Matthew Booher
2003-Aug-31 22:04 UTC
[Samba] Win 98 clients : access rejected to the server by nmbd
I recently setup a k12os 3.0 (Redhat 9) Terminal server for a small private school. This server is also the PDC for the domain. I am running samba 2.2.8a and openldap 2.1.22. The problem I am having is that i am having is that some windows 9x machines cannot log on the network. On the client machine I get the following message ?The domain password you supplied is not correct, or access to the logon server has been denied?. In the nmbd log I get the following out put. nmbd/nmbd_processlogon.c:process_logon_packet(69) process_logon_packet: Logon from 192.168.0.69: code = 0x0 [2003/08/31 17:38:06, 1] nmbd/nmbd_processlogon.c:process_logon_packet(69) process_logon_packet: Logon from 192.168.0.69: code = 0x0 [2003/08/31 17:38:06, 0] nmbd/nmbd_responserecordsdb.c:find_response_record(235) find_response_record: response packet id 12 received with no matching record. [2003/08/31 17:38:06, 0] nmbd/nmbd_responserecordsdb.c:find_response_record(235) find_response_record: response packet id 14 received with no matching record. Other than the above entry in the nmbd log i get no other sign that the machine tried to log in there is nothing in the smbd log or in the ldap log. I can logon to some 9x machines fine and others simply will not logon. I have triple checked all the networking elements (switches routers lines etc) all work fine. If anyone can give me any heads up on why this is happening i would really applicate it. This thing has really got me stumped. Thanks, Matthew Booher Here is a copy of my smb.conf file if it is needed. # Global parameters [global] #this is the global section of the conf file. It sets parameters for the #overall machine. workgroup = LAB netbios name = SERVER server string = File and Auth. Server TSERVER interfaces = 192.168.0.254 bind interfaces only = yes # #password encryption for Win 95/98 computers # encrypt passwords = yes unix password sync = yes #smb passwd file = /etc/smbpasswd passwd program = /usr/local/sbin/smbldap-passwd.pl -o %u passwd chat = *new*password* %n\n *new*password* %n\n *successfully* unix password sync = yes ; passwd chat debug = Yes #log files and settings for logs of computer connections # log file = /var/log/samba/log.%m max log size = 50 debug level = 2 name resolve order = wins lmhosts bcast # #General settings for the connections with reguard to network # deadtime = 10 keepalive = 60 socket options = TCP_NODELAY SO_KEEPALIVE SO_RCVBUF=8192 SO_SNDBUF=8192 load printers = no logon path = \\%L\profile\%U #logon drive = i: logon home = \\%L\profile\%U logon script = %G.bat # unix realname = yes # # Domain login settings. With these, we will always win election! # domain logons = Yes security = user os level = 65 preferred master = yes domain master = yes local master = yes dns proxy = no wins proxy = yes wins support = yes ; short preserve case = map to guest = never password level = 0 null passwords = no kernel oplocks = no follow symlinks = yes # sambldap options ldap suffix = dc=bms,dc=school # ldap server = 192.168.0.254 ldap admin dn = cn=Manager,dc=bms,dc=school ldap port = 389 ldap server = 127.0.0.1 ldap ssl = no # ldap filter = (&(uid%u)(objectclasssambaAccount)) ; add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u add user script = /usr/local/sbin/smbldap-useradd.pl -m -d /dev/null -g 1000 -s /bin/false %u character set = iso8859-1 #================ Share Definitions ============================== [homes] path = %H comment = Home Directoory read only = No create mask = 0700 directory mask = 0700 browseable = no hide dot files = yes veto files = /.bash*/.k*/.x*/ locking = no share modes = no [netlogon] comment = Network Logon Service path = /home/samba/netlogon/%G write list = booz leon mbailey ntadmin boohemd0 admin users = booz leon mbailey boohemd0 writeable = no browsable = yes case sensitive = no locking = No share modes = no ; hide files = ; dont descend = [profile] path = /pchome/profiles create mask = 0600 #csc policy = disable directory mode = 0700 #profile acls = no writable = yes browsable = yes [9x_profile] path = /pchome/profiles/%U browsable = no writeable = yes [admin] comment = Root on server path = / valid users = booz leon mbailey boohemd0 admin users = booz leon mbailey boohemd0 read only = No create mask = 0700 browseable = No [tmp] root preexec = /etc/smblogs %U %m %I comment = Temporary file space path = /pchome/tmp read only = No create mask = 0755 guest ok = Yes root postexec = /etc/smblogsout %U %m %I [scripts] path = /home/samba/netlogon create mask = 0755 admin users = booz leon mbailey boohemd0 write list = booz leon mbailey boohemd0 valid users = booz leon mbailey boohemd0 browseable = No [adm_temp] comment = Administration temp directory path = /pchome/adm_temp valid users = booz leon mbailey boohemd0 write list = booz leon mbailey boohemd0 admin users = booz leon mbailey boohemd0 writable = yes browseable = No [wp] force create mode = 0444 valid users = +wp +adm +teacher writable = yes path = /pchome/classes/wp browseable = no locking = no [peach] guest ok = yes writeable = yes path = /pchome/classes/peach browseable = yes locking = no share modes = no volume = Peachtree_T [comp_app] path = /pchome/classes/comp_app browseable = No writable = yes write list = booz root valid users = +adm +capp_2 +capp_1 force create mode = 0770 force directory mode = 0770 ; oplocks = yes ; level2 oplocks = yes [atrt] path = /pchome/classes/atrt read only = No force create mode = 0777 force directory mode = 0777 guest ok = Yes browseable = no # oplocks = No # share modes = no # locking = no [tessel] path = /pchome/tessel read only = No force create mode = 0777 force directory mode = 0777 guest ok = Yes browsable = no [quill] path = /pchome/classes/quill writable = yes valid users = +quill +adm +teacher write list = +quill +adm +teacher browseable = no force create mode = 0770 force directory mode = 0770 [yearbook] path = /pchome/classes/yearbook writable = yes valid users = +yearbook +adm +teacher write list = +yearbook +adm +teacher browseable = no force create mode = 0770 force directory mode = 0770