PAM / Winbind = NT_STATUS_LOGON_FAILURE
Hello all,
I am setting up samba 3.0.23c as a domain member of win2003 active directory- the following steps were successful:
1-join the domain (Joined domain CAD)
2-nmbd, smbd and winbindd were started fine
3-edited nsswich.conf
a-passwd files winbind
b-group files winbind
4-wbinfo -u and -g worked fine i could see the users and the groups as well as getnet passwd user -all fine
5- wbinfo -t return checking the trust secret via RPC calls succeeded
First question: when I created a folder on samba then changed the owner to be one of the AD users the ls -l that folder i get
-rw-r--r-- 1 10002 root 0 Jan 4 12:15 file INSTEAD OF
-rw-r--r-- 1 John root 0 Jan 4 12:15 file
so instead of getting back the owner name i get the owner UID?
i am also getting the following
[root@itbox john]# smbclient -L testbox
Password:
session setup failed: NT_STATUS_LOGON_FAILURE
client machines XP pro are able to browse the network and
get to see my share (user share) however when i double click it i get a login asking for the user name and password
smb.conf:
[global]
workgroup = CAD
netbios name = itbox
security = DOMAIN
encrypt passwords = yes
winbind separator = +
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind enum users = yes
winbind enum groups = yes
winbind use default domain = yes
[homes]
comment = Home Directories
valid users = %S
read only = No
browseable = No
pam.d/samba
#%PAM-1.0
auth required pam_nologin.so
auth required pam_stack.so service=system-auth
auth required pam_winbind.so
account required pam_winbind.so
account required pam_stack.so service=system-auth
session required pam_mkhomedir.so skel=/etc/samba/skel umask=0022
session required pam_stack.so service=system-auth
password required pam_stack.so service=system-auth
do i also need to configue my pam.d/login??
i am still getting
[root@itbox samba]# smbclient -L itbox
Password:
session setup failed: NT_STATUS_LOGON_FAILURE
Last edited by m2azer; 01-05-2007 at 12:59 PM.
|