[Date Prev][Date Next] [Chronological] [Thread] [Top]

Problem trying to get samba working

To: openldap-software@OpenLDAP.org
Subject: Problem trying to get samba working
From: Chris Hirsch <chris@ewa-denver.com>
Date: Fri, 24 Jan 2003 06:47:24 -0700
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20021003

Hey all...I know this isn't necessarily an LDAP problem but I'm hoping that somebody was at one point in my same shoes :-)

I'm trying to get samba working with Open LDAP...specfically I'm using RH 8.0 and had to grap the src RPM from Samba's site and recompile with --with-ldapsam and I see the samba server connecting to LDAP server so I know that works. I've also added my root dn to the secrets.tlb file via the smbpasswd -w command (Just to make sure I pass the password on the command line and not the has that I have in my slapd.conf right?)

So you may be asking yourself why is he emailing the list then? :-) Well when I try and do a smbclient //zed/tmp/ -U chirsch and enter my correct passwd (it works for logins, ssh etc) I get session setup failed: NT_STATUS_LOGON_FAILURE. After doing a LOT of searching I finally came across a post suggesting I turn up the logging level of the samba daemon. So I did that and I get this:

[2003/01/24 06:42:08, 2] passdb/pdb_ldap.c:ldap_search_one_user(262) ldap_search_one_user: searching for:[(&(uid=chirsch)(objectclass=sambaAccount))] [2003/01/24 06:42:08, 2] passdb/pdb_ldap.c:get_single_attribute(360) get_single_attribute: [uid] = [chirsch] [2003/01/24 06:42:08, 2] passdb/pdb_ldap.c:init_sam_from_ldap(495) Entry found for user: chirsch

<Lots of get_single_attributes where I don't have things like pwdLastSet or logonTime set>

[2003/01/24 06:42:09, 2] passdb/pdb_ldap.c:get_single_attribute(354)
 get_single_attribute: [lmPassword] = [<does not exist>]
[2003/01/24 06:42:09, 2] passdb/pdb_ldap.c:get_single_attribute(354)
 get_single_attribute: [ntPassword] = [<does not exist>]
[2003/01/24 06:42:09, 2] passdb/pdb_ldap.c:get_single_attribute(354)
 get_single_attribute: [acctFlags] = [<does not exist>]
[2003/01/24 06:42:09, 4] smbd/password.c:smb_password_ok(475)
 smb_password_ok: Checking SMB password for user chirsch
[2003/01/24 06:42:09, 5] smbd/password.c:smb_password_ok(489)
 smb_password_ok: challenge received
[2003/01/24 06:42:09, 4] smbd/password.c:smb_password_ok(499)
 smb_password_ok: Checking NT MD4 password
[2003/01/24 06:42:09, 4] smbd/password.c:smb_password_ok(504)
 smb_password_ok: NT MD4 password check failed
[2003/01/24 06:42:09, 4] smbd/password.c:smb_password_ok(518)
 smb_password_ok: Checking LM password
[2003/01/24 06:42:09, 4] smbd/password.c:smb_password_ok(523)
 smb_password_ok: LM password check failed
[2003/01/24 06:42:09, 2] smbd/password.c:pass_check_smb(575)
 pass_check_smb failed - invalid password for user [chirsch]
[2003/01/24 06:42:09, 2] smbd/reply.c:reply_sesssetup_and_X(975)
 NT Password did not match for user 'chirsch'!

It then tries the same thing for the lmpassword...I was under the impression that it would use the userPassword intead of anything samba specific. Can anybody point me in the right direction on this? I would like a single username and password across a ssh login and a samba login..is this possible?

Thanks for all the help!

Chris

Follow-Ups:
- Re: Problem trying to get samba working
  - From: Adam Williams <awilliam@whitemice.org>

Prev by Date: Re: Record Locking Proposal
Next by Date: sporadic nature of LDAP error when searching
Index(es):
- Chronological
- Thread