Joeri Vanthienen
2013-03-07 11:41:31 UTC
Hi,
My OpenIndiana (opensolaris) machine is joined to Active Directory.
I'm using samba 3.6.12 from OpenCSW.
wbinfo -u is working fine, getent was not working in the beginning,
but after some fiddling with libraries it was working ( I had to
create the following two symbolic links, not sure if they both are
correct)
/lib/libnss_winbind.so -> /opt/csw/lib/libnss_winbind.so.1
/lib/nss_winbind.so.1 -> /opt/csw/lib/libnss_winbind.so.1
root at openindiana-san:/# cat /etc/nsswitch.conf | grep winbind
passwd: files winbind
group: files winbind
root at openindiana-san:/# /opt/csw/bin/wbinfo -u | grep jvanthienen
HOME+jvanthienen
root at openindiana-san:/# getent passwd | grep jvanthienen
HOME+jvanthienen:*:11016:11006:Joeri
Vanthienen:/home/HOME/jvanthienen:/bin/false
Problem is that I can't authenticate now. It seems that samba/winbind
can't find the user.
Still some problem with a missed linked library or ... ?
Any idea is welcome! Thanks.
cat /var/samba/log/1stpc07.log
....
[2013/03/07 12:27:12.062823, 5] auth/auth_util.c:110(make_user_info_map)
Mapping user [HOME]\[jvanthienen] from workstation [1STPC07]
[2013/03/07 12:27:12.063021, 5] auth/user_info.c:59(make_user_info)
attempting to make a user_info for jvanthienen (jvanthienen)
[2013/03/07 12:27:12.063072, 5] auth/user_info.c:70(make_user_info)
making strings for jvanthienen's user_info struct
[2013/03/07 12:27:12.063109, 5] auth/user_info.c:87(make_user_info)
making blobs for jvanthienen's user_info struct
[2013/03/07 12:27:12.063146, 10] auth/user_info.c:123(make_user_info)
made a user_info for jvanthienen (jvanthienen)
[2013/03/07 12:27:12.063182, 3] auth/auth.c:219(check_ntlm_password)
check_ntlm_password: Checking password for unmapped user
[HOME]\[jvanthienen]@[1STPC07] with the new password interface
[2013/03/07 12:27:12.063222, 3] auth/auth.c:222(check_ntlm_password)
check_ntlm_password: mapped user is: [HOME]\[jvanthienen]@[1STPC07]
[2013/03/07 12:27:12.063260, 10] auth/auth.c:231(check_ntlm_password)
check_ntlm_password: auth_context challenge created by NTLMSSP
callback (NTLM2)
[2013/03/07 12:27:12.063296, 10] auth/auth.c:233(check_ntlm_password)
challenge is:
[2013/03/07 12:27:12.063329, 5] ../lib/util/util.c:415(dump_data)
[0000] 58 71 97 2B 78 85 EA CA Xq.+x.??
[2013/03/07 12:27:12.063401, 10] auth/auth_builtin.c:44(check_guest_security)
Check auth for: [jvanthienen]
[2013/03/07 12:27:12.063436, 10] auth/auth.c:259(check_ntlm_password)
check_ntlm_password: guest had nothing to say
[2013/03/07 12:27:12.063476, 10] auth/auth_sam.c:75(auth_samstrict_auth)
Check auth for: [jvanthienen]
[2013/03/07 12:27:12.063511, 8] lib/util.c:1521(is_myname)
is_myname("HOME") returns 0
[2013/03/07 12:27:12.063547, 6] auth/auth_sam.c:88(auth_samstrict_auth)
check_samstrict_security: HOME is not one of my local names
(ROLE_DOMAIN_MEMBER)
[2013/03/07 12:27:12.063585, 10] auth/auth.c:259(check_ntlm_password)
check_ntlm_password: sam had nothing to say
[2013/03/07 12:27:12.063624, 10] auth/auth_winbind.c:50(check_winbind_security)
Check auth for: [jvanthienen]
[2013/03/07 12:27:12.063660, 4] smbd/sec_ctx.c:214(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/03/07 12:27:12.063698, 4] smbd/uid.c:460(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/03/07 12:27:12.063734, 4] smbd/sec_ctx.c:314(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/03/07 12:27:12.063772, 5]
../libcli/security/security_token.c:53(security_token_debug)
Security token: (NULL)
[2013/03/07 12:27:12.063806, 5] auth/token_util.c:527(debug_unix_user_token)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2013/03/07 12:27:12.081737, 4] smbd/sec_ctx.c:422(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/03/07 12:27:12.081797, 5] lib/username.c:171(Get_Pwnam_alloc)
Finding user HOME+jvanthienen
[2013/03/07 12:27:12.081833, 5] lib/username.c:116(Get_Pwnam_internals)
Trying _Get_Pwnam(), username as lowercase is home+jvanthienen
[2013/03/07 12:27:12.081956, 5] lib/username.c:124(Get_Pwnam_internals)
Trying _Get_Pwnam(), username as given is HOME+jvanthienen
[2013/03/07 12:27:12.082073, 5] lib/username.c:134(Get_Pwnam_internals)
Trying _Get_Pwnam(), username as uppercase is HOME+JVANTHIENEN
[2013/03/07 12:27:12.082188, 5] lib/username.c:143(Get_Pwnam_internals)
Checking combinations of 0 uppercase letters in home+jvanthienen
[2013/03/07 12:27:12.082229, 5] lib/username.c:149(Get_Pwnam_internals)
Get_Pwnam_internals didn't find user [HOME+jvanthienen]!
[2013/03/07 12:27:12.082267, 5] lib/username.c:171(Get_Pwnam_alloc)
Finding user jvanthienen
[2013/03/07 12:27:12.082302, 5] lib/username.c:116(Get_Pwnam_internals)
Trying _Get_Pwnam(), username as lowercase is jvanthienen
[2013/03/07 12:27:12.082414, 5] lib/username.c:134(Get_Pwnam_internals)
Trying _Get_Pwnam(), username as uppercase is JVANTHIENEN
[2013/03/07 12:27:12.082529, 5] lib/username.c:143(Get_Pwnam_internals)
Checking combinations of 0 uppercase letters in jvanthienen
[2013/03/07 12:27:12.082570, 5] lib/username.c:149(Get_Pwnam_internals)
Get_Pwnam_internals didn't find user [jvanthienen]!
[2013/03/07 12:27:12.082765, 3] auth/auth_util.c:1121(check_account)
Failed to find authenticated user HOME+jvanthienen via getpwnam(),
denying access.
[2013/03/07 12:27:12.082814, 5] auth/auth.c:271(check_ntlm_password)
check_ntlm_password: winbind authentication for user [jvanthienen]
FAILED with error NT_STATUS_NO_SUCH_USER
[2013/03/07 12:27:12.082856, 2] auth/auth.c:319(check_ntlm_password)
check_ntlm_password: Authentication for user [jvanthienen] ->
[jvanthienen] FAILED with error NT_STATUS_NO_SUCH_USER
[2013/03/07 12:27:12.082902, 3] smbd/error.c:81(error_packet_set)
error packet at smbd/sesssetup.c(124) cmd=115 (SMBsesssetupX)
NT_STATUS_LOGON_FAILURE
[2013/03/07 12:27:12.082950, 5] lib/util.c:332(show_msg)
[2013/03/07 12:27:12.082974, 5] lib/util.c:342(show_msg)
size=35
smb_com=0x73
smb_rcls=109
smb_reh=0
smb_err=49152
smb_flg=136
smb_flg2=51203
smb_tid=65535
smb_pid=65279
smb_uid=101
smb_mid=256
smt_wct=0
smb_bcc=0
[2013/03/07 12:27:12.083142, 10] ../lib/util/util.c:415(dump_data)
[2013/03/07 12:27:25.566505, 1] smbd/process.c:457(receive_smb_talloc)
receive_smb_raw_talloc failed for client 192.168.250.6 read error =
NT_STATUS_CONNECTION_RESET.
[2013/03/07 12:27:25.566614, 4] smbd/sec_ctx.c:314(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/03/07 12:27:25.566673, 5]
../libcli/security/security_token.c:53(security_token_debug)
Security token: (NULL)
[2013/03/07 12:27:25.566721, 5] auth/token_util.c:527(debug_unix_user_token)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2013/03/07 12:27:25.566798, 5] smbd/uid.c:400(change_to_root_user)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2013/03/07 12:27:25.567003, 3] smbd/server_exit.c:181(exit_server_common)
Server exit (failed to receive smb request)
My OpenIndiana (opensolaris) machine is joined to Active Directory.
I'm using samba 3.6.12 from OpenCSW.
wbinfo -u is working fine, getent was not working in the beginning,
but after some fiddling with libraries it was working ( I had to
create the following two symbolic links, not sure if they both are
correct)
/lib/libnss_winbind.so -> /opt/csw/lib/libnss_winbind.so.1
/lib/nss_winbind.so.1 -> /opt/csw/lib/libnss_winbind.so.1
root at openindiana-san:/# cat /etc/nsswitch.conf | grep winbind
passwd: files winbind
group: files winbind
root at openindiana-san:/# /opt/csw/bin/wbinfo -u | grep jvanthienen
HOME+jvanthienen
root at openindiana-san:/# getent passwd | grep jvanthienen
HOME+jvanthienen:*:11016:11006:Joeri
Vanthienen:/home/HOME/jvanthienen:/bin/false
Problem is that I can't authenticate now. It seems that samba/winbind
can't find the user.
Still some problem with a missed linked library or ... ?
Any idea is welcome! Thanks.
cat /var/samba/log/1stpc07.log
....
[2013/03/07 12:27:12.062823, 5] auth/auth_util.c:110(make_user_info_map)
Mapping user [HOME]\[jvanthienen] from workstation [1STPC07]
[2013/03/07 12:27:12.063021, 5] auth/user_info.c:59(make_user_info)
attempting to make a user_info for jvanthienen (jvanthienen)
[2013/03/07 12:27:12.063072, 5] auth/user_info.c:70(make_user_info)
making strings for jvanthienen's user_info struct
[2013/03/07 12:27:12.063109, 5] auth/user_info.c:87(make_user_info)
making blobs for jvanthienen's user_info struct
[2013/03/07 12:27:12.063146, 10] auth/user_info.c:123(make_user_info)
made a user_info for jvanthienen (jvanthienen)
[2013/03/07 12:27:12.063182, 3] auth/auth.c:219(check_ntlm_password)
check_ntlm_password: Checking password for unmapped user
[HOME]\[jvanthienen]@[1STPC07] with the new password interface
[2013/03/07 12:27:12.063222, 3] auth/auth.c:222(check_ntlm_password)
check_ntlm_password: mapped user is: [HOME]\[jvanthienen]@[1STPC07]
[2013/03/07 12:27:12.063260, 10] auth/auth.c:231(check_ntlm_password)
check_ntlm_password: auth_context challenge created by NTLMSSP
callback (NTLM2)
[2013/03/07 12:27:12.063296, 10] auth/auth.c:233(check_ntlm_password)
challenge is:
[2013/03/07 12:27:12.063329, 5] ../lib/util/util.c:415(dump_data)
[0000] 58 71 97 2B 78 85 EA CA Xq.+x.??
[2013/03/07 12:27:12.063401, 10] auth/auth_builtin.c:44(check_guest_security)
Check auth for: [jvanthienen]
[2013/03/07 12:27:12.063436, 10] auth/auth.c:259(check_ntlm_password)
check_ntlm_password: guest had nothing to say
[2013/03/07 12:27:12.063476, 10] auth/auth_sam.c:75(auth_samstrict_auth)
Check auth for: [jvanthienen]
[2013/03/07 12:27:12.063511, 8] lib/util.c:1521(is_myname)
is_myname("HOME") returns 0
[2013/03/07 12:27:12.063547, 6] auth/auth_sam.c:88(auth_samstrict_auth)
check_samstrict_security: HOME is not one of my local names
(ROLE_DOMAIN_MEMBER)
[2013/03/07 12:27:12.063585, 10] auth/auth.c:259(check_ntlm_password)
check_ntlm_password: sam had nothing to say
[2013/03/07 12:27:12.063624, 10] auth/auth_winbind.c:50(check_winbind_security)
Check auth for: [jvanthienen]
[2013/03/07 12:27:12.063660, 4] smbd/sec_ctx.c:214(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/03/07 12:27:12.063698, 4] smbd/uid.c:460(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/03/07 12:27:12.063734, 4] smbd/sec_ctx.c:314(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/03/07 12:27:12.063772, 5]
../libcli/security/security_token.c:53(security_token_debug)
Security token: (NULL)
[2013/03/07 12:27:12.063806, 5] auth/token_util.c:527(debug_unix_user_token)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2013/03/07 12:27:12.081737, 4] smbd/sec_ctx.c:422(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/03/07 12:27:12.081797, 5] lib/username.c:171(Get_Pwnam_alloc)
Finding user HOME+jvanthienen
[2013/03/07 12:27:12.081833, 5] lib/username.c:116(Get_Pwnam_internals)
Trying _Get_Pwnam(), username as lowercase is home+jvanthienen
[2013/03/07 12:27:12.081956, 5] lib/username.c:124(Get_Pwnam_internals)
Trying _Get_Pwnam(), username as given is HOME+jvanthienen
[2013/03/07 12:27:12.082073, 5] lib/username.c:134(Get_Pwnam_internals)
Trying _Get_Pwnam(), username as uppercase is HOME+JVANTHIENEN
[2013/03/07 12:27:12.082188, 5] lib/username.c:143(Get_Pwnam_internals)
Checking combinations of 0 uppercase letters in home+jvanthienen
[2013/03/07 12:27:12.082229, 5] lib/username.c:149(Get_Pwnam_internals)
Get_Pwnam_internals didn't find user [HOME+jvanthienen]!
[2013/03/07 12:27:12.082267, 5] lib/username.c:171(Get_Pwnam_alloc)
Finding user jvanthienen
[2013/03/07 12:27:12.082302, 5] lib/username.c:116(Get_Pwnam_internals)
Trying _Get_Pwnam(), username as lowercase is jvanthienen
[2013/03/07 12:27:12.082414, 5] lib/username.c:134(Get_Pwnam_internals)
Trying _Get_Pwnam(), username as uppercase is JVANTHIENEN
[2013/03/07 12:27:12.082529, 5] lib/username.c:143(Get_Pwnam_internals)
Checking combinations of 0 uppercase letters in jvanthienen
[2013/03/07 12:27:12.082570, 5] lib/username.c:149(Get_Pwnam_internals)
Get_Pwnam_internals didn't find user [jvanthienen]!
[2013/03/07 12:27:12.082765, 3] auth/auth_util.c:1121(check_account)
Failed to find authenticated user HOME+jvanthienen via getpwnam(),
denying access.
[2013/03/07 12:27:12.082814, 5] auth/auth.c:271(check_ntlm_password)
check_ntlm_password: winbind authentication for user [jvanthienen]
FAILED with error NT_STATUS_NO_SUCH_USER
[2013/03/07 12:27:12.082856, 2] auth/auth.c:319(check_ntlm_password)
check_ntlm_password: Authentication for user [jvanthienen] ->
[jvanthienen] FAILED with error NT_STATUS_NO_SUCH_USER
[2013/03/07 12:27:12.082902, 3] smbd/error.c:81(error_packet_set)
error packet at smbd/sesssetup.c(124) cmd=115 (SMBsesssetupX)
NT_STATUS_LOGON_FAILURE
[2013/03/07 12:27:12.082950, 5] lib/util.c:332(show_msg)
[2013/03/07 12:27:12.082974, 5] lib/util.c:342(show_msg)
size=35
smb_com=0x73
smb_rcls=109
smb_reh=0
smb_err=49152
smb_flg=136
smb_flg2=51203
smb_tid=65535
smb_pid=65279
smb_uid=101
smb_mid=256
smt_wct=0
smb_bcc=0
[2013/03/07 12:27:12.083142, 10] ../lib/util/util.c:415(dump_data)
[2013/03/07 12:27:25.566505, 1] smbd/process.c:457(receive_smb_talloc)
receive_smb_raw_talloc failed for client 192.168.250.6 read error =
NT_STATUS_CONNECTION_RESET.
[2013/03/07 12:27:25.566614, 4] smbd/sec_ctx.c:314(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/03/07 12:27:25.566673, 5]
../libcli/security/security_token.c:53(security_token_debug)
Security token: (NULL)
[2013/03/07 12:27:25.566721, 5] auth/token_util.c:527(debug_unix_user_token)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2013/03/07 12:27:25.566798, 5] smbd/uid.c:400(change_to_root_user)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2013/03/07 12:27:25.567003, 3] smbd/server_exit.c:181(exit_server_common)
Server exit (failed to receive smb request)