Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
08-17-2005, 12:20 PM
|
#1
|
|
Member
Registered: Jun 2001
Location: Up in the clouds
Distribution: Fedora et al.
Posts: 353
Rep: 
|
Joined the domain, NTLM not working.
I finally got my system on the domain, with few qwerks. However, now ntlm doesn't work. I'm using kdm, kde, and firefox. I've configured firefox's about :config to recognize the necessary sites, and I haven't been able to fine any location in kde to enable this, but my smb.conf file has the following:
Code:
client lanman auth = no
ntlm auth = yes
client ntlmv2 auth = yes
restrict anonymous = no
max protocol = NT1
ldap ssl = yes
server signing = Auto
When I'm in firefox, and I try to access the site that uses ntlm, it goes to a auth dialog, and when browsing my smb shares, it does the same under konqueror. Any help is greatly appreciated, joining a domain doesn't make much sense if I still have to authenticate to the net resources :-\. Also, are there any utilities out there for modifying ntfs file permissions? I can't imagine that this is just an impossibility. Thanks!
Mike. |
|
|
|
|
08-17-2005, 12:26 PM
|
#2
|
|
Member
Registered: Aug 2005
Location: India
Distribution: Gentoo
Posts: 43
Rep:
|
did you join the domain without any errors. there is this thing about NTLN encryption and samba encryption. post the log would you
|
|
|
|
|
08-17-2005, 01:22 PM
|
#3
|
|
Member
Registered: Jun 2001
Location: Up in the clouds
Distribution: Fedora et al.
Posts: 353
Original Poster
Rep:
|
no, I did not join the domain without errors, and there is no log info concerning ntlm, but here's the dump from joining the domain:
Code:
[root@hostname etc]# net ads join -U [USERNAME]
[USERNAME]'s password:
[2005/08/16 16:20:20, 0] libads/ldap.c:ads_add_machine_acct(1512)
Warning: ads_set_machine_sd: Unexpected information received
Using short domain name -- [SHORTNAME]
[2005/08/16 16:20:21, 0] libads/kerberos.c:get_service_ticket(337)
get_service_ticket: kerberos_kinit_password [HOSTNAME]$@[DOMAIN]@[DOMAIN] failed: Client not found in Kerberos database
Joined '[HOSTNAME]' to realm '[DOMAIN]'
*** glibc detected *** net: free(): invalid pointer: 0x00523db0 ***
======= Backtrace: =========
/lib/libc.so.6[0x2ae424]
/lib/libc.so.6(__libc_free+0x77)[0x2ae95f]
/lib/libcom_err.so.2(remove_error_table+0x4b)[0x114abb]
/usr/lib/libkrb5.so.3[0x4c18c4]
/usr/lib/libkrb5.so.3[0x4c15c7]
/usr/lib/libkrb5.so.3[0x5129da]
/lib/ld-linux.so.2[0xa4d058]
/lib/libc.so.6(exit+0xc5)[0x275c69]
/lib/libc.so.6(__libc_start_main+0xce)[0x25fdee]
net[0xaff0f1]
======= Memory map: ========
00111000-00113000 r-xp 00000000 03:06 660203 /usr/lib/libkrb5support.so.0.0
00113000-00114000 rwxp 00001000 03:06 660203 /usr/lib/libkrb5support.so.0.0
00114000-00116000 r-xp 00000000 03:06 576357 /lib/libcom_err.so.2.1
00116000-00117000 rwxp 00001000 03:06 576357 /lib/libcom_err.so.2.1
00117000-0012c000 r-xp 00000000 03:06 664122 /usr/lib/libsasl2.so.2.0.20
0012c000-0012d000 rwxp 00015000 03:06 664122 /usr/lib/libsasl2.so.2.0.20
0012d000-0013f000 r-xp 00000000 03:06 650204 /usr/lib/libz.so.1.2.2.2
0013f000-00140000 rwxp 00011000 03:06 650204 /usr/lib/libz.so.1.2.2.2
00140000-00142000 r-xp 00000000 03:06 644734 /usr/lib/gconv/IBM850.so
00142000-00144000 rwxp 00001000 03:06 644734 /usr/lib/gconv/IBM850.so
00144000-0014d000 r-xp 00000000 03:06 1024053 /lib/libnss_files-2.3.5.so
0014d000-0014e000 r-xp 00008000 03:06 1024053 /lib/libnss_files-2.3.5.so
0014e000-0014f000 rwxp 00009000 03:06 1024053 /lib/libnss_files-2.3.5.so
00227000-0024a000 r-xp 00000000 03:06 660226 /usr/lib/libk5crypto.so.3.0
0024a000-0024b000 rwxp 00023000 03:06 660226 /usr/lib/libk5crypto.so.3.0
0024b000-0036f000 r-xp 00000000 03:06 1024103 /lib/libc-2.3.5.so
0036f000-00371000 r-xp 00124000 03:06 1024103 /lib/libc-2.3.5.so
00371000-00373000 rwxp 00126000 03:06 1024103 /lib/libc-2.3.5.so
00373000-00375000 rwxp 00373000 00:00 0
0037b000-0037d000 r-xp 00000000 03:06 644827 /usr/lib/gconv/UTF-16.so
0037d000-0037f000 rwxp 00001000 03:06 644827 /usr/lib/gconv/UTF-16.so
00457000-00458000 r-xp 00457000 00:00 0
004b2000-00521000 r-xp 00000000 03:06 660238 /usr/lib/libkrb5.so.3.2
00521000-00524000 rwxp 0006e000 03:06 660238 /usr/lib/libkrb5.so.3.2
00587000-005bb000 r-xp 00000000 03:06 654761 /usr/lib/libldap-2.2.so.7.0.16
005bb000-005bd000 rwxp 00033000 03:06 654761 /usr/lib/libldap-2.2.so.7.0.16
00607000-0063c000 r-xp 00000000 03:06 1025680 /lib/libssl.so.0.9.7f
0063c000-0063f000 rwxp 00035000 03:06 1025680 /lib/libssl.so.0.9.7f
006fc000-0070b000 r-xp 00000000 03:06 576355 /lib/libresolv-2.3.5.so
0070b000-0070c000 r-xp 0000e000 03:06 576355 /lib/libresolv-2.3.5.so
0070c000-0070d000 rwxp 0000f000 03:06 576355 /lib/libresolv-2.3.5.so
0070d000-0070f000 rwxp 0070d000 00:00 0
00738000-0073c000 r-xp 00000000 03:06 1024050 /lib/libnss_dns-2.3.5.so
0073c000-0073d000 r-xp 00003000 03:06 1024050 /lib/libnss_dns-2.3.5.so
0073d000-0073e000 rwxp 00004000 03:06 1024050 /lib/libnss_dns-2.3.5.so
0080d000-00812000 r-xp 00000000 03:06 576366 /lib/libcrypt-2.3.5.so
00812000-00813000 r-xp 00004000 03:06 576366 /lib/libcrypt-2.3.5.so
00813000-00814000 rwxp 00005000 03:06 576366 /lib/libcrypt-2.3.5.so
00814000-0083b000 rwxp 00814000 00:00 0
008be000-008d0000 r-xp 00000000 03:06 576360 /lib/libnsl-2.3.5.so
008d0000-008d1000 r-xp 00011000 03:06 576360 /lib/libnsl-2.3.5.so
008d1000-008d2000 rwxp 00012000 03:06 576360 /lib/libnsl-2.3.5.so
008d2000-008d4000 rwxp 008d2000 00:00 0
008d4000-009cc000 r-xp 00000000 03:06 1025679 /lib/libcrypto.so.0.9.7f
009cc000-009de000 rwxp 000f8000 03:06 1025679 /lib/libcrypto.so.0.9.7f
009de000-009e1000 rwxp 009de000 00:00 0
009ea000-00a01000 r-xp 00000000 03:06 660467 /usr/lib/libgssapi_krb5.so.2.2
00a01000-00a02000 rwxp 00017000 03:06 660467 /usr/lib/libgssapi_krb5.so.2.2
00a3f000-00a59000 r-xp 00000000 03:06 1024101 /lib/ld-2.3.5.so
00a59000-00a5a000 r-xp 00019000 03:06 1024101 /lib/ld-2.3.5.so
00a5a000-00a5b000 rwAborted
I tried to leave and re-join the domain, but it said it couldn't but didn't give a reason. Thanks for your help.
Last edited by mikeyt_333; 08-18-2005 at 11:36 AM.
|
|
|
|
|
08-17-2005, 06:37 PM
|
#4
|
|
Member
Registered: Jun 2001
Location: Up in the clouds
Distribution: Fedora et al.
Posts: 353
Original Poster
Rep:
|
I just noticed that my system isn't sending it's hostname correctly. It's joining the domain with the computername correct, but the hostname in AD is showing up as localhost.localdomain, which would result in the errors I'm recieving, I'm working on changing this, but can't quite get it to go, any ideas?
|
|
|
|
|
08-18-2005, 09:26 AM
|
#5
|
|
Member
Registered: Jun 2001
Location: Up in the clouds
Distribution: Fedora et al.
Posts: 353
Original Poster
Rep:
|
anybody?
|
|
|
|
|
08-18-2005, 11:38 AM
|
#6
|
|
Member
Registered: Jun 2001
Location: Up in the clouds
Distribution: Fedora et al.
Posts: 353
Original Poster
Rep:
|
I've googled repeatedly, and I'm definitely not the only person with this problem, but every post I've seen goes un-answered, is this just not resolvable? I believe, the key to my problems resides in solving this error:
Code:
[2005/08/16 16:20:20, 0] libads/ldap.c:ads_add_machine_acct(1512)
Warning: ads_set_machine_sd: Unexpected information received
Using short domain name -- [SHORTNAME]
I'm working on it, but if anybody has some enlightening words, I'd appreciate them. Thanks! |
|
|
|
|
08-19-2005, 08:28 AM
|
#7
|
|
LQ Newbie
Registered: Aug 2005
Posts: 14
Rep: 
|
I have had the problem with the machine being known as localhost.localdomain within AD I fixed this by going into /etc/hosts and adding a line before the 127.0.0.1 localhost.localdomain...... saying
127.0.0.1 (hostname I want).(Domain I want) (hostname)
Hope this works for you too
|
|
|
|
|
08-19-2005, 10:04 AM
|
#8
|
|
Member
Registered: Jun 2001
Location: Up in the clouds
Distribution: Fedora et al.
Posts: 353
Original Poster
Rep:
|
yeah, I figured that out too, I read somewhere that localhost.localdomain is a redhat thing, and it's kind of a pain. Thanks for the post!
|
|
|
|
All times are GMT -5. The time now is 10:04 AM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
