samba - May 2006 - smbpasswd and /etc/samba/smbusers

Hi,

I've been Googling around trying to found why I can't make SAMBA
(concretely smbpasswd and pdbedit) make good use of the information
held in the file /etc/samba/smbusers. I have done a clean install of
Red Hat Enterprise Linux ES 4.1 Update 3 (both x86_64 and IA32) and
Fedora Core 5. In all cases, running the following command fails:

# smbpasswd -a Administrator
New SMB password:
Retype new SMB password:
Failed to initialise SAM_ACCOUNT for user Administrator. Does this
user exist in the UNIX password database ?
Failed to modify password entry for user Administrator

Even though /etc/samba/smbusers look like this:

root = Administrator admin
guest = nobody


Running:

# smbpasswd -a root

Works fine, however.

I don't understand why both smbpasswd and pdbedit ignore the user
mapping defined in /etc/samba/smbusers.

Any ideas? Am I wrong?
Thanks!

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Felipe Alfaro Solana wrote:
> Hi,
> 
> I've been Googling around trying to found why I can't make SAMBA
> (concretely smbpasswd and pdbedit) make good use of the information
> held in the file /etc/samba/smbusers. I have done a clean install of
> Red Hat Enterprise Linux ES 4.1 Update 3 (both x86_64 and IA32) and
> Fedora Core 5. In all cases, running the following command fails:
> 
> # smbpasswd -a Administrator
> New SMB password:
> Retype new SMB password:
> Failed to initialise SAM_ACCOUNT for user Administrator. Does this
> user exist in the UNIX password database ?
> Failed to modify password entry for user Administrator
> 
> Even though /etc/samba/smbusers look like this:
> 
> root = Administrator admin
You add root and not administrator.  This is by design.
When in security = user, think of the username map as
simply an alias file used for authentication requests.
smbpasswd and pdbedit work below that layer.




cheers, jerry
====================================================================Samba       
------- http://www.samba.org
Centeris                         -----------  http://www.centeris.com
"What man is a man who does not make the world better?"      --Balian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org

iD8DBQFEajOgIR7qMdg1EfYRAhm/AJ44cwoQlFfpjQEfCv11OKFkDE2TjQCg08U9
BVhWLnVshEaIzsPImaG6du0=plQc
-----END PGP SIGNATURE-----

> You add root and not administrator.  This is by design.
> When in security = user, think of the username map as
> simply an alias file used for authentication requests.
> smbpasswd and pdbedit work below that layer.
You were completely right. I was screwed. Adding "root" via smbpasswd
allows me to authenticate using "smbclient" as
"Administrator".

Thanks a lot, Jerry.