On 1/28/24 12:39, Rowland Penny via samba wrote:> On Sun, 28 Jan 2024 12:18:34 -0800 > Peter Carlson via samba<samba at lists.samba.org> wrote: > >> Ok, so I started with a clean slate.? Same thing, only works if I add >> the computer account to Domain users.? smbd Version 4.15.13-Ubuntu >> >> root at u2cli:~# getent passwd CARLSON\\peter >> CARLSON\peter:*:2001107:2000513::/home/peter at CARLSON:/bin/bash >> >> root at u2cli:~# mkdir -m 1777 /mnt/test >> >> root at u2cli:~# kinit -V -k U2CLI$ >> Using default cache: /tmp/krb5cc_0 >> Using principal:U2CLI$@CARLSON.LAB >> Authenticated to Kerberos v5 > I think running kinit might be your problem, I don't do that. > I just started my VM, logged in as rowland, opened a terminal and > ran the mount command. > > Rowland >ok, so I can do that too as a domain user, but this needs to be mounted in fstab, so it seems that I either 1) need to use a user (service) account? - works 2) add the computer to domain users - works 3) possibly give Domain Computers read access at the root of the share - untested Peter
On January 28, 2024 Peter Carlson wrote:> On 1/28/24 12:39, Rowland Penny via samba wrote: > > On Sun, 28 Jan 2024 12:18:34 -0800 > > Peter Carlson via samba<samba at lists.samba.org> wrote: > ok, so I can do that too as a domain user, but this needs to be mounted in fstab, so it > seems that I either > > 1) need to use a user (service) account - works > > 2) add the computer to domain users - works >Why would this make any difference? Domain Computers are already members of Domain Users by default. Roy
On Sun, 28 Jan 2024 12:56:49 -0800 Peter Carlson via samba <samba at lists.samba.org> wrote:> > On 1/28/24 12:39, Rowland Penny via samba wrote: > > On Sun, 28 Jan 2024 12:18:34 -0800 > > Peter Carlson via samba<samba at lists.samba.org> wrote: > > > >> Ok, so I started with a clean slate.? Same thing, only works if I > >> add the computer account to Domain users.? smbd Version > >> 4.15.13-Ubuntu > >> > >> root at u2cli:~# getent passwd CARLSON\\peter > >> CARLSON\peter:*:2001107:2000513::/home/peter at CARLSON:/bin/bash > >> > >> root at u2cli:~# mkdir -m 1777 /mnt/test > >> > >> root at u2cli:~# kinit -V -k U2CLI$ > >> Using default cache: /tmp/krb5cc_0 > >> Using principal:U2CLI$@CARLSON.LAB > >> Authenticated to Kerberos v5 > > I think running kinit might be your problem, I don't do that. > > I just started my VM, logged in as rowland, opened a terminal and > > ran the mount command. > > > > Rowland > > > ok, so I can do that too as a domain user, but this needs to be > mounted in fstab, so it seems that I eitherOK, so you now seem to be saying the mount is now working from the command line, so try unmounting the share. Then add this to fstab: //fs1.carlson.lab/test /mnt/test cifs sec=krb5,username=U2CLI$,multiuser Now reboot and then log in again, is there anything in /mnt/test ? Rowland