hello, My system : Debian sarge up to date . samba 3.0.14 I can auth for share and use it but on domain controller it s don t work . here my smb.conf : # # samba ldap #======================= Global Settings ====================== [global] # ldap config passdb backend = ldapsam:ldap://127.0.0.1/ ldap admin dn = cn=root,dc=in,dc=yop,dc=net ldap suffix = dc=in,dc=yop,dc=net ldap group suffix = ou=Peoples ldap user suffix = ou=Peoples ldap machine suffix = ou=Computers add machine script = /usr/sbin/smbldap-useradd -w "%u" add user script = /usr/sbin/smbldap-useradd -m "%u" ldap delete dn = Yes delete user script = /usr/sbin/smbldap-userdel "%u" add machine script = /usr/sbin/smbldap-useradd -w "%u" add group script = /usr/sbin/smbldap-groupadd -p "%g" delete group script = /usr/sbin/smbldap-groupdel "%g" add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g" delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g" set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u" # si les login unix sont diferent des samba # username map = /etc/samba/smbusers time server = Yes socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 # disable netbios = yes mangling method = hash2 dos charset = 850 unix charset = ISO8859-15 netbios name = obiwan workgroup = yop server string = Serveur de fichiers (samba %v) wins support = yes # wins server = w.x.y.z dns proxy = no name resolve order = lmhosts host wins bcast log file = /var/log/samba/log.%m max log size = 1000 syslog only = no syslog = 0 log level = 10 panic action = /usr/share/samba/panic-action %d security = user encrypt passwords = true guest account = nobody invalid users = root ldap passwd sync = yes load printers = yes interfaces = eth0 # bind interfaces only = yes printing = cups printcap name = cups ; printer admin = @ntadmin ; preserve case = yes ; short preserve case = yes # client use spnego = yes domain master = yes domain logons = yes local master = yes preferred master = yes os level = 32 ; idmap uid = 100-20000 ; idmap gid = 100-20000 ; template shell = /bin/bash ; use sendfile = Yes logon script = start.bat logon drive = H: logon home = \\obiwan\%U logon path = \\%L\profiles\%U #======================= Share Definitions ====================== [homes] comment = Reperoire perso browseable = yes read only = No valid users = %U create mask = 770 directory mask = 775 [public] comment = Dossier public available = yes browseable = yes path = /home/samba/public public = yes writable = yes force user = nobody create mask = 777 directory mask = 777 guest ok = yes [profiles] path = /home/samba/profiles read only = no create mask = 0700 directory mask = 0700 browseable = yes guest ok = yes # profile acls = yes # csc policy = disable # next line is a great way to secure the profiles # force user = %U # next line allows administrator to access all profiles valid users = %U @"Domain Admins" [netlogon] path = /home/samba/netlogon writable = yes browsable = yes [HP2550L] comment = HP laserjet 2550L printable = yes path = /var/spool/samba public = yes guest ok = yes [printers] comment = All Printers browseable = no printable = yes writable = no public = yes guest ok = yes path = /var/spool/samba printer admin = administrator And here some log : 2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint32(642) 0214 auth_resp : 00000001 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_ntstatus(672) 0218 status : NT_STATUS_OK [2005/05/04 18:25:52, 5] rpc_server/srv_pipe.c:api_rpcTNP(1578) api_rpcTNP: called NETLOGON successfully [2005/05/04 18:25:52, 10] rpc_server/srv_pipe.c:api_rpcTNP(1587) api_rpcTNP: rpc input buffer underflow (parse error?) [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8s(729) 0106 : 00 00 00 00 00 00 00 00 00 00 44 06 0a 00 98 3d 0b 00 [2005/05/04 18:25:52, 3] rpc_server/srv_pipe_hnd.c:free_pipe_context(542) free_pipe_context: destroying talloc pool of size 908 [2005/05/04 18:25:52, 10] rpc_server/srv_pipe_hnd.c:write_to_internal_pipe(878) write_to_pipe: data_used = 320 [2005/05/04 18:25:52, 3] smbd/pipes.c:reply_pipe_write_and_X(199) writeX-IPC pnum=76af nwritten=336 [2005/05/04 18:25:52, 5] lib/util.c:show_msg(464) [2005/05/04 18:25:52, 5] lib/util.c:show_msg(474) size=47 smb_com=0x2f smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=51201 smb_tid=1 smb_pid=65279 smb_uid=100 smb_mid=2240 smt_wct=6 smb_vwv[ 0]= 255 (0xFF) smb_vwv[ 1]= 0 (0x0) smb_vwv[ 2]= 336 (0x150) smb_vwv[ 3]= 0 (0x0) smb_vwv[ 4]= 0 (0x0) smb_vwv[ 5]= 0 (0x0) smb_bcc=0 [2005/05/04 18:25:52, 6] lib/util_sock.c:write_socket(449) write_socket(25,51) [2005/05/04 18:25:52, 6] lib/util_sock.c:write_socket(452) write_socket(25,51) wrote 51 [2005/05/04 18:25:52, 10] lib/util_sock.c:read_smb_length_return_keepalive(505) got smb length of 59 [2005/05/04 18:25:52, 6] smbd/process.c:process_smb(1090) got message type 0x0 of len 0x3b [2005/05/04 18:25:52, 3] smbd/process.c:process_smb(1091) Transaction 36 of length 63 [2005/05/04 18:25:52, 5] lib/util.c:show_msg(464) [2005/05/04 18:25:52, 5] lib/util.c:show_msg(474) size=59 smb_com=0x2e smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=24 smb_flg2=51207 smb_tid=1 smb_pid=65279 smb_uid=100 smb_mid=2304 smt_wct=12 smb_vwv[ 0]= 255 (0xFF) smb_vwv[ 1]=57054 (0xDEDE) smb_vwv[ 2]=30383 (0x76AF) smb_vwv[ 3]= 0 (0x0) smb_vwv[ 4]= 0 (0x0) smb_vwv[ 5]= 1024 (0x400) smb_vwv[ 6]= 1024 (0x400) smb_vwv[ 7]=65535 (0xFFFF) smb_vwv[ 8]=65535 (0xFFFF) smb_vwv[ 9]= 1024 (0x400) smb_vwv[10]= 0 (0x0) smb_vwv[11]= 0 (0x0) smb_bcc=0 [2005/05/04 18:25:52, 3] smbd/process.c:switch_message(886) switch message SMBreadX (pid 16700) conn 0x84047b0 [2005/05/04 18:25:52, 4] smbd/uid.c:change_to_user(194) change_to_user: Skipping user change - already user [2005/05/04 18:25:52, 4] rpc_server/srv_pipe_hnd.c:get_rpc_pipe(1168) search for pipe pnum=76af [2005/05/04 18:25:52, 5] rpc_server/srv_pipe_hnd.c:get_rpc_pipe(1172) pipe name NETLOGON pnum=76af (pipes_open=2) [2005/05/04 18:25:52, 5] rpc_server/srv_pipe_hnd.c:get_rpc_pipe(1172) pipe name NETLOGON pnum=76ad (pipes_open=2) [2005/05/04 18:25:52, 6] rpc_server/srv_pipe_hnd.c:read_from_pipe(909) read_from_pipe: 76af name: NETLOGON len: 1024 [2005/05/04 18:25:52, 10] rpc_server/srv_pipe_hnd.c:read_from_internal_pipe(982) read_from_pipe: NETLOGON: fault_state = 0 : data_sent_length = 0, prs_offset(&p->out_data.rdata) = 540. [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_debug(82) 000000 smb_io_rpc_hdr hdr [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0000 major : 05 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0001 minor : 00 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0002 pkt_type : 02 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0003 flags : 03 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0004 pack_type0: 10 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0005 pack_type1: 00 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0006 pack_type2: 00 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0007 pack_type3: 00 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint16(613) 0008 frag_len : 025c [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint16(613) 000a auth_len : 0020 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint32(642) 000c call_id : 00000004 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_debug(82) 000010 smb_io_rpc_hdr_resp resp [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint32(642) 0010 alloc_hint: 0000021c [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint16(613) 0014 context_id: 0000 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0016 cancel_ct : 00 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0017 reserved : 00 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_debug(82) 000234 smb_io_rpc_hdr_auth hdr_auth [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0234 auth_type : 44 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0235 auth_level : 06 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0236 padding : 00 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8(584) 0237 reserved : 00 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint32(642) 0238 auth_context : 00000001 [2005/05/04 18:25:52, 10] rpc_parse/parse_prs.c:netsec_encode(1481) SCHANNEL: netsec_encode seq_num=1 data_len=540 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_debug(82) 00023c smb_io_rpc_auth_netsec_chk [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8s(729) 023c sig : 77 00 7a 00 ff ff 00 00 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8s(729) 0244 seq_num: 4d 5a 6c e8 31 ac d6 f1 [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8s(729) 024c packet_digest: 7e e2 85 95 ec f7 d2 dd [2005/05/04 18:25:52, 5] rpc_parse/parse_prs.c:prs_uint8s(729) 0254 confounder: a4 ec 0d e1 47 2a 9c a2 [2005/05/04 18:25:52, 3] smbd/pipes.c:reply_pipe_read_and_X(242) readX-IPC pnum=76af min=1024 max=1024 nread=604 [2005/05/04 18:25:52, 5] lib/util.c:show_msg(464) [2005/05/04 18:25:52, 5] lib/util.c:show_msg(474) size=663 smb_com=0x2e smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=51201 smb_tid=1 smb_pid=65279 smb_uid=100 smb_mid=2304 smt_wct=12 smb_vwv[ 0]= 255 (0xFF) smb_vwv[ 1]= 0 (0x0) smb_vwv[ 2]= 0 (0x0) smb_vwv[ 3]= 0 (0x0) smb_vwv[ 4]= 0 (0x0) smb_vwv[ 5]= 604 (0x25C) smb_vwv[ 6]= 59 (0x3B) smb_vwv[ 7]= 0 (0x0) smb_vwv[ 8]= 0 (0x0) smb_vwv[ 9]= 0 (0x0) smb_vwv[10]= 0 (0x0) smb_vwv[11]= 0 (0x0) smb_bcc=604 [2005/05/04 18:25:52, 10] lib/util.c:dump_data(1995) [000] 05 00 02 03 10 00 00 00 5C 02 20 00 04 00 00 00 ........ \. ..... [010] 1C 02 00 00 00 00 00 00 7A 32 E3 2E 32 40 25 1F ........ z2..2@%. [020] 6E CA 57 83 FB 2D 18 D1 B1 AA 8A 8C 33 EE 58 7E n.W..-.. ....3.X~ [030] CF 7B 16 03 FF E8 58 9C 24 C9 9D 1F 6E E7 EC 71 .{....X. $...n..q [040] 39 C8 EF 81 1D C8 E6 C3 35 5A 08 F5 31 34 ED 41 9....... 5Z..14.A [050] AA 9E C6 20 8B 05 F5 73 4E 69 39 3D AC D8 E2 6D ... ...s Ni9=...m [060] 28 CE 14 EE 67 83 24 99 2B A2 34 A5 D6 20 FE 9E (...g.$. +.4.. .. [070] A6 F0 B3 8B BD 96 5C CF 9B C3 B5 DE 53 82 5C 24 ......\. ....S.\$ [080] D2 EA 98 A6 5F 79 02 87 AC 29 A7 1E 06 2D CF 65 ...._y.. .)...-.e [090] B0 81 36 A1 83 D3 18 C6 FC 89 3B DB 51 5B 12 DA ..6..... ..;.Q[.. [0A0] 27 0C AD A6 19 44 EA 40 4B B4 19 82 23 D4 3D 27 '....D.@ K...#.=' [0B0] 26 8E E7 E4 EB A7 82 A0 D7 52 9C E2 D7 A3 2F 87 &....... .R..../. [0C0] 0D 35 0A 3A 34 B7 75 75 E2 C0 73 31 58 FF FD 82 .5.:4.uu ..s1X... [0D0] 36 58 5C 6B 3C 67 5D 3A B3 52 9E 8A E3 9D EC 17 6X\k<g]: .R...... [0E0] 54 A3 20 1E F2 7A A9 78 D2 CF FF 50 36 6D 6F 5A T. ..z.x ...P6moZ [0F0] 8B BA 7A 50 67 D1 97 76 14 FD 0E E7 80 88 8B 66 ..zPg..v .......f [100] 30 78 22 3F 20 C2 98 BC 4A 80 D7 0C F9 47 6E C0 0x"? ... J....Gn. [110] 33 5F CC 35 7D C3 B4 3E 7F B6 18 D2 24 BC 94 B6 3_.5}..> ....$... [120] CD 28 43 8D AB 67 BC 9A 1B 21 85 99 38 CC A9 A6 .(C..g.. .!..8... [130] 06 E8 C2 CA 3D 2C 20 E3 66 FD 35 2D 78 ED 07 AB ....=, . f.5-x... [140] 60 ED A4 F9 26 C3 BF 92 B7 9C 5A CE D0 3E 5A D2 `...&... ..Z..>Z. [150] 4D A7 EA 38 D1 5B 8F 71 52 4C 72 A0 3E 42 44 26 M..8.[.q RLr.>BD& [160] EC 6A 4A B6 AF B8 7A 3E 54 5B 73 1F DC EE 38 B6 .jJ...z> T[s...8. [170] 6F B2 B6 E5 CE B1 4D 12 4B 52 B2 89 A2 75 65 1D o.....M. KR...ue. [180] B2 DC 64 22 02 22 91 DD 37 58 8C AC 4C 16 7D EC ..d".".. 7X..L.}. [190] C7 DF C4 91 3D 73 18 8C B1 AC BF 9F 4B 45 6A B2 ....=s.. ....KEj. [1A0] 9D 7A 0A 07 7C D8 E9 E8 2A A5 30 C8 45 4A 7A 6C .z..|... *.0.EJzl [1B0] 73 3D 47 AB 33 7B 71 70 EA BB 23 B5 FF E2 11 DC s=G.3{qp ..#..... [1C0] 71 7D F2 61 13 B8 4C E3 34 B1 33 50 7B FD A8 59 q}.a..L. 4.3P{..Y [1D0] 94 23 FE A5 97 AD 07 30 35 B9 AE 46 9C 68 14 DD .#.....0 5..F.h.. [1E0] 77 F0 02 C9 92 D5 19 FA FF FB 39 0D 0C 42 EE AC w....... ..9..B.. [1F0] 78 6C F3 41 6B 0E 9B 1C 5A 40 06 07 EA A6 2D E2 xl.Ak... Z@....-. [2005/05/04 18:25:52, 6] lib/util_sock.c:write_socket(449) write_socket(25,667) [2005/05/04 18:25:52, 6] lib/util_sock.c:write_socket(452) write_socket(25,667) wrote 667 [2005/05/04 18:26:04, 10] lib/util_sock.c:read_smb_length_return_keepalive(505) got smb length of 39 [2005/05/04 18:26:04, 6] smbd/process.c:process_smb(1090) got message type 0x0 of len 0x27 [2005/05/04 18:26:04, 3] smbd/process.c:process_smb(1091) Transaction 37 of length 43 [2005/05/04 18:26:04, 5] lib/util.c:show_msg(464) [2005/05/04 18:26:04, 5] lib/util.c:show_msg(474) size=39 smb_com=0x74 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=24 smb_flg2=51207 smb_tid=0 smb_pid=65279 smb_uid=101 smb_mid=2368 smt_wct=2 smb_vwv[ 0]= 255 (0xFF) smb_vwv[ 1]= 0 (0x0) smb_bcc=0 [2005/05/04 18:26:04, 3] smbd/process.c:switch_message(886) switch message SMBulogoffX (pid 16700) conn 0x0 [2005/05/04 18:26:04, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2005/05/04 18:26:04, 5] auth/auth_util.c:debug_nt_user_token(485) NT user token: (NULL) [2005/05/04 18:26:04, 5] auth/auth_util.c:debug_unix_user_token(506) UNIX token of user 0 Primary group is 0 and contains 0 supplementary groups [2005/05/04 18:26:04, 5] smbd/uid.c:change_to_root_user(296) change_to_root_user: now uid=(0,0) gid=(0,0) [2005/05/04 18:26:04, 5] auth/auth_util.c:free_server_info(1406) attempting to free (and zero) a server_info structure [2005/05/04 18:26:04, 3] smbd/reply.c:reply_ulogoffX(1264) ulogoffX vuid=101 [2005/05/04 18:26:04, 5] lib/util.c:show_msg(464) [2005/05/04 18:26:04, 5] lib/util.c:show_msg(474) size=39 smb_com=0x74 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=51201 smb_tid=0 smb_pid=65279 smb_uid=101 smb_mid=2368 smt_wct=2 smb_vwv[ 0]= 255 (0xFF) smb_vwv[ 1]= 0 (0x0) smb_bcc=0 [2005/05/04 18:26:04, 6] lib/util_sock.c:write_socket(449) write_socket(25,43) [2005/05/04 18:26:04, 6] lib/util_sock.c:write_socket(452) write_socket(25,43) wrote 43 [2005/05/04 18:26:04, 10] lib/util_sock.c:read_smb_length_return_keepalive(505) got smb length of 35 [2005/05/04 18:26:04, 6] smbd/process.c:process_smb(1090) got message type 0x0 of len 0x23 [2005/05/04 18:26:04, 3] smbd/process.c:process_smb(1091) Transaction 38 of length 39 [2005/05/04 18:26:04, 5] lib/util.c:show_msg(464) [2005/05/04 18:26:04, 5] lib/util.c:show_msg(474) size=35 smb_com=0x71 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=24 smb_flg2=51207 smb_tid=2 smb_pid=65279 smb_uid=101 smb_mid=2432 smt_wct=0 smb_bcc=0 [2005/05/04 18:26:04, 3] smbd/process.c:switch_message(886) switch message SMBtdis (pid 16700) conn 0x840b348 [2005/05/04 18:26:04, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2005/05/04 18:26:04, 5] auth/auth_util.c:debug_nt_user_token(485) NT user token: (NULL) [2005/05/04 18:26:04, 5] auth/auth_util.c:debug_unix_user_token(506) UNIX token of user 0 Primary group is 0 and contains 0 supplementary groups [2005/05/04 18:26:04, 5] smbd/uid.c:change_to_root_user(296) change_to_root_user: now uid=(0,0) gid=(0,0) [2005/05/04 18:26:04, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2005/05/04 18:26:04, 5] auth/auth_util.c:debug_nt_user_token(485) NT user token: (NULL) [2005/05/04 18:26:04, 5] auth/auth_util.c:debug_unix_user_token(506) UNIX token of user 0 Primary group is 0 and contains 0 supplementary groups [2005/05/04 18:26:04, 5] smbd/uid.c:change_to_root_user(296) change_to_root_user: now uid=(0,0) gid=(0,0) [2005/05/04 18:26:04, 3] smbd/service.c:close_cnum(830) tepala-win (10.100.4.28) closed connection to service IPC$ [2005/05/04 18:26:04, 3] smbd/connection.c:yield_connection(69) Yielding connection to IPC$ [2005/05/04 18:26:04, 4] smbd/vfs.c:vfs_ChDir(660) vfs_ChDir to / [2005/05/04 18:26:04, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2005/05/04 18:26:04, 5] auth/auth_util.c:debug_nt_user_token(485) NT user token: (NULL) [2005/05/04 18:26:04, 5] auth/auth_util.c:debug_unix_user_token(506) UNIX token of user 0 Primary group is 0 and contains 0 supplementary groups [2005/05/04 18:26:04, 5] smbd/uid.c:change_to_root_user(296) change_to_root_user: now uid=(0,0) gid=(0,0) [2005/05/04 18:26:04, 5] lib/util.c:show_msg(464) [2005/05/04 18:26:04, 5] lib/util.c:show_msg(474) size=35 smb_com=0x71 smb_rcls=0 smb_reh=0 smb_err=0 smb_flg=136 smb_flg2=51201 smb_tid=2 smb_pid=65279 smb_uid=101 smb_mid=2432 smt_wct=0 smb_bcc=0 [2005/05/04 18:26:04, 6] lib/util_sock.c:write_socket(449) write_socket(25,39) [2005/05/04 18:26:04, 6] lib/util_sock.c:write_socket(452) write_socket(25,39) wrote 39 -- Laradji nacer <n.laradji@ovea.com> Ovea SARL Tel : 04 67 67 00 00 35 Port: 06 10 59 68 83 http://www.ovea.com Vos solutions informatiques 1024D/DFCF1726 : 33A5 7162 4370 9C30 E22C 0721 DBA7 CBEE DFCF 1726