: Not using winbind, requested domain [DOMINIO] was for this SAM.
[2010/11/25 17:43:29,  2] auth/auth.c:320(check_ntlm_password)check_ntlm_password:  Authentication for user [dominios] -> [dominios] FAILED with error NT_STATUS_WRONG_PASSWORD
[2010/11/25 17:43:29,  3] rpc_server/srv_pipe_hnd.c:646(process_complete_pdu)process_complete_pdu: DCE/RPC fault sent on pipe \winreg

comment:2 Changed 3 years ago by jacalvo@…

  • Owner changed from jacalvo@… to jacalvo@…

Changed 3 years ago by anonymous

Error PDC

comment:3 Changed 3 years ago by cperez@…

  • Status changed from new to closed
  • Resolution set to fixed

This issue is fixed in [19749], you need to disable PAM on Slave machines in order to get PDC working again

View

Add a comment

Modify Ticket

Change Properties
<Author field>
Action
as closed
The resolution will be deleted. Next status will be 'reopened'
Author


E-mail address and user name can be saved in the Preferences.

Attachments
 
Note: See TracTickets for help on using tickets.