LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)
-   -   Samba Authentication problem?!?!?! (https://www.linuxquestions.org/questions/linux-networking-3/samba-authentication-problem-589694/)

kool_kid 10-05-2007 11:44 AM
Samba Authentication problem?!?!?!
 
Hiya

I Have configured my samba machine as a member i of Windows AD (win2k3 Machine). All the configuration went on successfully when i execute net ads testjoin i get output as "OK" and i can see my samba machine in AD computers n users. also i get a proper output from wbinfo -u -g. My kerberos tickets are valid. Now the problem im facing

Case1: When i enter the machine name of my samba server in Run Box Of Winxp it is popping up for a user name n pass like Samba/<username> (where Samba = my samba server name) when i enter a valid ADS domain user name it doesnt validate it but when i enter a valid linux user/pass it gets authenticated

Now in Case 2: when im entering the ip address of my samba server in "Run" Box it is asking for TIPTON1/<username (where TIPTON1=my ads name) when i enter a valid user n pass of windows it doesnt authenticate also when i enter a valid user n pass of linux it doesnt authenticate.

The Only Condition when im able to access the samba shares is when i log into winxp with my ADS Domain Profile n try to access teh Samba share from My Network Places><ADS DOMAIN>Samba Domain.

I would like to use all the ADS accounts to authenticate the users and i dont want to use my linux users n passes.

Here is my winbind log >> http://pastebin.ca/726764
my smb.conf >> http://pastebin.ca/728953
my smbd.log >> http://pastebin.ca/726762

Please help me out. Thanks

moenterprise 10-05-2007 11:45 PM
I can't see your smb.conf.

kool_kid 10-07-2007 09:59 AM
i will re re uploading it now

kool_kid 10-07-2007 10:00 AM
My Smb.conf file>> http://pastebin.ca/728953

moenterprise 10-07-2007 10:32 PM
Ummmm...I think you are supposed to use the ads server option instead of the password server option...

kool_kid 10-08-2007 10:23 AM
u want me to comment out password server option? yes im using security = ads

moenterprise 10-08-2007 11:32 AM
no...replace "password server" with "ads server"

kool_kid 10-08-2007 04:43 PM
Thanks for help I did that, now i can login to samba when I enter the the ip of samba machine in the "run" box of Winxp when the username n password window pops up i have to enter the username this way >> "TIPTON1\Manager1" and password where TIPTON1 is my ads server and Manager1 is my ADS user i can login but i would lilke to know why i cannot directly login i.e when the username n password window pops up and i enter the user name n pass (in regular without this way TIPTON1/Manager1), why does it says login unsuccessfull; Am i mssing any option in smb.conf?

moenterprise 10-09-2007 12:06 AM
You have to type TIPTON1 because TIPTON1 is your domain... TIPTON1 is part of the username.

In fact, if you just put Manager1, your computer will turn it into COMPUTERNAME\Manager1 which isn't right...it has to be TIPTON1\Manager1...

I hope that makes sense...

kool_kid 10-09-2007 09:47 AM
Yep got it bro thank you very Much :)

arikamir 11-06-2007 10:42 PM
What version of XP are you using, XP home addition does not support loggin to a domain controller which will cause this prompt.
Windows XP Professional will allow you to authenticate to your ADS (Domain) and pass the credentials to the samba server.
there is a work around for XP home though it require some registry changes


All times are GMT -5. The time now is 02:18 PM.