samba.x.eliezer613 at spamgourmet.com
2017-Aug-25 19:54 UTC
[Samba] Cannot login to Samba server remotely
Hi, can't seem to login to Samba Server using notebook. OS is FreeBSD 10.3. Samba Version is 4.6.6 Connect to the remote Samba server using L2TP/IPSec connection. When trying to login it's not accepting the correct credentials. When ssh'ing to the server can login without any issue: # smbclient -Uusername //server/share Enter SERVERNAME\username's password: Domain=[DOMAINNAME] OS=[] Server=[] smb: \> Do find it also strange the OS= and Server= are blank. Samba 3.6 did not do this. When trying to login remotely from windows 7 notebook smbd.log doesn't appear to show errors. I will show them below. The smb4.conf has the following (tried changing some of the options to get this working): [global] workgroup = DOMAINNAME server string = DOMAIN NAME FreeBSD File Server on %h netbios name = MACHINENAME interfaces = em0, lo0 hosts allow = 192.168.251.0/24 192.168.252.0/24 127.0.0.1 # passdb backend = smbpasswd passdb backend = tdbsam # server role = standalone server # username map = /usr/local/etc/samba4/username.map log level = 10 log file = /var/log/samba4/%m.log max log size = 50 # socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 # socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=131072 SO_SNDBUF=131072 socket options = TCP_NODELAY # disable spoolss = Yes # read raw = yes # write raw = yes # use sendfile = true # strict locking = No security = user logon script = netlogin.cmd logon path = \\%L\Profiles\%U logon drive = Z: domain logons = Yes os level = 33 preferred master = Yes domain master = Yes dns proxy = No wins support = Yes [bigshare] comment = Shared Folders path = /staff/docs valid users = user1, user2, user3, user4 admin users = user1, user2, user4, user4 read only = No create mask = 2664 force create mode = 2664 directory mask = 2775 force directory mode = 2775 Excerpt from login attempt (it just seems to repeat what is below, but I don't see any error of bad user/pass): [2017/08/25 15:44:12.252892, 10, pid=24534, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm_ref.c:157(msg_dgm_ref_destructor) msg_dgm_ref_destructor: refs=0x0 [2017/08/25 15:44:12.254793, 10, pid=24534, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm_ref.c:79(messaging_dgm_ref) messaging_dgm_ref: messaging_dgm_init returned No error: 0 [2017/08/25 15:44:12.254849, 10, pid=24534, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm_ref.c:108(messaging_dgm_ref) messaging_dgm_ref: unique = 3680032511836693457 [2017/08/25 15:44:12.255092, 10, pid=24534, effective(0, 0), real(0, 0)] ../source3/smbd/smbXsrv_client.c:533(smbXsrv_client_create) [2017/08/25 15:44:12.255112, 10, pid=24534, effective(0, 0), real(0, 0)] ../source3/smbd/smbXsrv_client.c:541(smbXsrv_client_create) smbXsrv_client_create: client_guid[00000000-0000-0000-0000-000000000000] stored [2017/08/25 15:44:12.255173, 1, pid=24534, effective(0, 0), real(0, 0)] ../librpc/ndr/ndr.c:413(ndr_print_debug) &client_blob: struct smbXsrv_clientB version : SMBXSRV_VERSION_0 (0) reserved : 0x00000000 (0) info : union smbXsrv_clientU(case 0) info0 : * info0: struct smbXsrv_client table : * ev_ctx : * msg_ctx : * global : * global: struct smbXsrv_client_global0 db_rec : NULL server_id: struct server_id pid : 0x0000000000005fd6 (24534) task_id : 0x00000000 (0) vnn : 0xffffffff (4294967295) unique_id : 0x33121a1265ea23d1 (3680032511836693457) local_address : NULL remote_address : NULL remote_name : NULL initial_connect_time : Fri Aug 25 15:44:12 2017 EDT client_guid : 00000000-0000-0000-0000-000000000000 stored : 0x00 (0) sconn : NULL session_table : NULL last_session_id : 0x0000000000000000 (0) tcon_table : NULL open_table : NULL connections : NULL server_multi_channel_enabled: 0x00 (0) [2017/08/25 15:44:12.256093, 5, pid=24534, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap.c:159(dbwrap_check_lock_order) check lock order 2 for /var/db/samba4/serverid.tdb [2017/08/25 15:44:12.256134, 10, pid=24534, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap.c:114(debug_lock_order) lock order: 1:<none> 2:/var/db/samba4/serverid.tdb 3:<none> [2017/08/25 15:44:12.256169, 10, pid=24534, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap_tdb.c:59(db_tdb_log_key) Locking key D65F000000000000FFFF [2017/08/25 15:44:12.256204, 10, pid=24534, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap_tdb.c:143(db_tdb_fetch_locked_internal) Allocated locked data 0x0x8124454a0 [2017/08/25 15:44:12.256253, 10, pid=24534, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap_tdb.c:59(db_tdb_log_key) Unlocking key D65F000000000000FFFF [2017/08/25 15:44:12.256290, 5, pid=24534, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap.c:127(dbwrap_lock_order_state_destructor) release lock order 2 for /var/db/samba4/serverid.tdb [2017/08/25 15:44:12.256318, 10, pid=24534, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap.c:114(debug_lock_order) lock order: 1:<none> 2:<none> 3:<none> [2017/08/25 15:44:12.256376, 5, pid=24534, effective(0, 0), real(0, 0)] ../lib/util/util_net.c:1057(print_socket_options) Socket options: SO_KEEPALIVE = 8 SO_REUSEADDR = 4 SO_BROADCAST = 0 TCP_NODELAY = 4 TCP_KEEPCNT = 0 TCP_KEEPIDLE = 0 TCP_KEEPINTVL = 0 IPTOS_LOWDELAY = 0 IPTOS_THROUGHPUT = 0 SO_REUSEPORT = 512 SO_SNDBUF = 34000 SO_RCVBUF = 66640 SO_SNDLOWAT = 2048 SO_RCVLOWAT = 1 SO_SNDTIMEO = 0 SO_RCVTIMEO = 0 [2017/08/25 15:44:12.256761, 5, pid=24534, effective(0, 0), real(0, 0)] ../lib/util/util_net.c:1057(print_socket_options) Socket options: SO_KEEPALIVE = 8 SO_REUSEADDR = 4 SO_BROADCAST = 0 TCP_NODELAY = 4 TCP_KEEPCNT = 0 TCP_KEEPIDLE = 0 TCP_KEEPINTVL = 0 IPTOS_LOWDELAY = 0 IPTOS_THROUGHPUT = 0 SO_REUSEPORT = 512 SO_SNDBUF = 34000 SO_RCVBUF = 66640 SO_SNDLOWAT = 2048 SO_RCVLOWAT = 1 SO_SNDTIMEO = 0 SO_RCVTIMEO = 0 [2017/08/25 15:44:12.257304, 3, pid=24534, effective(0, 0), real(0, 0)] ../lib/util/access.c:361(allow_access) Allowed connection from 192.168.252.111 (192.168.252.111) [2017/08/25 15:44:12.257335, 10, pid=24534, effective(0, 0), real(0, 0)] ../source3/smbd/process.c:3837(smbd_add_connection) Connection allowed from ipv4:192.168.252.111:64376 to ipv4:192.168.251.11:445 [2017/08/25 15:44:14.734212, 10, pid=24328, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm.c:1305(messaging_dgm_send) messaging_dgm_send: Sending message to 24331 [2017/08/25 15:44:14.809997, 10, pid=24535, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm_ref.c:157(msg_dgm_ref_destructor) msg_dgm_ref_destructor: refs=0x0 [2017/08/25 15:44:14.811766, 10, pid=24535, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm_ref.c:79(messaging_dgm_ref) messaging_dgm_ref: messaging_dgm_init returned No error: 0 [2017/08/25 15:44:14.811819, 10, pid=24535, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm_ref.c:108(messaging_dgm_ref) messaging_dgm_ref: unique = 17118956527922268966 [2017/08/25 15:44:14.812070, 10, pid=24535, effective(0, 0), real(0, 0)] ../source3/smbd/smbXsrv_client.c:533(smbXsrv_client_create) [2017/08/25 15:44:14.812090, 10, pid=24535, effective(0, 0), real(0, 0)] ../source3/smbd/smbXsrv_client.c:541(smbXsrv_client_create) smbXsrv_client_create: client_guid[00000000-0000-0000-0000-000000000000] stored [2017/08/25 15:44:14.812151, 1, pid=24535, effective(0, 0), real(0, 0)] ../librpc/ndr/ndr.c:413(ndr_print_debug) &client_blob: struct smbXsrv_clientB version : SMBXSRV_VERSION_0 (0) reserved : 0x00000000 (0) info : union smbXsrv_clientU(case 0) info0 : * info0: struct smbXsrv_client table : * ev_ctx : * msg_ctx : * global : * global: struct smbXsrv_client_global0 db_rec : NULL server_id: struct server_id pid : 0x0000000000005fd7 (24535) task_id : 0x00000000 (0) vnn : 0xffffffff (4294967295) unique_id : 0xed92c04314294b26 (-1327787545787282650) local_address : NULL remote_address : NULL remote_name : NULL initial_connect_time : Fri Aug 25 15:44:15 2017 EDT client_guid : 00000000-0000-0000-0000-000000000000 stored : 0x00 (0) sconn : NULL session_table : NULL last_session_id : 0x0000000000000000 (0) tcon_table : NULL open_table : NULL connections : NULL server_multi_channel_enabled: 0x00 (0) [2017/08/25 15:44:14.812956, 5, pid=24535, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap.c:159(dbwrap_check_lock_order) check lock order 2 for /var/db/samba4/serverid.tdb [2017/08/25 15:44:14.812997, 10, pid=24535, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap.c:114(debug_lock_order) lock order: 1:<none> 2:/var/db/samba4/serverid.tdb 3:<none> [2017/08/25 15:44:14.813041, 10, pid=24535, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap_tdb.c:59(db_tdb_log_key) Locking key D75F000000000000FFFF [2017/08/25 15:44:14.813084, 10, pid=24535, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap_tdb.c:143(db_tdb_fetch_locked_internal) Allocated locked data 0x0x8124454a0 [2017/08/25 15:44:14.813164, 10, pid=24535, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap_tdb.c:59(db_tdb_log_key) Unlocking key D75F000000000000FFFF [2017/08/25 15:44:14.813213, 5, pid=24535, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap.c:127(dbwrap_lock_order_state_destructor) release lock order 2 for /var/db/samba4/serverid.tdb [2017/08/25 15:44:14.813269, 10, pid=24535, effective(0, 0), real(0, 0)] ../lib/dbwrap/dbwrap.c:114(debug_lock_order) lock order: 1:<none> 2:<none> 3:<none> [2017/08/25 15:44:14.813373, 5, pid=24535, effective(0, 0), real(0, 0)] ../lib/util/util_net.c:1057(print_socket_options) Socket options: SO_KEEPALIVE = 8 SO_REUSEADDR = 4 SO_BROADCAST = 0 TCP_NODELAY = 4 TCP_KEEPCNT = 0 TCP_KEEPIDLE = 0 TCP_KEEPINTVL = 0 IPTOS_LOWDELAY = 0 IPTOS_THROUGHPUT = 0 SO_REUSEPORT = 512 SO_SNDBUF = 34000 SO_RCVBUF = 66640 SO_SNDLOWAT = 2048 SO_RCVLOWAT = 1 SO_SNDTIMEO = 0 SO_RCVTIMEO = 0 [2017/08/25 15:44:14.813751, 5, pid=24535, effective(0, 0), real(0, 0)] ../lib/util/util_net.c:1057(print_socket_options) Socket options: SO_KEEPALIVE = 8 SO_REUSEADDR = 4 SO_BROADCAST = 0 TCP_NODELAY = 4 TCP_KEEPCNT = 0 TCP_KEEPIDLE = 0 TCP_KEEPINTVL = 0 IPTOS_LOWDELAY = 0 IPTOS_THROUGHPUT = 0 SO_REUSEPORT = 512 SO_SNDBUF = 34000 SO_RCVBUF = 66640 SO_SNDLOWAT = 2048 SO_RCVLOWAT = 1 SO_SNDTIMEO = 0 SO_RCVTIMEO = 0 [2017/08/25 15:44:14.814301, 3, pid=24535, effective(0, 0), real(0, 0)] ../lib/util/access.c:361(allow_access) Allowed connection from 192.168.252.111 (192.168.252.111) [2017/08/25 15:44:14.814331, 10, pid=24535, effective(0, 0), real(0, 0)] ../source3/smbd/process.c:3837(smbd_add_connection) Connection allowed from ipv4:192.168.252.111:64377 to ipv4:192.168.251.11:445 [2017/08/25 15:44:17.892077, 10, pid=24328, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm.c:1305(messaging_dgm_send) messaging_dgm_send: Sending message to 24331 [2017/08/25 15:44:17.915872, 10, pid=24536, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm_ref.c:157(msg_dgm_ref_destructor) msg_dgm_ref_destructor: refs=0x0 [2017/08/25 15:44:17.917612, 10, pid=24536, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm_ref.c:79(messaging_dgm_ref) messaging_dgm_ref: messaging_dgm_init returned No error: 0 [2017/08/25 15:44:17.917667, 10, pid=24536, effective(0, 0), real(0, 0)] ../source3/lib/messages_dgm_ref.c:108(messaging_dgm_ref) messaging_dgm_ref: unique = 5291733452072574276 [2017/08/25 15:44:17.917921, 10, pid=24536, effective(0, 0), real(0, 0)] ../source3/smbd/smbXsrv_client.c:533(smbXsrv_client_create) [2017/08/25 15:44:17.917941, 10, pid=24536, effective(0, 0), real(0, 0)] ../source3/smbd/smbXsrv_client.c:541(smbXsrv_client_create) smbXsrv_client_create: client_guid[00000000-0000-0000-0000-000000000000] stored Thank you for any help with this.
On Fri, 25 Aug 2017 15:54:07 -0400 "samba.x.eliezer613--- via samba" <samba at lists.samba.org> wrote:> Hi, can't seem to login to Samba Server using notebook. OS is FreeBSD > 10.3. Samba Version is 4.6.6 > Connect to the remote Samba server using L2TP/IPSec connection. When > trying to login it's not accepting the correct credentials. > > When ssh'ing to the server can login without any issue: > > # smbclient -Uusername //server/share > Enter SERVERNAME\username's password: > Domain=[DOMAINNAME] OS=[] Server=[] > smb: \> > > Do find it also strange the OS= and Server= are blank. Samba 3.6 did > not do this. > > When trying to login remotely from windows 7 notebook smbd.log > doesn't appear to show errors. I will show them below. The smb4.conf > has the following (tried changing some of the options to get this > working): > > [global] > workgroup = DOMAINNAME > server string = DOMAIN NAME FreeBSD File Server on %h > netbios name = MACHINENAME > interfaces = em0, lo0 > hosts allow = 192.168.251.0/24 192.168.252.0/24 127.0.0.1 > # passdb backend = smbpasswd > passdb backend = tdbsam > # server role = standalone server > # username map = /usr/local/etc/samba4/username.map > log level = 10 > log file = /var/log/samba4/%m.log > max log size = 50 > # socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 > # socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=131072 > SO_SNDBUF=131072 > socket options = TCP_NODELAY > # disable spoolss = Yes > # read raw = yes > # write raw = yes > # use sendfile = true > # strict locking = No > security = user > logon script = netlogin.cmd > logon path = \\%L\Profiles\%U > logon drive = Z: > domain logons = Yes > os level = 33 > preferred master = Yes > domain master = Yes > dns proxy = No > wins support = Yes >What is this supposed to be ? a standalone server or an NT4-style PDC ? If it is the later, I would suggest you remove 'security = user'. I think you are getting hit by a change made when 4.5.0 came out, the default for 'ntlm auth' changed from 'yes' to 'no', but you should consider trying to find another connection method before adding 'ntlm auth = yes'. Rowland
samba.x.eliezer613 at spamgourmet.com
2017-Aug-25 21:38 UTC
[Samba] Cannot login to Samba server remotely of 20)
Hi Rowland, the server was just a standalone server. Not sure what 'other' type of VPN to use to connect to the router. PPTP is no longer considered secure as I am sure you are aware of. Originally this box was setup as a PDC but people there hated the login/logoff time because of user profiles being kept on server. Will add ntlm auth = yes and see if that helps. I will let you know. Thanks! On 8/25/2017 4:40 PM, Rowland Penny via samba - samba at lists.samba.org wrote:> On Fri, 25 Aug 2017 15:54:07 -0400 > "samba.x.eliezer613--- via samba" <samba at lists.samba.org> wrote: > >> Hi, can't seem to login to Samba Server using notebook. OS is FreeBSD >> 10.3. Samba Version is 4.6.6 >> Connect to the remote Samba server using L2TP/IPSec connection. When >> trying to login it's not accepting the correct credentials. >> >> When ssh'ing to the server can login without any issue: >> >> # smbclient -Uusername //server/share >> Enter SERVERNAME\username's password: >> Domain=[DOMAINNAME] OS=[] Server=[] >> smb: \> >> >> Do find it also strange the OS= and Server= are blank. Samba 3.6 did >> not do this. >> >> When trying to login remotely from windows 7 notebook smbd.log >> doesn't appear to show errors. I will show them below. The smb4.conf >> has the following (tried changing some of the options to get this >> working): >> >> [global] >> workgroup = DOMAINNAME >> server string = DOMAIN NAME FreeBSD File Server on %h >> netbios name = MACHINENAME >> interfaces = em0, lo0 >> hosts allow = 192.168.251.0/24 192.168.252.0/24 127.0.0.1 >> # passdb backend = smbpasswd >> passdb backend = tdbsam >> # server role = standalone server >> # username map = /usr/local/etc/samba4/username.map >> log level = 10 >> log file = /var/log/samba4/%m.log >> max log size = 50 >> # socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 >> # socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=131072 >> SO_SNDBUF=131072 >> socket options = TCP_NODELAY >> # disable spoolss = Yes >> # read raw = yes >> # write raw = yes >> # use sendfile = true >> # strict locking = No >> security = user >> logon script = netlogin.cmd >> logon path = \\%L\Profiles\%U >> logon drive = Z: >> domain logons = Yes >> os level = 33 >> preferred master = Yes >> domain master = Yes >> dns proxy = No >> wins support = Yes >> > What is this supposed to be ? a standalone server or an NT4-style PDC ? > If it is the later, I would suggest you remove 'security = user'. > > I think you are getting hit by a change made when 4.5.0 came out, the > default for 'ntlm auth' changed from 'yes' to 'no', but you should > consider trying to find another connection method before adding 'ntlm > auth = yes'. > > Rowland >
Seemingly Similar Threads
- Winbind error "Could not fetch our SID - did we join?"
- high cpu load with share_conflict on browsing and opening files
- two samba servers just stopped working :-(
- Primary group is 0 and contains 0 supplementary groups
- Winbind error "Could not fetch our SID - did we join?"