Had to revert Samba to 4.4.16-i586-3 from 4.6.16-i586-1
Slackware 14.2, 32 bit. I installed the update patch to samba-4.6.16, restarted Samba services, and found that I was unable to connect from a Windows PC. No error on the Windows side, just keeps popping up the login box. No error logged on the server side. Wireshark tells me the server is sending STATUS_LOGON_FAILURE after credentials are supplied from the Windows PC.
This is a very simple setup: Samba on Linux configured as a stand-alone server and is also the master browser, a single share, local authentication. I am NOT trying to connect with guest user (as in another thread here). I've been using the same setup for a long time without changing anything. Linux systems can connect to 4.6.16 using either smbclient or mount -t cifs, but no go from Windows. I reverted to the previous Slackware patch samba-4.4.16-i583-3 and connection from Windows works now. Eventually I'm going to have to wade into this, increase logging levels, read through the change history for Samba, etc. But if anyone has any tips on something relevant that broke or changed from 4.4.x to 4.6.x that would probably help a lot |
Can you share your working smb.conf?
Just in case the following is helpful here... https://askubuntu.com/questions/1095...to-windows-box |
Thanks, but the askubuntu thread is about trying to connect the other way: Linux client to Windows server, and doesn't seem to apply.
Before I post my smb.conf - which I've been using without change for many years - I should try re-installing 4.6.16 and running it with a higher log level to see if it has anything useful to say. But I'm still very interested if anyone knows of a change from 4.4 to 4.6 that might cause login failures from Windows XP. (Sorry, forgot to mention it was XP, in case that is relevant.) |
Quote:
|
Quote:
|
Close but not quite. It isn't the protocol level, but the authentication level default change that broke my setup. Starting with Samba-4.5, the defaults were changed so that NTLM authentication is disabled, requiring NTLMv2. The fix for me (yes it has security issues) was to add in smb.conf:
Code:
ntlm auth = yes |
Followup and correction: If you have Windows XP systems that need to connect to the updated Samba 4.6.x in Slackware, you have 2 choices. (1) Enable the Samba server to accept NTLM (v1) authentication, as in my previous post, or (2) Enable NTLMv2 on each Windows XP system. Although (2) is better security, this is XP and security probably means keeping it off the network... To enable XP to do NTLMv2 authentication there are 2 registry keys to change as described here.
|
Just ran into this myself.
As noted by @ljb643 in post #6 and #7, and confirmed by 'man smb.conf' Quote:
Quote:
Quote:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\lmcompatibilitylevel to value 3 on the affected Windows XP machines. https://support.microsoft.com/en-au/...-a-network-att |
Quote:
|
I am looking to update Samba to 4.4.16 to version 4.6.16. I saw that the reported problem occurred on Windows XP machines. Does it also occur on Windows 7 and Windows 10?
|
Quote:
Quote:
|
All times are GMT -5. The time now is 09:34 AM. |