thr3ads.net - samba - [Samba] Mounting Shares from a Windows Server 2003 DC [Nov 2003]

If this information is useful, please help other people find it:
Share via:

Alex Ackerman

2003-Nov-10 09:26 UTC

[Samba] Mounting Shares from a Windows Server 2003 DC

I know this question has been asked several times, and I appoligize for
this being as long as it is, but I'm hoping someone may have it figured
out by now.  Here is the situation: I can mount a share from my Windows
XP machine (RA), and from another Windows Server 2003 machine (MAAT). 
But not from my Windows Server 2003 domain controller (BASTET).  I am
running Samba 3.0.0 (standard RPM build) on a RedHat Linux 9 machine.  I
have also tested this on a Fedora Core 1 machine.  There is no firewall
in either place to stop traffic from flowing.  Here is my relavent
configuration and logs:

Redhat 9 (seth):
samba-3.0.0-2
krb5-workstation-1.2.7-14
krb5-libs-1.2.7-14
krb5-devel-1.2.7-14
pam_krb5-1.60-1
openldap-2.0.27-8
openldap-clients-2.0.27-8
openldap-servers-2.0.27-8
openldap-devel-2.0.27-8
cyrus-sasl-2.1.10-4
cyrus-sasl-plain-2.1.10-4
cyrus-sasl-md5-2.1.10-4
cyrus-sasl-gssapi-2.1.10-4
cyrus-sasl-devel-2.1.10-4

Fedora Core 1 (magus):
samba-3.0.0-15
krb5-workstation-1.3.1-6
krb5-libs-1.3.1-6
krb5-devel-1.3.1-6
pam_krb5-2.0.4-1
openldap-2.1.22-8
openldap-devel-2.1.22-8
cyrus-sasl-2.1.15-6
cyrus-sasl-md5-2.1.15-6
cyrus-sasl-devel-2.1.15-6
cyrus-sasl-plain-2.1.15-6

seth /etc/samba/smb.conf:
[global]
   netbios name = SETH
   workgroup = DARKHONOR
   server string = RedHat Samba Server
   log file = /var/log/samba/log.%m
   log level = 10
   max log size = 50
   realm = DARKHONOR.NET
   security = user
   password server = bastet.darkhonor.net 
   encrypt passwords = yes
   client signing = yes
   client use spnego = Yes
   #server signing = Yes
   #winbind separator = +
   #idmap uid = 10000-20000
   #winbind gid = 10000-20000
   #winbind enum users = yes
   #winbind enum groups = yes
   #winbind use default domain = No
   #template homedir = /home/winnt/%D/%U
   #template shell = /bin/bash2
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
   local master = no
   domain master = no 
   preferred master = no 
   dns proxy = no 

magus /etc/samba/smb.conf
[global]
   workgroup = DARKHONOR 
   server string = Samba Server
   log file = /var/log/samba/%m.log
   log level = 10
   max log size = 50
   security = ads
   realm = DARKHONOR.NET
   password server = bastet.darkhonor.net
   client use spnego = yes
   client signing = yes
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
   local master = no
   domain master = no
   preferred master = no
   domain logons = no
   dns proxy = no 

Result from "smbclient -L bastet -U <admin user>" from magus:
	Sharename      Type      Comment
	---------      ----      -------
	IPC$           IPC       Remote IPC
	NETLOGON       Disk      Logon server share 
	CertEnroll     Disk      Certificate Services share
	ADMIN$         Disk      Remote Admin
	SYSVOL         Disk      Logon server share 
	wwwroot$       Disk      
	C$             Disk      Default share
	CS555          Disk      

	Server               Comment
	---------            -------
	BASTET               Domain Controller
	ISIS                 Samba 3.0.0
	MAAT                 
	MAGUS                Samba Server

	Workgroup            Master
	---------            -------
	DARKHONOR            BASTET

Result from "smbmount //MAAT/Shared /iis -o username=<admin
user>" from
magus:
INFO: Current debug levels:
  all: True/10
  tdb: False/0
  printdrivers: False/0
  lanman: False/0
  smb: False/0
  rpc_parse: False/0
  rpc_srv: False/0
  rpc_cli: False/0
  passdb: False/0
  sam: False/0
  auth: False/0
  winbind: False/0
  vfs: False/0
  idmap: False/0
doing parameter max log size = 50
doing parameter security = ads
doing parameter realm = DARKHONOR.NET
doing parameter password server = bastet.darkhonor.net
doing parameter client use spnego = yes
doing parameter client signing = yes
doing parameter socket options = TCP_NODELAY SO_RCVBUF=8192
SO_SNDBUF=8192
doing parameter local master = no
doing parameter domain master = no
doing parameter preferred master = no
doing parameter domain logons = no
doing parameter dns proxy = no
pm_process() returned Yes
lp_servicenumber: couldn't find homes
set_server_role: role = ROLE_DOMAIN_MEMBER
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
opts: username=<admin user>
mount.smbfs started (version 3.0.0-15)
added interface ip=192.168.42.49 bcast=192.168.42.255
nmask=255.255.255.0
internal_resolve_name: looking up MAAT#20
Opening cache file at /var/cache/samba/gencache.tdb
Returning valid cache entry: key = NBT/MAAT#20, value 192.168.42.201:0, timeout
= Mon Nov 10 09:15:11 2003

name MAAT#20 found.
Connecting to 192.168.42.201 at port 445
socket option SO_KEEPALIVE = 0
socket option SO_REUSEADDR = 0
socket option SO_BROADCAST = 0
socket option TCP_NODELAY = 1
socket option IPTOS_LOWDELAY = 0
socket option IPTOS_THROUGHPUT = 0
socket option SO_SNDBUF = 16384
socket option SO_RCVBUF = 16384
socket option SO_SNDLOWAT = 1
socket option SO_RCVLOWAT = 1
socket option SO_SNDTIMEO = 0
socket option SO_RCVTIMEO = 0
3059: session request ok
write_socket(4,183)
write_socket(4,183) wrote 183
got smb length of 107
size=107
smb_com=0x72
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=49153
smb_tid=0
smb_pid=3059
smb_uid=0
smb_mid=1
smt_wct=17
smb_vwv[ 0]=    8 (0x8)
smb_vwv[ 1]=12803 (0x3203)
smb_vwv[ 2]=  256 (0x100)
smb_vwv[ 3]= 1024 (0x400)
smb_vwv[ 4]=   17 (0x11)
smb_vwv[ 5]=    0 (0x0)
smb_vwv[ 6]=  256 (0x100)
smb_vwv[ 7]=    0 (0x0)
smb_vwv[ 8]=    0 (0x0)
smb_vwv[ 9]=64768 (0xFD00)
smb_vwv[10]=  499 (0x1F3)
smb_vwv[11]=61440 (0xF000)
smb_vwv[12]=38332 (0x95BC)
smb_vwv[13]=27342 (0x6ACE)
smb_vwv[14]=50087 (0xC3A7)
smb_vwv[15]=    1 (0x1)
smb_vwv[16]= 2048 (0x800)
smb_bcc=38
[000] 6C 79 80 69 EF 63 25 CB  44 00 41 00 52 00 4B 00  ly.i.c%.
D.A.R.K.
[010] 48 00 4F 00 4E 00 4F 00  52 00 00 00 4D 00 41 00  H.O.N.O.
R...M.A.
[020] 41 00 54 00 00 00                                 A.T... 
size=107
smb_com=0x72
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=49153
smb_tid=0
smb_pid=3059
smb_uid=0
smb_mid=1
smt_wct=17
smb_vwv[ 0]=    8 (0x8)
smb_vwv[ 1]=12803 (0x3203)
smb_vwv[ 2]=  256 (0x100)
smb_vwv[ 3]= 1024 (0x400)
smb_vwv[ 4]=   17 (0x11)
smb_vwv[ 5]=    0 (0x0)
smb_vwv[ 6]=  256 (0x100)
smb_vwv[ 7]=    0 (0x0)
smb_vwv[ 8]=    0 (0x0)
smb_vwv[ 9]=64768 (0xFD00)
smb_vwv[10]=  499 (0x1F3)
smb_vwv[11]=61440 (0xF000)
smb_vwv[12]=38332 (0x95BC)
smb_vwv[13]=27342 (0x6ACE)
smb_vwv[14]=50087 (0xC3A7)
smb_vwv[15]=    1 (0x1)
smb_vwv[16]= 2048 (0x800)
smb_bcc=38
[000] 6C 79 80 69 EF 63 25 CB  44 00 41 00 52 00 4B 00  ly.i.c%.
D.A.R.K.
[010] 48 00 4F 00 4E 00 4F 00  52 00 00 00 4D 00 41 00  H.O.N.O.
R...M.A.
[020] 41 00 54 00 00 00                                 A.T... 
Serverzone is 0
write_socket(4,148)
write_socket(4,148) wrote 148
got smb length of 100
size=100
smb_com=0x73
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=1
smb_tid=0
smb_pid=3059
smb_uid=2051
smb_mid=2
smt_wct=3
smb_vwv[ 0]=  255 (0xFF)
smb_vwv[ 1]=  100 (0x64)
smb_vwv[ 2]=    0 (0x0)
smb_bcc=59
[000] 57 69 6E 64 6F 77 73 20  53 65 72 76 65 72 20 32  Windows  Server
2
[010] 30 30 33 20 33 37 39 30  00 57 69 6E 64 6F 77 73  003 3790
.Windows
[020] 20 53 65 72 76 65 72 20  32 30 30 33 20 35 2E 32   Server  2003
5.2
[030] 00 44 41 52 4B 48 4F 4E  4F 52 00                 .DARKHON OR.
3059: session setup ok
write_socket(4,68)
write_socket(4,68) wrote 68
got smb length of 49
size=49
smb_com=0x75
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=1
smb_tid=2051
smb_pid=3059
smb_uid=2051
smb_mid=3
smt_wct=3
smb_vwv[ 0]=  255 (0xFF)
smb_vwv[ 1]=   49 (0x31)
smb_vwv[ 2]=    1 (0x1)
smb_bcc=8
[000] 41 3A 00 4E 54 46 53 00                           A:.NTFS. 
3059: tconx ok

Result from "smbmount //bastet/CS555 /iis -o username=<admin
user>" from
magus:
INFO: Current debug levels:
  all: True/10
  tdb: False/0
  printdrivers: False/0
  lanman: False/0
  smb: False/0
  rpc_parse: False/0
  rpc_srv: False/0
  rpc_cli: False/0
  passdb: False/0
  sam: False/0
  auth: False/0
  winbind: False/0
  vfs: False/0
  idmap: False/0
doing parameter max log size = 50
doing parameter security = ads
doing parameter realm = DARKHONOR.NET
doing parameter password server = bastet.darkhonor.net
doing parameter client use spnego = yes
doing parameter client signing = yes
doing parameter socket options = TCP_NODELAY SO_RCVBUF=8192
SO_SNDBUF=8192
doing parameter local master = no
doing parameter domain master = no
doing parameter preferred master = no
doing parameter domain logons = no
doing parameter dns proxy = no
pm_process() returned Yes
lp_servicenumber: couldn't find homes
set_server_role: role = ROLE_DOMAIN_MEMBER
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
opts: username=<admin user>
mount.smbfs started (version 3.0.0-15)
added interface ip=192.168.42.49 bcast=192.168.42.255
nmask=255.255.255.0
internal_resolve_name: looking up bastet#20
Opening cache file at /var/cache/samba/gencache.tdb
Returning valid cache entry: key = NBT/BASTET#20, value 192.168.42.200:0,
timeout = Mon Nov 10 09:22:01 2003

name bastet#20 found.
Connecting to 192.168.42.200 at port 445
socket option SO_KEEPALIVE = 0
socket option SO_REUSEADDR = 0
socket option SO_BROADCAST = 0
socket option TCP_NODELAY = 1
socket option IPTOS_LOWDELAY = 0
socket option IPTOS_THROUGHPUT = 0
socket option SO_SNDBUF = 16384
socket option SO_RCVBUF = 16384
socket option SO_SNDLOWAT = 1
socket option SO_RCVLOWAT = 1
socket option SO_SNDTIMEO = 0
socket option SO_RCVTIMEO = 0
3042: session request ok
write_socket(4,183)
write_socket(4,183) wrote 183
got smb length of 111
size=111
smb_com=0x72
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=49153
smb_tid=0
smb_pid=3042
smb_uid=0
smb_mid=1
smt_wct=17
smb_vwv[ 0]=    8 (0x8)
smb_vwv[ 1]=12815 (0x320F)
smb_vwv[ 2]=  256 (0x100)
smb_vwv[ 3]= 1024 (0x400)
smb_vwv[ 4]=   17 (0x11)
smb_vwv[ 5]=    0 (0x0)
smb_vwv[ 6]=  256 (0x100)
smb_vwv[ 7]=    0 (0x0)
smb_vwv[ 8]=    0 (0x0)
smb_vwv[ 9]=64768 (0xFD00)
smb_vwv[10]=  499 (0x1F3)
smb_vwv[11]=49152 (0xC000)
smb_vwv[12]=55616 (0xD940)
smb_vwv[13]=27291 (0x6A9B)
smb_vwv[14]=50087 (0xC3A7)
smb_vwv[15]=    1 (0x1)
smb_vwv[16]= 2048 (0x800)
smb_bcc=42
[000] 61 08 E0 2E 1C B3 AC B5  44 00 41 00 52 00 4B 00  a.......
D.A.R.K.
[010] 48 00 4F 00 4E 00 4F 00  52 00 00 00 42 00 41 00  H.O.N.O.
R...B.A.
[020] 53 00 54 00 45 00 54 00  00 00                    S.T.E.T. ..
size=111
smb_com=0x72
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=49153
smb_tid=0
smb_pid=3042
smb_uid=0
smb_mid=1
smt_wct=17
smb_vwv[ 0]=    8 (0x8)
smb_vwv[ 1]=12815 (0x320F)
smb_vwv[ 2]=  256 (0x100)
smb_vwv[ 3]= 1024 (0x400)
smb_vwv[ 4]=   17 (0x11)
smb_vwv[ 5]=    0 (0x0)
smb_vwv[ 6]=  256 (0x100)
smb_vwv[ 7]=    0 (0x0)
smb_vwv[ 8]=    0 (0x0)
smb_vwv[ 9]=64768 (0xFD00)
smb_vwv[10]=  499 (0x1F3)
smb_vwv[11]=49152 (0xC000)
smb_vwv[12]=55616 (0xD940)
smb_vwv[13]=27291 (0x6A9B)
smb_vwv[14]=50087 (0xC3A7)
smb_vwv[15]=    1 (0x1)
smb_vwv[16]= 2048 (0x800)
smb_bcc=42
[000] 61 08 E0 2E 1C B3 AC B5  44 00 41 00 52 00 4B 00  a.......
D.A.R.K.
[010] 48 00 4F 00 4E 00 4F 00  52 00 00 00 42 00 41 00  H.O.N.O.
R...B.A.
[020] 53 00 54 00 45 00 54 00  00 00                    S.T.E.T. ..
Serverzone is 0
cli_negprot: SMB signing is mandatory and we have disabled it.
3042: protocol negotiation failed


-- 
Alex Ackerman <alex@darkhonor.com>
http://www.darkhonor.net

Andrew Bartlett

2003-Nov-10 09:53 UTC

head link

[Samba] Mounting Shares from a Windows Server 2003 DC

On Mon, 2003-11-10 at 20:26, Alex Ackerman wrote:> I know this question has been asked several times, and I appoligize for
> this being as long as it is, but I'm hoping someone may have it figured
> out by now.  Here is the situation: I can mount a share from my Windows
> XP machine (RA), and from another Windows Server 2003 machine (MAAT). 
> But not from my Windows Server 2003 domain controller (BASTET).  I am
> running Samba 3.0.0 (standard RPM build) on a RedHat Linux 9 machine.  I
> have also tested this on a Fedora Core 1 machine.  There is no firewall
> in either place to stop traffic from flowing.  Here is my relavent
> configuration and logs:
> cli_negprot: SMB signing is mandatory and we have disabled it.
> 3042: protocol negotiation failed
smbfs doesn't work with servers that enforce SMB signing.  However, the
CIFS VFS (http://www.samba.org/samba/Linux_CIFS_client.html) does, and
will allow you to make the connection.

Andrew Bartlett

-- 
Andrew Bartlett                                 abartlet@pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet@samba.org
Student Network Administrator, Hawker College   abartlet@hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url :
http://lists.samba.org/archive/samba/attachments/20031110/7bdc689f/attachment.bin

Maybe Matching Threads

Search for more seemingly similar threads

samba - Nov 2003 - Mounting Shares from a Windows Server 2003 DC

[Samba] Mounting Shares from a Windows Server 2003 DC

[Samba] Mounting Shares from a Windows Server 2003 DC

Maybe Matching Threads