Pccom Frank
2014-Feb-18 07:06 UTC
[Samba] Samba 4.2.0pre1-GIT-bf1e65c cut off client connections for file sharing.
root at www:/usr/local/samba/sbin # ./samba -d3 -i -M single
lpcfg_load: refreshing parameters from /usr/local/samba/etc/smb.conf
params.c:pm_process() - Processing configuration file
"/usr/local/samba/etc/smb.conf"
samba version 4.2.0pre1-GIT-bf1e65c started.
Copyright Andrew Tridgell and the Samba Team 1992-2014
GENSEC backend 'gssapi_spnego' registered
GENSEC backend 'gssapi_krb5' registered
GENSEC backend 'gssapi_krb5_sasl' registered
GENSEC backend 'sasl-DIGEST-MD5' registered
GENSEC backend 'spnego' registered
GENSEC backend 'schannel' registered
GENSEC backend 'sasl-EXTERNAL' registered
GENSEC backend 'ntlmssp' registered
GENSEC backend 'krb5' registered
GENSEC backend 'fake_gssapi_krb5' registered
NTPTR backend 'simple_ldb'
NTVFS backend 'default' for type 1 registered
NTVFS backend 'posix' for type 1 registered
NTVFS backend 'unixuid' for type 1 registered
NTVFS backend 'unixuid' for type 3 registered
NTVFS backend 'unixuid' for type 2 registered
NTVFS backend 'cifs' for type 1 registered
NTVFS backend 'smb2' for type 1 registered
NTVFS backend 'simple' for type 1 registered
NTVFS backend 'cifsposix' for type 1 registered
NTVFS backend 'default' for type 3 registered
NTVFS backend 'default' for type 2 registered
NTVFS backend 'nbench' for type 1 registered
PROCESS_MODEL 'single' registered
PROCESS_MODEL 'onefork' registered
PROCESS_MODEL 'prefork' registered
PROCESS_MODEL 'standard' registered
AUTH backend 'sam' registered
AUTH backend 'sam_ignoredomain' registered
AUTH backend 'anonymous' registered
AUTH backend 'winbind' registered
AUTH backend 'winbind_wbclient' registered
AUTH backend 'name_to_ntstatus' registered
AUTH backend 'unix' registered
SHARE backend [classic] registered.
SHARE backend [ldb] registered.
ldb_wrap open of privilege.ldb
samba: using 'single' process model
DCERPC endpoint server 'rpcecho' registered
DCERPC endpoint server 'epmapper' registered
DCERPC endpoint server 'remote' registered
DCERPC endpoint server 'srvsvc' registered
DCERPC endpoint server 'wkssvc' registered
DCERPC endpoint server 'unixinfo' registered
DCERPC endpoint server 'samr' registered
DCERPC endpoint server 'winreg' registered
DCERPC endpoint server 'netlogon' registered
DCERPC endpoint server 'dssetup' registered
DCERPC endpoint server 'lsarpc' registered
DCERPC endpoint server 'backupkey' registered
DCERPC endpoint server 'spoolss' registered
DCERPC endpoint server 'drsuapi' registered
DCERPC endpoint server 'browser' registered
DCERPC endpoint server 'eventlog6' registered
DCERPC endpoint server 'dnsserver' registered
dreplsrv_partition[CN=Configuration,DC=pccom,DC=ca] loaded
dreplsrv_partition[CN=Schema,CN=Configuration,DC=pccom,DC=ca] loaded
dreplsrv_partition[DC=pccom,DC=ca] loaded
dreplsrv_partition[DC=DomainDnsZones,DC=pccom,DC=ca] loaded
dreplsrv_partition[DC=ForestDnsZones,DC=pccom,DC=ca] loaded
ldb_wrap open of secrets.ldb
ldb_wrap open of idmap.ldb
kccsrv_partition[DC=pccom,DC=ca] loaded
kccsrv_partition[CN=Configuration,DC=pccom,DC=ca] loaded
kccsrv_partition[CN=Schema,CN=Configuration,DC=pccom,DC=ca] loaded
kccsrv_partition[DC=DomainDnsZones,DC=pccom,DC=ca] loaded
kccsrv_partition[DC=ForestDnsZones,DC=pccom,DC=ca] loaded
Calling DNS name update script
Calling SPN name update script
Child /usr/local/samba/sbin/samba_spnupdate exited with status 0 - No
error: 0
Completed SPN update check OK
Child /usr/local/samba/sbin/samba_dnsupdate exited with status 0 - No
error: 0
Completed DNS update check OK
Registered WWW<00> with 192.168.0.1 on interface 192.168.0.255
Registered WWW<03> with 192.168.0.1 on interface 192.168.0.255
Registered WWW<20> with 192.168.0.1 on interface 192.168.0.255
Registered PCCOM<1b> with 192.168.0.1 on interface 192.168.0.255
Registered PCCOM<1c> with 192.168.0.1 on interface 192.168.0.255
Registered PCCOM<00> with 192.168.0.1 on interface 192.168.0.255
Calling samba_kcc script
Child /usr/local/samba/sbin/samba_kcc exited with status 0 - No error: 0
Completed samba_kcc OK
Selected protocol [6][SMB 2.002]
Got NTLMSSP neg_flags=0xe2088297
Got user=[huizheng] domain=[PP] workstation=[PP] len1=24 len2=232
auth_check_password_send: Checking password for unmapped user
[PP]\[huizheng]@[PP]
auth_check_password_send: mapped user is: [PCCOM]\[huizheng]@[PP]
sam_search_user: Couldn't find user [huizheng] in samdb, under
DC=pccom,DC=ca
auth_check_password_recv: sam_ignoredomain authentication for user
[PCCOM\huizheng] FAILED with error NT_STATUS_NO_SUCH_USER
SPNEGO login failed: NT_STATUS_NO_SUCH_USER
Terminating connection deferred - 'NT_STATUS_CONNECTION_RESET'
Terminating connection - 'NT_STATUS_CONNECTION_RESET'
single_terminate: reason[NT_STATUS_CONNECTION_RESET]
Selected protocol [6][SMB 2.002]
Got NTLMSSP neg_flags=0xe2088297
Got user=[Administrator] domain=[PP] workstation=[PP] len1=24 len2=232
auth_check_password_send: Checking password for unmapped user
[PP]\[Administrator]@[PP]
auth_check_password_send: mapped user is: [PCCOM]\[Administrator]@[PP]
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0xe2088215
NTVFS backend 'xattr' registered
NTVFS backend 'nfs4acl' registered
ipv4:192.168.0.2:55463 closed connection to service IPC$
ipv4:192.168.0.2:55463 closed connection to service IPC$
ipv4:192.168.0.2:55463 closed connection to service public
free session[0x8ec9d360]
Terminating connection deferred - 'NT_STATUS_CONNECTION_RESET'
Terminating connection - 'NT_STATUS_CONNECTION_RESET'
single_terminate: reason[NT_STATUS_CONNECTION_RESET]
Got NTLMSSP neg_flags=0xe2088297
Got user=[Administrator] domain=[PCCOM] workstation=[W7U] len1=24 len2=232
auth_check_password_send: Checking password for unmapped user
[PCCOM]\[Administrator]@[W7U]
auth_check_password_send: mapped user is: [PCCOM]\[Administrator]@[W7U]
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0xe2088215
Calling samba_kcc script
Child /usr/local/samba/sbin/samba_kcc exited with status 0 - No error: 0
Completed samba_kcc OK
ipv4:192.168.0.3:52620 closed connection to service IPC$
Calling DNS name update script
Calling SPN name update script
Child /usr/local/samba/sbin/samba_spnupdate exited with status 0 - No
error: 0
Completed SPN update check OK
Child /usr/local/samba/sbin/samba_dnsupdate exited with status 0 - No
error: 0
Completed DNS update check OK
root at www:/usr/local/samba/var # uname -a
FreeBSD www.pccom.ca 10.0-RELEASE FreeBSD 10.0-RELEASE #4 r261534M: Wed
Feb 5 23:39:30 EST 2014 peng at www.pccom.ca:/usr/obj/usr/src/sys/GENERIC
amd64
# Global parameters
[global]
workgroup = PCCOM
realm = PCCOM.CA
netbios name = WWW
server role = active directory domain controller
server services = rpc, nbt, wrepl, ldap, cldap, kdc, drepl,
winbind, ntp_signd, kcc, dnsupdate, smb
dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr,
netlogon, lsarpc, spoolss, drsuapi, dssetup, unixinfo, browser, eventlog6,
backupkey, dnsserver, winreg, srvsvc
idmap_ldb:use rfc2307 = yes
interfaces = 192.168.0.1
bind interfaces only = yes
nsupdate command = /usr/local/bin/samba-nsupdate -g
# add the uid to the log
debug uid = yes
# add microsecond resolution to timestamp
debug hires timestamp = yes
ea support = yes
acl check permissions = yes
inherit acls = yes
csc policy = disable
store dos attributes = yes
host msdfs = true
dos filemode = no
map read only = no
# added to allow asynchronous I/O (make sure to load the kernel
module aio)
aio read size = 16384
aio write size = 16384
# added to enhance the network performance of samba
socket options = TCP_NODELAY SO_SNDBUF=131072 SO_RCVBUF=131072
[netlogon]
path = /usr/local/samba/var/locks/sysvol/pccom.ca/scripts
read only = No
[sysvol]
path = /usr/local/samba/var/locks/sysvol
read only = No
[public]
path = /data
read only = No
browseable = yes
guest ok = no
delete readonly = yes
vfs objects = zfsacl shadow_copy2
shadow: snapdir = .zfs/snapshot
shadow: sort = desc
shadow: format = %Y-%m-%d-%H%M
nfs4:mode = special
nfs4:acedup = merge
nfs4:chown = yes
No matter what I change smb.conf.
Apparently Analagous Threads
- Samba 4: Workstations unable to join, "The specified network name is no longer available"
- Samba 4 AD - Samba Fails to Start, hdb_samba4_create_kdc (setup KDC database) failed
- Samba 4 AD - Samba Fails to Start, hdb_samba4_create_kdc (setup KDC database) failed
- Samba 4 Kerberos: Failed to decrypt PA-DATA
- samba4 classicupgrade problem idmapping sid_to_xid failed
Wisdom of the Ancients
