sun@percipia.com
2003-Dec-28 05:41 UTC
[Fwd: Re: [Samba] Samba 3.0.1 W2K Joing domain error - the user name couldnot be found]
Hi,
Thanks for your information. Now I was not able to login as domain user. I
am getting following error message.
The system cannot log you on now because domain TECHGROUP is not available.
Here is my ldap log message:-
Dec 28 00:31:08 rishi slapd[1753]: conn=93 fd=17 ACCEPT from IP=::1 1230
(IP=:: 389)
Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=0 BIND
dn="cn=Manager,dc=sfgroup,dc=com" method=128
Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=0 AUTHZ
dn="cn=Manager,dc=sfgroup,dc=com" mech=simple ssf=0
Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=0 RESULT tag=97 err=0 textDec 28
00:31:08 rishi slapd[2167]: conn=93 op=1 SRCH
base="dc=sfgroup,dc=com" scope=2
filter="(&(objectClass=sambaDomain)(sambaDomainName=TECHGROUP))"
Dec 28 00:31:08 rishi slapd[2167]: conn=93 op=1 SEARCH RESULT tag=101
err=0 nentries=1 textDec 28 00:31:08 rishi slapd[2340]: conn=93 op=2 SRCH
base="dc=sfgroup,dc=com" scope=2
filter="(&(sambaSID=S-1-5-21-554143600-2037058611-3511194912-501)(objectClass=sambaSamAccount))"
Dec 28 00:31:08 rishi slapd[2340]: conn=93 op=2 SEARCH RESULT tag=101
err=0 nentries=0 textDec 28 00:31:08 rishi slapd[1753]: conn=94 fd=23 ACCEPT
from
IP=127.0.0.1:1231 (IP=:: 389)
Dec 28 00:31:08 rishi slapd[2166]: conn=94 op=0 BIND dn="" method=128
Dec
28 00:31:08 rishi slapd[2166]: conn=94 op=0 RESULT tag=97 err=0 text= Dec
28 00:31:08 rishi slapd[2167]: conn=94 op=1 SRCH
base="dc=sfgroup,dc=com" scope=2 filter="(uid=nobody)"
Dec 28 00:31:08 rishi slapd[2167]: conn=94 op=1 SEARCH RESULT tag=101
err=0 nentries=1 textDec 28 00:31:08 rishi slapd[2340]: conn=94 op=2 SRCH
base="ou=Groups,dc=sfgroup,dc=com" scope=2
filter="(&(objectClass=posixGroup)(|(memberUid=nobody)(uniqueMember=uid=nobody,ou=people,dc=sfgroup,dc=com)))"
Dec 28 00:31:08 rishi slapd[2340]: conn=94 op=2 SEARCH RESULT tag=101
err=0 nentries=1 textDec 28 00:31:08 rishi slapd[2166]: conn=93 op=3 SRCH
base="ou=Groups,dc=sfgroup,dc=com" scope=2
filter="(&(objectClass=sambaGroupMapping)(gidNumber=65533))"
Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=3 SEARCH RESULT tag=101
err=0 nentries=0 textDec 28 00:31:08 rishi slapd[2167]: conn=93 op=4 SRCH
base="ou=Groups,dc=sfgroup,dc=com" scope=2
filter="(&(objectClass=sambaGroupMapping)(gidNumber=65534))"
Dec 28 00:31:08 rishi slapd[2167]: conn=93 op=4 SEARCH RESULT tag=101
err=0 nentries=0 textDec 28 00:31:08 rishi slapd[2166]: conn=93 op=5 SRCH
base="ou=Groups,dc=sfgroup,dc=com" scope=2
filter="(&(objectClass=sambaGroupMapping)(gidNumber=546))"
Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=5 SEARCH RESULT tag=101
err=0 nentries=1 text
samba log message:-
===============
[2003/12/28 00:32:05, 3] smbd/process.c:process_smb(890)
Transaction 1 of length 137
[2003/12/28 00:32:05, 3] smbd/process.c:switch_message(685)
switch message SMBnegprot (pid 2677)
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [PC NETWORK PROGRAM 1.0]
[2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [LANMAN1.0]
[2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [Windows for Workgroups 3.1a]
[2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [LM1.2X002]
[2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [LANMAN2.1]
[2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455)
Requested protocol [NT LM 0.12]
[2003/12/28 00:32:05, 3] smbd/negprot.c:reply_nt1(329)
using SPNEGO
[2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(532)
Selected protocol NT LM 0.12
[2003/12/28 00:32:05, 3] smbd/process.c:process_smb(890)
Transaction 2 of length 202
[2003/12/28 00:32:05, 3] smbd/process.c:switch_message(685)
switch message SMBsesssetupX (pid 2677)
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_sesssetup_and_X(591)
wct=12 flg2=0xc807
[2003/12/28 00:32:05, 2] smbd/sesssetup.c:setup_new_vc_session(544)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close
all old resources.
[2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(471)
Doing spnego session setup
[2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(502)
NativeOS=[Windows 2000 2195] NativeLanMan=[Windows 2000 5.0]
PrimaryDomain=[]
[2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_spnego_negotiate(380)
Got OID 1 3 6 1 4 1 311 2 2 10
[2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_spnego_negotiate(383)
Got secblob of size 32
[2003/12/28 00:32:05, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62)
Got NTLMSSP neg_flags=0xe0088297
[2003/12/28 00:32:05, 3] smbd/process.c:process_smb(890)
Transaction 3 of length 234
[2003/12/28 00:32:05, 3] smbd/process.c:switch_message(685)
switch message SMBsesssetupX (pid 2677)
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_sesssetup_and_X(591)
wct=12 flg2=0xc807
[2003/12/28 00:32:05, 2] smbd/sesssetup.c:setup_new_vc_session(544)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close
all old resources.
[2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(471)
Doing spnego session setup
[2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(502)
NativeOS=[Windows 2000 2195] NativeLanMan=[Windows 2000 5.0]
PrimaryDomain=[]
[2003/12/28 00:32:05, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(609)
Got user=[] domain=[] workstation=[SALES] len1=1 len2=0
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] auth/auth.c:check_ntlm_password(219)
check_ntlm_password: Checking password for unmapped user []\[]@[SALES]
with the new password interface
[2003/12/28 00:32:05, 3] auth/auth.c:check_ntlm_password(222)
check_ntlm_password: mapped user is: [TECHGROUP]\[]@[SALES]
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 2] lib/smbldap.c:smbldap_search_suffix(1096)
smbldap_search_suffix: searching
for:[(&(sambaSID=S-1-5-21-554143600-2037058611-3511194912-501)(objectclass=sambaSamAccount))]
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:ldapsam_search_one_group(1636)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=65533))]
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] passdb/lookup_sid.c:fetch_sid_from_gid_cache(235)
fetch sid from gid cache 65533 ->
S-1-5-21-554143600-2037058611-3511194912-132067
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:ldapsam_search_one_group(1636)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=65534))]
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:ldapsam_search_one_group(1636)
ldapsam_search_one_group: searching
for:[(&(objectClass=sambaGroupMapping)(gidNumber=546))]
[2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:init_group_from_ldap(1680)
init_group_from_ldap: Entry found for group: 546
[2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/28 00:32:05, 3] auth/auth.c:check_ntlm_password(268)
check_ntlm_password: guest authentication for user [] succeeded
[2003/12/28 00:32:16, 3] smbd/process.c:timeout_processing(1104)
timeout_processing: End of file from client (client has disconnected).
[2003/12/28 00:32:16, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/28 00:32:16, 2] smbd/server.c:exit_server(558)
Closing connections
[2003/12/28 00:32:16, 3] smbd/connection.c:yield_connection(69)
Yielding connection to
[2003/12/28 00:32:16, 3] smbd/server.c:exit_server(601)
Server exit (normal exit)
smb.conf
======[global]
workgroup = TECHGROUP
server string = rishi Samba Server
null passwords = Yes
passdb backend = ldapsam
passwd program = /usr/local/bin/smbldap-passwd.pl -o %u
passwd chat = *new*password* %n\n *new*password:* %n\
*successfully* passwd chat debug = Yes
log level = 3
log file = /var/log/samba/%m.log
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
printcap name = cups
add user script = /usr/local/sbin/smbldap-useradd.pl -a "%u"
delete user script = /usr/local/sbin/smbldap-useradd.pl -d "%u"
add group script = /usr/local/sbin/smbldap-useradd.pl -a -g "%g"
delete group script = /usr/local/sbin/smbldap-useradd.pl -d -g
"%g" add user to group script = /usr/local/sbin/smbldap-useradd.pl
-j
-u "%u" -g "%g"
delete user from group script = /usr/local/sbin/smbldap-useradd.pl
-j -u "%u" -g "%g"
set primary group script = /usr/local/sbin/smbldap-useradd.pl -m
-u "%u" -gid "%g"
add machine script = /usr/local/sbin/smbldap-useradd.pl -a -w
"%m"
domain logons = Yes
os level = 22
preferred master = Yes
domain master = Yes
dns proxy = No
wins support = Yes
ldap suffix = dc=sfgroup,dc=com
ldap machine suffix = ou=People
ldap user suffix = ou=People
ldap group suffix = ou=Groups
ldap admin dn = "cn=Manager,dc=sfgroup,dc=com"
ldap ssl = no
printing = cups
[homes]
comment = Home Directories
read only = No
browseable = No
[printers]
comment = All Printers
path = /var/spool/samba
printable = Yes
browseable = No
ldap data
====== ldapsearch -x
# extended LDIF
#
# LDAPv3
# base <> with scope sub
# filter: (objectclass=*)
# requesting: ALL
#
# sfgroup.com
dn: dc=sfgroup,dc=com
objectClass: dcObject
objectClass: organization
dc: sfgroup
o: sfgroup
# People, sfgroup.com
dn: ou=People,dc=sfgroup,dc=com
objectClass: organizationalUnit
ou: People
# Groups, sfgroup.com
dn: ou=Groups,dc=sfgroup,dc=com
objectClass: organizationalUnit
ou: Groups
# Administrator, People, sfgroup.com
dn: uid=Administrator,ou=People,dc=sfgroup,dc=com
cn: Administrator
sn: Administrator
objectClass: inetOrgPerson
objectClass: sambaSAMAccount
objectClass: posixAccount
gidNumber: 512
uid: Administrator
homeDirectory: /home
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaKickoffTime: 2147483647
sambaPwdCanChange: 0
sambaHomePath: \\_PDCNAME_\homes
sambaHomeDrive: _HOMEDRIVE_
sambaProfilePath: \\_PDCNAME_\profiles\
sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-512
loginShell: /bin/false
gecos: Netbios Domain Administrator
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-1000
uidNumber: 0
sambaLMPassword: 78BCCAEE08C90E29AAD3B435B51404EE
sambaAcctFlags: [U]
sambaNTPassword: F9E37E83B83C47A93C2F09F66408631B
sambaPwdLastSet: 1072586991
sambaPwdMustChange: 1076474991
# nobody, People, sfgroup.com
dn: uid=nobody,ou=People,dc=sfgroup,dc=com
cn: nobody
sn: nobody
objectClass: inetOrgPerson
objectClass: sambaSAMAccount
objectClass: posixAccount
gidNumber: 514
uid: nobody
uidNumber: 999
homeDirectory: /dev/null
sambaPwdLastSet: 0
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaKickoffTime: 2147483647
sambaPwdCanChange: 0
sambaPwdMustChange: 2147483647
sambaHomePath: \\_PDCNAME_\homes
sambaHomeDrive: _HOMEDRIVE_
sambaProfilePath: \\_PDCNAME_\profiles\
sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-514
sambaLMPassword: NO PASSWORDXXXXXXXXXXXXXXXXXXXXX
sambaNTPassword: NO PASSWORDXXXXXXXXXXXXXXXXXXXXX
sambaAcctFlags: [NU ]
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-2998
loginShell: /bin/false
# Domain Admins, Groups, sfgroup.com
dn: cn=Domain Admins,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 512
cn: Domain Admins
memberUid: Administrator
description: Netbios Domain Administrators
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-512
sambaGroupType: 2
displayName: Domain Admins
# Domain Users, Groups, sfgroup.com
dn: cn=Domain Users,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 513
cn: Domain Users
description: Netbios Domain Users
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-513
sambaGroupType: 2
displayName: Domain Users
memberUid: testuser
# Domain Guests, Groups, sfgroup.com
dn: cn=Domain Guests,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 514
cn: Domain Guests
description: Netbios Domain Guests Users
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-514
sambaGroupType: 2
displayName: Domain Guests
# Administrators, Groups, sfgroup.com
dn: cn=Administrators,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 544
cn: Administrators
description: Netbios Domain Members can fully administer the
computer/sambaDom
ainName
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-544
sambaGroupType: 2
displayName: Administrators
# Users, Groups, sfgroup.com
dn: cn=Users,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 545
cn: Users
description: Netbios Domain Ordinary users
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-545
sambaGroupType: 2
displayName: users
# Guests, Groups, sfgroup.com
dn: cn=Guests,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 546
cn: Guests
memberUid: nobody
description: Netbios Domain Users granted guest access to the
computer/sambaDo
mainName
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-546
sambaGroupType: 2
displayName: Guests
# Power Users, Groups, sfgroup.com
dn: cn=Power Users,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 547
cn: Power Users
description: Netbios Domain Members can share directories and printers
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-547
sambaGroupType: 2
displayName: Power Users
# Account Operators, Groups, sfgroup.com
dn: cn=Account Operators,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 548
cn: Account Operators
description: Netbios Domain Users to manipulate users accounts
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-548
sambaGroupType: 2
displayName: Account Operators
# Server Operators, Groups, sfgroup.com
dn: cn=Server Operators,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 549
cn: Server Operators
description: Netbios Domain Server Operators
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-549
sambaGroupType: 2
displayName: Server Operators
# Print Operators, Groups, sfgroup.com
dn: cn=Print Operators,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 550
cn: Print Operators
description: Netbios Domain Print Operators
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-550
sambaGroupType: 2
displayName: Print Operators
# Backup Operators, Groups, sfgroup.com
dn: cn=Backup Operators,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 551
cn: Backup Operators
description: Netbios Domain Members can bypass file security to back up
files sambaSID: S-1-5-21-3516781642-1962875130-3438800523-551
sambaGroupType: 2
displayName: Backup Operators
# Replicator, Groups, sfgroup.com
dn: cn=Replicator,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 552
cn: Replicator
description: Netbios Domain Supports file replication in a sambaDomainName
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-552
sambaGroupType: 2
displayName: Replicator
# Domain Computers, Groups, sfgroup.com
dn: cn=Domain Computers,ou=Groups,dc=sfgroup,dc=com
objectClass: posixGroup
objectClass: sambaGroupMapping
gidNumber: 553
cn: Domain Computers
description: Netbios Domain Computers accounts
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-553
sambaGroupType: 2
displayName: Domain Computers
# TECHGROUP, sfgroup.com
dn: sambaDomainName=TECHGROUP,dc=sfgroup,dc=com
sambaDomainName: TECHGROUP
sambaSID: S-1-5-21-554143600-2037058611-3511194912
sambaAlgorithmicRidBase: 1000
objectClass: sambaDomain
# rishi$, People, sfgroup.com
dn: uid=rishi$,ou=People,dc=sfgroup,dc=com
objectClass: top
objectClass: inetOrgPerson
objectClass: posixAccount
cn: rishi$
sn: rishi$
uid: rishi$
uidNumber: 1000
gidNumber: 553
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer
# sales$, People, sfgroup.com
dn: uid=sales$,ou=People,dc=sfgroup,dc=com
objectClass: top
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: sambaSamAccount
cn: sales$
sn: sales$
uid: sales$
uidNumber: 1001
gidNumber: 553
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer
sambaSID: S-1-5-21-554143600-2037058611-3511194912-3002
sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-553
displayName: sales$
sambaAcctFlags: [W ]
sambaPwdCanChange: 1072588504
sambaPwdMustChange: 2147483647
sambaLMPassword: B202D709688A89784A8EA3837AB65FF3
sambaNTPassword: 9F3902B332FB510F60BED83F46792D35
sambaPwdLastSet: 1072588504
# testuser, People, sfgroup.com
dn: uid=testuser,ou=People,dc=sfgroup,dc=com
objectClass: top
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: sambaSAMAccount
cn: testuser
sn: testuser
uid: testuser
uidNumber: 1002
gidNumber: 513
homeDirectory: /home/testuser
loginShell: /bin/bash
gecos: System User
description: System User
sambaLogonTime: 0
sambaLogoffTime: 2147483647
sambaKickoffTime: 2147483647
sambaPwdCanChange: 0
displayName: System User
sambaSID: S-1-5-21-3516781642-1962875130-3438800523-3004
sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-513
sambaHomeDrive: _HOMEDRIVE_
sambaLogonScript: testuser.cmd
sambaProfilePath: \\_PDCNAME_\profiles\testuser
sambaHomePath: \\_PDCNAME_\homes
sambaLMPassword: B69F04706E569E211AA818381E4E281B
sambaAcctFlags: [U]
sambaNTPassword: 698057F0BF5073086D2FAFFF49B3E4FF
sambaPwdLastSet: 1072588703
sambaPwdMustChange: 1076476703
# search result
search: 2
result: 0 Success
# numResponses: 23
# numEntries: 22
Any help to fix this error message
-SR
sun@percipia.com
2003-Dec-28 05:53 UTC
[Fwd: Re: [Samba] Samba 3.0.1 W2K Joing domain error - the user name couldnot be found]
FYI: Hi, There will be a bug fix for 3.0.1 within a few days. Looks like we have a bug in NTLMSSP code in 3.0.1. This does prevent domain logons. Domain joins when done as 'root' do work, but subsequent logons do not. A patch was posted on samba-technical yesterday and should be in 3.0.2pre CVS within 24 hours. - John T.> > > Hi, > > Thanks for your information. Now I was not able to login as domain user. I > am getting following error message. > > The system cannot log you on now because domain TECHGROUP is not > available. > > > Here is my ldap log message:- > > Dec 28 00:31:08 rishi slapd[1753]: conn=93 fd=17 ACCEPT from IP=::1 1230 > (IP=:: 389) > Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=0 BIND > dn="cn=Manager,dc=sfgroup,dc=com" method=128 > Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=0 AUTHZ > dn="cn=Manager,dc=sfgroup,dc=com" mech=simple ssf=0 > Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=0 RESULT tag=97 err=0 text> Dec 28 00:31:08 rishi slapd[2167]: conn=93 op=1 SRCH > base="dc=sfgroup,dc=com" scope=2 > filter="(&(objectClass=sambaDomain)(sambaDomainName=TECHGROUP))" > Dec 28 00:31:08 rishi slapd[2167]: conn=93 op=1 SEARCH RESULT tag=101 > err=0 nentries=1 text> Dec 28 00:31:08 rishi slapd[2340]: conn=93 op=2 SRCH > base="dc=sfgroup,dc=com" scope=2 > filter="(&(sambaSID=S-1-5-21-554143600-2037058611-3511194912-501)(objectClass=sambaSamAccount))" > Dec 28 00:31:08 rishi slapd[2340]: conn=93 op=2 SEARCH RESULT tag=101 > err=0 nentries=0 text> Dec 28 00:31:08 rishi slapd[1753]: conn=94 fd=23 ACCEPT from > IP=127.0.0.1:1231 (IP=:: 389) > Dec 28 00:31:08 rishi slapd[2166]: conn=94 op=0 BIND dn="" method=128 Dec > 28 00:31:08 rishi slapd[2166]: conn=94 op=0 RESULT tag=97 err=0 text= Dec > 28 00:31:08 rishi slapd[2167]: conn=94 op=1 SRCH > base="dc=sfgroup,dc=com" scope=2 filter="(uid=nobody)" > Dec 28 00:31:08 rishi slapd[2167]: conn=94 op=1 SEARCH RESULT tag=101 > err=0 nentries=1 text> Dec 28 00:31:08 rishi slapd[2340]: conn=94 op=2 SRCH > base="ou=Groups,dc=sfgroup,dc=com" scope=2 > filter="(&(objectClass=posixGroup)(|(memberUid=nobody)(uniqueMember=uid=nobody,ou=people,dc=sfgroup,dc=com)))" > Dec 28 00:31:08 rishi slapd[2340]: conn=94 op=2 SEARCH RESULT tag=101 > err=0 nentries=1 text> Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=3 SRCH > base="ou=Groups,dc=sfgroup,dc=com" scope=2 > filter="(&(objectClass=sambaGroupMapping)(gidNumber=65533))" > Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=3 SEARCH RESULT tag=101 > err=0 nentries=0 text> Dec 28 00:31:08 rishi slapd[2167]: conn=93 op=4 SRCH > base="ou=Groups,dc=sfgroup,dc=com" scope=2 > filter="(&(objectClass=sambaGroupMapping)(gidNumber=65534))" > Dec 28 00:31:08 rishi slapd[2167]: conn=93 op=4 SEARCH RESULT tag=101 > err=0 nentries=0 text> Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=5 SRCH > base="ou=Groups,dc=sfgroup,dc=com" scope=2 > filter="(&(objectClass=sambaGroupMapping)(gidNumber=546))" > Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=5 SEARCH RESULT tag=101 > err=0 nentries=1 text> > samba log message:- > ===============> > [2003/12/28 00:32:05, 3] smbd/process.c:process_smb(890) > Transaction 1 of length 137 > [2003/12/28 00:32:05, 3] smbd/process.c:switch_message(685) > switch message SMBnegprot (pid 2677) > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [PC NETWORK PROGRAM 1.0] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [LANMAN1.0] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [Windows for Workgroups 3.1a] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [LM1.2X002] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [LANMAN2.1] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [NT LM 0.12] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_nt1(329) > using SPNEGO > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(532) > Selected protocol NT LM 0.12 > [2003/12/28 00:32:05, 3] smbd/process.c:process_smb(890) > Transaction 2 of length 202 > [2003/12/28 00:32:05, 3] smbd/process.c:switch_message(685) > switch message SMBsesssetupX (pid 2677) > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_sesssetup_and_X(591) > wct=12 flg2=0xc807 > [2003/12/28 00:32:05, 2] smbd/sesssetup.c:setup_new_vc_session(544) > setup_new_vc_session: New VC == 0, if NT4.x compatible we would close > all old resources. > [2003/12/28 00:32:05, 3] > smbd/sesssetup.c:reply_sesssetup_and_X_spnego(471) > Doing spnego session setup > [2003/12/28 00:32:05, 3] > smbd/sesssetup.c:reply_sesssetup_and_X_spnego(502) > NativeOS=[Windows 2000 2195] NativeLanMan=[Windows 2000 5.0] > PrimaryDomain=[] > [2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_spnego_negotiate(380) > Got OID 1 3 6 1 4 1 311 2 2 10 > [2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_spnego_negotiate(383) > Got secblob of size 32 > [2003/12/28 00:32:05, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62) > Got NTLMSSP neg_flags=0xe0088297 > [2003/12/28 00:32:05, 3] smbd/process.c:process_smb(890) > Transaction 3 of length 234 > [2003/12/28 00:32:05, 3] smbd/process.c:switch_message(685) > switch message SMBsesssetupX (pid 2677) > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_sesssetup_and_X(591) > wct=12 flg2=0xc807 > [2003/12/28 00:32:05, 2] smbd/sesssetup.c:setup_new_vc_session(544) > setup_new_vc_session: New VC == 0, if NT4.x compatible we would close > all old resources. > [2003/12/28 00:32:05, 3] > smbd/sesssetup.c:reply_sesssetup_and_X_spnego(471) > Doing spnego session setup > [2003/12/28 00:32:05, 3] > smbd/sesssetup.c:reply_sesssetup_and_X_spnego(502) > NativeOS=[Windows 2000 2195] NativeLanMan=[Windows 2000 5.0] > PrimaryDomain=[] > [2003/12/28 00:32:05, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(609) > Got user=[] domain=[] workstation=[SALES] len1=1 len2=0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] auth/auth.c:check_ntlm_password(219) > check_ntlm_password: Checking password for unmapped user []\[]@[SALES] > with the new password interface > [2003/12/28 00:32:05, 3] auth/auth.c:check_ntlm_password(222) > check_ntlm_password: mapped user is: [TECHGROUP]\[]@[SALES] > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 2] lib/smbldap.c:smbldap_search_suffix(1096) > smbldap_search_suffix: searching > for:[(&(sambaSID=S-1-5-21-554143600-2037058611-3511194912-501)(objectclass=sambaSamAccount))] > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:ldapsam_search_one_group(1636) > ldapsam_search_one_group: searching > for:[(&(objectClass=sambaGroupMapping)(gidNumber=65533))] > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] passdb/lookup_sid.c:fetch_sid_from_gid_cache(235) > fetch sid from gid cache 65533 -> > S-1-5-21-554143600-2037058611-3511194912-132067 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:ldapsam_search_one_group(1636) > ldapsam_search_one_group: searching > for:[(&(objectClass=sambaGroupMapping)(gidNumber=65534))] > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:ldapsam_search_one_group(1636) > ldapsam_search_one_group: searching > for:[(&(objectClass=sambaGroupMapping)(gidNumber=546))] > [2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:init_group_from_ldap(1680) > init_group_from_ldap: Entry found for group: 546 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] auth/auth.c:check_ntlm_password(268) > check_ntlm_password: guest authentication for user [] succeeded > [2003/12/28 00:32:16, 3] smbd/process.c:timeout_processing(1104) > timeout_processing: End of file from client (client has disconnected). > [2003/12/28 00:32:16, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:16, 2] smbd/server.c:exit_server(558) > Closing connections > [2003/12/28 00:32:16, 3] smbd/connection.c:yield_connection(69) > Yielding connection to > [2003/12/28 00:32:16, 3] smbd/server.c:exit_server(601) > Server exit (normal exit) > > smb.conf > ======> [global] > workgroup = TECHGROUP > server string = rishi Samba Server > null passwords = Yes > passdb backend = ldapsam > passwd program = /usr/local/bin/smbldap-passwd.pl -o %u > passwd chat = *new*password* %n\n *new*password:* %n\ > *successfully* passwd chat debug = Yes > log level = 3 > log file = /var/log/samba/%m.log > socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 > printcap name = cups > add user script = /usr/local/sbin/smbldap-useradd.pl -a "%u" > delete user script = /usr/local/sbin/smbldap-useradd.pl -d "%u" > add group script = /usr/local/sbin/smbldap-useradd.pl -a -g "%g" > delete group script = /usr/local/sbin/smbldap-useradd.pl -d -g > "%g" add user to group script = /usr/local/sbin/smbldap-useradd.pl > -j > -u "%u" -g "%g" > delete user from group script = /usr/local/sbin/smbldap-useradd.pl > -j -u "%u" -g "%g" > set primary group script = /usr/local/sbin/smbldap-useradd.pl -m > -u "%u" -gid "%g" > add machine script = /usr/local/sbin/smbldap-useradd.pl -a -w "%m" > domain logons = Yes > os level = 22 > preferred master = Yes > domain master = Yes > dns proxy = No > wins support = Yes > ldap suffix = dc=sfgroup,dc=com > ldap machine suffix = ou=People > ldap user suffix = ou=People > ldap group suffix = ou=Groups > ldap admin dn = "cn=Manager,dc=sfgroup,dc=com" > ldap ssl = no > printing = cups > > [homes] > comment = Home Directories > read only = No > browseable = No > > [printers] > comment = All Printers > path = /var/spool/samba > printable = Yes > browseable = No > > ldap data > ======> ldapsearch -x > # extended LDIF > # > # LDAPv3 > # base <> with scope sub > # filter: (objectclass=*) > # requesting: ALL > # > > # sfgroup.com > dn: dc=sfgroup,dc=com > objectClass: dcObject > objectClass: organization > dc: sfgroup > o: sfgroup > > # People, sfgroup.com > dn: ou=People,dc=sfgroup,dc=com > objectClass: organizationalUnit > ou: People > > # Groups, sfgroup.com > dn: ou=Groups,dc=sfgroup,dc=com > objectClass: organizationalUnit > ou: Groups > > # Administrator, People, sfgroup.com > dn: uid=Administrator,ou=People,dc=sfgroup,dc=com > cn: Administrator > sn: Administrator > objectClass: inetOrgPerson > objectClass: sambaSAMAccount > objectClass: posixAccount > gidNumber: 512 > uid: Administrator > homeDirectory: /home > sambaLogonTime: 0 > sambaLogoffTime: 2147483647 > sambaKickoffTime: 2147483647 > sambaPwdCanChange: 0 > sambaHomePath: \\_PDCNAME_\homes > sambaHomeDrive: _HOMEDRIVE_ > sambaProfilePath: \\_PDCNAME_\profiles\ > sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-512 > loginShell: /bin/false > gecos: Netbios Domain Administrator > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-1000 > uidNumber: 0 > sambaLMPassword: 78BCCAEE08C90E29AAD3B435B51404EE > sambaAcctFlags: [U] > sambaNTPassword: F9E37E83B83C47A93C2F09F66408631B > sambaPwdLastSet: 1072586991 > sambaPwdMustChange: 1076474991 > > # nobody, People, sfgroup.com > dn: uid=nobody,ou=People,dc=sfgroup,dc=com > cn: nobody > sn: nobody > objectClass: inetOrgPerson > objectClass: sambaSAMAccount > objectClass: posixAccount > gidNumber: 514 > uid: nobody > uidNumber: 999 > homeDirectory: /dev/null > sambaPwdLastSet: 0 > sambaLogonTime: 0 > sambaLogoffTime: 2147483647 > sambaKickoffTime: 2147483647 > sambaPwdCanChange: 0 > sambaPwdMustChange: 2147483647 > sambaHomePath: \\_PDCNAME_\homes > sambaHomeDrive: _HOMEDRIVE_ > sambaProfilePath: \\_PDCNAME_\profiles\ > sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-514 > sambaLMPassword: NO PASSWORDXXXXXXXXXXXXXXXXXXXXX > sambaNTPassword: NO PASSWORDXXXXXXXXXXXXXXXXXXXXX > sambaAcctFlags: [NU ] > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-2998 > loginShell: /bin/false > > # Domain Admins, Groups, sfgroup.com > dn: cn=Domain Admins,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 512 > cn: Domain Admins > memberUid: Administrator > description: Netbios Domain Administrators > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-512 > sambaGroupType: 2 > displayName: Domain Admins > > # Domain Users, Groups, sfgroup.com > dn: cn=Domain Users,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 513 > cn: Domain Users > description: Netbios Domain Users > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-513 > sambaGroupType: 2 > displayName: Domain Users > memberUid: testuser > > # Domain Guests, Groups, sfgroup.com > dn: cn=Domain Guests,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 514 > cn: Domain Guests > description: Netbios Domain Guests Users > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-514 > sambaGroupType: 2 > displayName: Domain Guests > > # Administrators, Groups, sfgroup.com > dn: cn=Administrators,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 544 > cn: Administrators > description: Netbios Domain Members can fully administer the > computer/sambaDom > ainName > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-544 > sambaGroupType: 2 > displayName: Administrators > > # Users, Groups, sfgroup.com > dn: cn=Users,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 545 > cn: Users > description: Netbios Domain Ordinary users > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-545 > sambaGroupType: 2 > displayName: users > > # Guests, Groups, sfgroup.com > dn: cn=Guests,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 546 > cn: Guests > memberUid: nobody > description: Netbios Domain Users granted guest access to the > computer/sambaDo > mainName > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-546 > sambaGroupType: 2 > displayName: Guests > > # Power Users, Groups, sfgroup.com > dn: cn=Power Users,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 547 > cn: Power Users > description: Netbios Domain Members can share directories and printers > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-547 > sambaGroupType: 2 > displayName: Power Users > > # Account Operators, Groups, sfgroup.com > dn: cn=Account Operators,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 548 > cn: Account Operators > description: Netbios Domain Users to manipulate users accounts > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-548 > sambaGroupType: 2 > displayName: Account Operators > > # Server Operators, Groups, sfgroup.com > dn: cn=Server Operators,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 549 > cn: Server Operators > description: Netbios Domain Server Operators > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-549 > sambaGroupType: 2 > displayName: Server Operators > > # Print Operators, Groups, sfgroup.com > dn: cn=Print Operators,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 550 > cn: Print Operators > description: Netbios Domain Print Operators > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-550 > sambaGroupType: 2 > displayName: Print Operators > > # Backup Operators, Groups, sfgroup.com > dn: cn=Backup Operators,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 551 > cn: Backup Operators > description: Netbios Domain Members can bypass file security to back up > files sambaSID: S-1-5-21-3516781642-1962875130-3438800523-551 > sambaGroupType: 2 > displayName: Backup Operators > > # Replicator, Groups, sfgroup.com > dn: cn=Replicator,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 552 > cn: Replicator > description: Netbios Domain Supports file replication in a sambaDomainName > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-552 > sambaGroupType: 2 > displayName: Replicator > > # Domain Computers, Groups, sfgroup.com > dn: cn=Domain Computers,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 553 > cn: Domain Computers > description: Netbios Domain Computers accounts > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-553 > sambaGroupType: 2 > displayName: Domain Computers > > # TECHGROUP, sfgroup.com > dn: sambaDomainName=TECHGROUP,dc=sfgroup,dc=com > sambaDomainName: TECHGROUP > sambaSID: S-1-5-21-554143600-2037058611-3511194912 > sambaAlgorithmicRidBase: 1000 > objectClass: sambaDomain > > # rishi$, People, sfgroup.com > dn: uid=rishi$,ou=People,dc=sfgroup,dc=com > objectClass: top > objectClass: inetOrgPerson > objectClass: posixAccount > cn: rishi$ > sn: rishi$ > uid: rishi$ > uidNumber: 1000 > gidNumber: 553 > homeDirectory: /dev/null > loginShell: /bin/false > description: Computer > > # sales$, People, sfgroup.com > dn: uid=sales$,ou=People,dc=sfgroup,dc=com > objectClass: top > objectClass: inetOrgPerson > objectClass: posixAccount > objectClass: sambaSamAccount > cn: sales$ > sn: sales$ > uid: sales$ > uidNumber: 1001 > gidNumber: 553 > homeDirectory: /dev/null > loginShell: /bin/false > description: Computer > sambaSID: S-1-5-21-554143600-2037058611-3511194912-3002 > sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-553 > displayName: sales$ > sambaAcctFlags: [W ] > sambaPwdCanChange: 1072588504 > sambaPwdMustChange: 2147483647 > sambaLMPassword: B202D709688A89784A8EA3837AB65FF3 > sambaNTPassword: 9F3902B332FB510F60BED83F46792D35 > sambaPwdLastSet: 1072588504 > > # testuser, People, sfgroup.com > dn: uid=testuser,ou=People,dc=sfgroup,dc=com > objectClass: top > objectClass: inetOrgPerson > objectClass: posixAccount > objectClass: sambaSAMAccount > cn: testuser > sn: testuser > uid: testuser > uidNumber: 1002 > gidNumber: 513 > homeDirectory: /home/testuser > loginShell: /bin/bash > gecos: System User > description: System User > sambaLogonTime: 0 > sambaLogoffTime: 2147483647 > sambaKickoffTime: 2147483647 > sambaPwdCanChange: 0 > displayName: System User > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-3004 > sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-513 > sambaHomeDrive: _HOMEDRIVE_ > sambaLogonScript: testuser.cmd > sambaProfilePath: \\_PDCNAME_\profiles\testuser > sambaHomePath: \\_PDCNAME_\homes > sambaLMPassword: B69F04706E569E211AA818381E4E281B > sambaAcctFlags: [U] > sambaNTPassword: 698057F0BF5073086D2FAFFF49B3E4FF > sambaPwdLastSet: 1072588703 > sambaPwdMustChange: 1076476703 > > # search result > search: 2 > result: 0 Success > > # numResponses: 23 > # numEntries: 22 > > Any help to fix this error message > -SR > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba >
sun@percipia.com
2003-Dec-28 05:54 UTC
[Fwd: Re: [Samba] Samba 3.0.1 W2K Joing domain error - the user name couldnot be found]
FYI: Hi, There will be a bug fix for 3.0.1 within a few days. Looks like we have a bug in NTLMSSP code in 3.0.1. This does prevent domain logons. Domain joins when done as 'root' do work, but subsequent logons do not. A patch was posted on samba-technical yesterday and should be in 3.0.2pre CVS within 24 hours. - John T.> > > Hi, > > Thanks for your information. Now I was not able to login as domain user. I > am getting following error message. > > The system cannot log you on now because domain TECHGROUP is not > available. > > > Here is my ldap log message:- > > Dec 28 00:31:08 rishi slapd[1753]: conn=93 fd=17 ACCEPT from IP=::1 1230 > (IP=:: 389) > Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=0 BIND > dn="cn=Manager,dc=sfgroup,dc=com" method=128 > Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=0 AUTHZ > dn="cn=Manager,dc=sfgroup,dc=com" mech=simple ssf=0 > Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=0 RESULT tag=97 err=0 text> Dec 28 00:31:08 rishi slapd[2167]: conn=93 op=1 SRCH > base="dc=sfgroup,dc=com" scope=2 > filter="(&(objectClass=sambaDomain)(sambaDomainName=TECHGROUP))" > Dec 28 00:31:08 rishi slapd[2167]: conn=93 op=1 SEARCH RESULT tag=101 > err=0 nentries=1 text> Dec 28 00:31:08 rishi slapd[2340]: conn=93 op=2 SRCH > base="dc=sfgroup,dc=com" scope=2 > filter="(&(sambaSID=S-1-5-21-554143600-2037058611-3511194912-501)(objectClass=sambaSamAccount))" > Dec 28 00:31:08 rishi slapd[2340]: conn=93 op=2 SEARCH RESULT tag=101 > err=0 nentries=0 text> Dec 28 00:31:08 rishi slapd[1753]: conn=94 fd=23 ACCEPT from > IP=127.0.0.1:1231 (IP=:: 389) > Dec 28 00:31:08 rishi slapd[2166]: conn=94 op=0 BIND dn="" method=128 Dec > 28 00:31:08 rishi slapd[2166]: conn=94 op=0 RESULT tag=97 err=0 text= Dec > 28 00:31:08 rishi slapd[2167]: conn=94 op=1 SRCH > base="dc=sfgroup,dc=com" scope=2 filter="(uid=nobody)" > Dec 28 00:31:08 rishi slapd[2167]: conn=94 op=1 SEARCH RESULT tag=101 > err=0 nentries=1 text> Dec 28 00:31:08 rishi slapd[2340]: conn=94 op=2 SRCH > base="ou=Groups,dc=sfgroup,dc=com" scope=2 > filter="(&(objectClass=posixGroup)(|(memberUid=nobody)(uniqueMember=uid=nobody,ou=people,dc=sfgroup,dc=com)))" > Dec 28 00:31:08 rishi slapd[2340]: conn=94 op=2 SEARCH RESULT tag=101 > err=0 nentries=1 text> Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=3 SRCH > base="ou=Groups,dc=sfgroup,dc=com" scope=2 > filter="(&(objectClass=sambaGroupMapping)(gidNumber=65533))" > Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=3 SEARCH RESULT tag=101 > err=0 nentries=0 text> Dec 28 00:31:08 rishi slapd[2167]: conn=93 op=4 SRCH > base="ou=Groups,dc=sfgroup,dc=com" scope=2 > filter="(&(objectClass=sambaGroupMapping)(gidNumber=65534))" > Dec 28 00:31:08 rishi slapd[2167]: conn=93 op=4 SEARCH RESULT tag=101 > err=0 nentries=0 text> Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=5 SRCH > base="ou=Groups,dc=sfgroup,dc=com" scope=2 > filter="(&(objectClass=sambaGroupMapping)(gidNumber=546))" > Dec 28 00:31:08 rishi slapd[2166]: conn=93 op=5 SEARCH RESULT tag=101 > err=0 nentries=1 text> > samba log message:- > ===============> > [2003/12/28 00:32:05, 3] smbd/process.c:process_smb(890) > Transaction 1 of length 137 > [2003/12/28 00:32:05, 3] smbd/process.c:switch_message(685) > switch message SMBnegprot (pid 2677) > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [PC NETWORK PROGRAM 1.0] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [LANMAN1.0] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [Windows for Workgroups 3.1a] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [LM1.2X002] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [LANMAN2.1] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(455) > Requested protocol [NT LM 0.12] > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_nt1(329) > using SPNEGO > [2003/12/28 00:32:05, 3] smbd/negprot.c:reply_negprot(532) > Selected protocol NT LM 0.12 > [2003/12/28 00:32:05, 3] smbd/process.c:process_smb(890) > Transaction 2 of length 202 > [2003/12/28 00:32:05, 3] smbd/process.c:switch_message(685) > switch message SMBsesssetupX (pid 2677) > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_sesssetup_and_X(591) > wct=12 flg2=0xc807 > [2003/12/28 00:32:05, 2] smbd/sesssetup.c:setup_new_vc_session(544) > setup_new_vc_session: New VC == 0, if NT4.x compatible we would close > all old resources. > [2003/12/28 00:32:05, 3] > smbd/sesssetup.c:reply_sesssetup_and_X_spnego(471) > Doing spnego session setup > [2003/12/28 00:32:05, 3] > smbd/sesssetup.c:reply_sesssetup_and_X_spnego(502) > NativeOS=[Windows 2000 2195] NativeLanMan=[Windows 2000 5.0] > PrimaryDomain=[] > [2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_spnego_negotiate(380) > Got OID 1 3 6 1 4 1 311 2 2 10 > [2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_spnego_negotiate(383) > Got secblob of size 32 > [2003/12/28 00:32:05, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62) > Got NTLMSSP neg_flags=0xe0088297 > [2003/12/28 00:32:05, 3] smbd/process.c:process_smb(890) > Transaction 3 of length 234 > [2003/12/28 00:32:05, 3] smbd/process.c:switch_message(685) > switch message SMBsesssetupX (pid 2677) > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sesssetup.c:reply_sesssetup_and_X(591) > wct=12 flg2=0xc807 > [2003/12/28 00:32:05, 2] smbd/sesssetup.c:setup_new_vc_session(544) > setup_new_vc_session: New VC == 0, if NT4.x compatible we would close > all old resources. > [2003/12/28 00:32:05, 3] > smbd/sesssetup.c:reply_sesssetup_and_X_spnego(471) > Doing spnego session setup > [2003/12/28 00:32:05, 3] > smbd/sesssetup.c:reply_sesssetup_and_X_spnego(502) > NativeOS=[Windows 2000 2195] NativeLanMan=[Windows 2000 5.0] > PrimaryDomain=[] > [2003/12/28 00:32:05, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(609) > Got user=[] domain=[] workstation=[SALES] len1=1 len2=0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] auth/auth.c:check_ntlm_password(219) > check_ntlm_password: Checking password for unmapped user []\[]@[SALES] > with the new password interface > [2003/12/28 00:32:05, 3] auth/auth.c:check_ntlm_password(222) > check_ntlm_password: mapped user is: [TECHGROUP]\[]@[SALES] > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 2] lib/smbldap.c:smbldap_search_suffix(1096) > smbldap_search_suffix: searching > for:[(&(sambaSID=S-1-5-21-554143600-2037058611-3511194912-501)(objectclass=sambaSamAccount))] > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:ldapsam_search_one_group(1636) > ldapsam_search_one_group: searching > for:[(&(objectClass=sambaGroupMapping)(gidNumber=65533))] > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] passdb/lookup_sid.c:fetch_sid_from_gid_cache(235) > fetch sid from gid cache 65533 -> > S-1-5-21-554143600-2037058611-3511194912-132067 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:ldapsam_search_one_group(1636) > ldapsam_search_one_group: searching > for:[(&(objectClass=sambaGroupMapping)(gidNumber=65534))] > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:push_sec_ctx(256) > push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 3] smbd/uid.c:push_conn_ctx(287) > push_conn_ctx(0) : conn_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 > [2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:ldapsam_search_one_group(1636) > ldapsam_search_one_group: searching > for:[(&(objectClass=sambaGroupMapping)(gidNumber=546))] > [2003/12/28 00:32:05, 2] passdb/pdb_ldap.c:init_group_from_ldap(1680) > init_group_from_ldap: Entry found for group: 546 > [2003/12/28 00:32:05, 3] smbd/sec_ctx.c:pop_sec_ctx(386) > pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:05, 3] auth/auth.c:check_ntlm_password(268) > check_ntlm_password: guest authentication for user [] succeeded > [2003/12/28 00:32:16, 3] smbd/process.c:timeout_processing(1104) > timeout_processing: End of file from client (client has disconnected). > [2003/12/28 00:32:16, 3] smbd/sec_ctx.c:set_sec_ctx(288) > setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 > [2003/12/28 00:32:16, 2] smbd/server.c:exit_server(558) > Closing connections > [2003/12/28 00:32:16, 3] smbd/connection.c:yield_connection(69) > Yielding connection to > [2003/12/28 00:32:16, 3] smbd/server.c:exit_server(601) > Server exit (normal exit) > > smb.conf > ======> [global] > workgroup = TECHGROUP > server string = rishi Samba Server > null passwords = Yes > passdb backend = ldapsam > passwd program = /usr/local/bin/smbldap-passwd.pl -o %u > passwd chat = *new*password* %n\n *new*password:* %n\ > *successfully* passwd chat debug = Yes > log level = 3 > log file = /var/log/samba/%m.log > socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 > printcap name = cups > add user script = /usr/local/sbin/smbldap-useradd.pl -a "%u" > delete user script = /usr/local/sbin/smbldap-useradd.pl -d "%u" > add group script = /usr/local/sbin/smbldap-useradd.pl -a -g "%g" > delete group script = /usr/local/sbin/smbldap-useradd.pl -d -g > "%g" add user to group script = /usr/local/sbin/smbldap-useradd.pl > -j > -u "%u" -g "%g" > delete user from group script = /usr/local/sbin/smbldap-useradd.pl > -j -u "%u" -g "%g" > set primary group script = /usr/local/sbin/smbldap-useradd.pl -m > -u "%u" -gid "%g" > add machine script = /usr/local/sbin/smbldap-useradd.pl -a -w "%m" > domain logons = Yes > os level = 22 > preferred master = Yes > domain master = Yes > dns proxy = No > wins support = Yes > ldap suffix = dc=sfgroup,dc=com > ldap machine suffix = ou=People > ldap user suffix = ou=People > ldap group suffix = ou=Groups > ldap admin dn = "cn=Manager,dc=sfgroup,dc=com" > ldap ssl = no > printing = cups > > [homes] > comment = Home Directories > read only = No > browseable = No > > [printers] > comment = All Printers > path = /var/spool/samba > printable = Yes > browseable = No > > ldap data > ======> ldapsearch -x > # extended LDIF > # > # LDAPv3 > # base <> with scope sub > # filter: (objectclass=*) > # requesting: ALL > # > > # sfgroup.com > dn: dc=sfgroup,dc=com > objectClass: dcObject > objectClass: organization > dc: sfgroup > o: sfgroup > > # People, sfgroup.com > dn: ou=People,dc=sfgroup,dc=com > objectClass: organizationalUnit > ou: People > > # Groups, sfgroup.com > dn: ou=Groups,dc=sfgroup,dc=com > objectClass: organizationalUnit > ou: Groups > > # Administrator, People, sfgroup.com > dn: uid=Administrator,ou=People,dc=sfgroup,dc=com > cn: Administrator > sn: Administrator > objectClass: inetOrgPerson > objectClass: sambaSAMAccount > objectClass: posixAccount > gidNumber: 512 > uid: Administrator > homeDirectory: /home > sambaLogonTime: 0 > sambaLogoffTime: 2147483647 > sambaKickoffTime: 2147483647 > sambaPwdCanChange: 0 > sambaHomePath: \\_PDCNAME_\homes > sambaHomeDrive: _HOMEDRIVE_ > sambaProfilePath: \\_PDCNAME_\profiles\ > sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-512 > loginShell: /bin/false > gecos: Netbios Domain Administrator > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-1000 > uidNumber: 0 > sambaLMPassword: 78BCCAEE08C90E29AAD3B435B51404EE > sambaAcctFlags: [U] > sambaNTPassword: F9E37E83B83C47A93C2F09F66408631B > sambaPwdLastSet: 1072586991 > sambaPwdMustChange: 1076474991 > > # nobody, People, sfgroup.com > dn: uid=nobody,ou=People,dc=sfgroup,dc=com > cn: nobody > sn: nobody > objectClass: inetOrgPerson > objectClass: sambaSAMAccount > objectClass: posixAccount > gidNumber: 514 > uid: nobody > uidNumber: 999 > homeDirectory: /dev/null > sambaPwdLastSet: 0 > sambaLogonTime: 0 > sambaLogoffTime: 2147483647 > sambaKickoffTime: 2147483647 > sambaPwdCanChange: 0 > sambaPwdMustChange: 2147483647 > sambaHomePath: \\_PDCNAME_\homes > sambaHomeDrive: _HOMEDRIVE_ > sambaProfilePath: \\_PDCNAME_\profiles\ > sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-514 > sambaLMPassword: NO PASSWORDXXXXXXXXXXXXXXXXXXXXX > sambaNTPassword: NO PASSWORDXXXXXXXXXXXXXXXXXXXXX > sambaAcctFlags: [NU ] > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-2998 > loginShell: /bin/false > > # Domain Admins, Groups, sfgroup.com > dn: cn=Domain Admins,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 512 > cn: Domain Admins > memberUid: Administrator > description: Netbios Domain Administrators > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-512 > sambaGroupType: 2 > displayName: Domain Admins > > # Domain Users, Groups, sfgroup.com > dn: cn=Domain Users,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 513 > cn: Domain Users > description: Netbios Domain Users > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-513 > sambaGroupType: 2 > displayName: Domain Users > memberUid: testuser > > # Domain Guests, Groups, sfgroup.com > dn: cn=Domain Guests,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 514 > cn: Domain Guests > description: Netbios Domain Guests Users > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-514 > sambaGroupType: 2 > displayName: Domain Guests > > # Administrators, Groups, sfgroup.com > dn: cn=Administrators,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 544 > cn: Administrators > description: Netbios Domain Members can fully administer the > computer/sambaDom > ainName > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-544 > sambaGroupType: 2 > displayName: Administrators > > # Users, Groups, sfgroup.com > dn: cn=Users,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 545 > cn: Users > description: Netbios Domain Ordinary users > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-545 > sambaGroupType: 2 > displayName: users > > # Guests, Groups, sfgroup.com > dn: cn=Guests,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 546 > cn: Guests > memberUid: nobody > description: Netbios Domain Users granted guest access to the > computer/sambaDo > mainName > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-546 > sambaGroupType: 2 > displayName: Guests > > # Power Users, Groups, sfgroup.com > dn: cn=Power Users,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 547 > cn: Power Users > description: Netbios Domain Members can share directories and printers > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-547 > sambaGroupType: 2 > displayName: Power Users > > # Account Operators, Groups, sfgroup.com > dn: cn=Account Operators,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 548 > cn: Account Operators > description: Netbios Domain Users to manipulate users accounts > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-548 > sambaGroupType: 2 > displayName: Account Operators > > # Server Operators, Groups, sfgroup.com > dn: cn=Server Operators,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 549 > cn: Server Operators > description: Netbios Domain Server Operators > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-549 > sambaGroupType: 2 > displayName: Server Operators > > # Print Operators, Groups, sfgroup.com > dn: cn=Print Operators,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 550 > cn: Print Operators > description: Netbios Domain Print Operators > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-550 > sambaGroupType: 2 > displayName: Print Operators > > # Backup Operators, Groups, sfgroup.com > dn: cn=Backup Operators,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 551 > cn: Backup Operators > description: Netbios Domain Members can bypass file security to back up > files sambaSID: S-1-5-21-3516781642-1962875130-3438800523-551 > sambaGroupType: 2 > displayName: Backup Operators > > # Replicator, Groups, sfgroup.com > dn: cn=Replicator,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 552 > cn: Replicator > description: Netbios Domain Supports file replication in a sambaDomainName > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-552 > sambaGroupType: 2 > displayName: Replicator > > # Domain Computers, Groups, sfgroup.com > dn: cn=Domain Computers,ou=Groups,dc=sfgroup,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 553 > cn: Domain Computers > description: Netbios Domain Computers accounts > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-553 > sambaGroupType: 2 > displayName: Domain Computers > > # TECHGROUP, sfgroup.com > dn: sambaDomainName=TECHGROUP,dc=sfgroup,dc=com > sambaDomainName: TECHGROUP > sambaSID: S-1-5-21-554143600-2037058611-3511194912 > sambaAlgorithmicRidBase: 1000 > objectClass: sambaDomain > > # rishi$, People, sfgroup.com > dn: uid=rishi$,ou=People,dc=sfgroup,dc=com > objectClass: top > objectClass: inetOrgPerson > objectClass: posixAccount > cn: rishi$ > sn: rishi$ > uid: rishi$ > uidNumber: 1000 > gidNumber: 553 > homeDirectory: /dev/null > loginShell: /bin/false > description: Computer > > # sales$, People, sfgroup.com > dn: uid=sales$,ou=People,dc=sfgroup,dc=com > objectClass: top > objectClass: inetOrgPerson > objectClass: posixAccount > objectClass: sambaSamAccount > cn: sales$ > sn: sales$ > uid: sales$ > uidNumber: 1001 > gidNumber: 553 > homeDirectory: /dev/null > loginShell: /bin/false > description: Computer > sambaSID: S-1-5-21-554143600-2037058611-3511194912-3002 > sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-553 > displayName: sales$ > sambaAcctFlags: [W ] > sambaPwdCanChange: 1072588504 > sambaPwdMustChange: 2147483647 > sambaLMPassword: B202D709688A89784A8EA3837AB65FF3 > sambaNTPassword: 9F3902B332FB510F60BED83F46792D35 > sambaPwdLastSet: 1072588504 > > # testuser, People, sfgroup.com > dn: uid=testuser,ou=People,dc=sfgroup,dc=com > objectClass: top > objectClass: inetOrgPerson > objectClass: posixAccount > objectClass: sambaSAMAccount > cn: testuser > sn: testuser > uid: testuser > uidNumber: 1002 > gidNumber: 513 > homeDirectory: /home/testuser > loginShell: /bin/bash > gecos: System User > description: System User > sambaLogonTime: 0 > sambaLogoffTime: 2147483647 > sambaKickoffTime: 2147483647 > sambaPwdCanChange: 0 > displayName: System User > sambaSID: S-1-5-21-3516781642-1962875130-3438800523-3004 > sambaPrimaryGroupSID: S-1-5-21-3516781642-1962875130-3438800523-513 > sambaHomeDrive: _HOMEDRIVE_ > sambaLogonScript: testuser.cmd > sambaProfilePath: \\_PDCNAME_\profiles\testuser > sambaHomePath: \\_PDCNAME_\homes > sambaLMPassword: B69F04706E569E211AA818381E4E281B > sambaAcctFlags: [U] > sambaNTPassword: 698057F0BF5073086D2FAFFF49B3E4FF > sambaPwdLastSet: 1072588703 > sambaPwdMustChange: 1076476703 > > # search result > search: 2 > result: 0 Success > > # numResponses: 23 > # numEntries: 22 > > Any help to fix this error message > -SR > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba >
Apparently Analagous Threads
- error in logs after upgrade to 3.0.1
- Creation of Domain- and PDC-SID in samba
- suse 8.2 Samba 3 LDAP Domain Join Error : Logon failure: unknown user name or bad password (fwd)
- samba 3.0.14a works with ldapsam backend but not 3.5.10-125.el6
- Fw: AD usres are not show in Domain Controller when apply setfacl command