search for: nas1dev

...to the SPN request(??) and I get the error in smbd.<client ip> 2018/04/25 17:11:58.506095, 1] ../source3/librpc/crypto/gse.c:649(gse_get_server_auth_token) gss_accept_sec_context failed with [Unspecified GSS failure. Minor code may provide more information: Request ticket server cifs/nas1dev.external.com at AD.INTERNALONE not found in keytab (ticket kvno 3)] i tried "ignore_acceptor_hostname = true" in krb5.conf, but it has no effect workarounds: if i access the samba host by IP address or nas1dev.AD.INTERNALTWO.COM it works access from a linux host using the nas1dev.e...

Hai, >From your smb. > realm = AD.INTERNALTWO.COM > netbios name = nas1dev-rhel7 > server string = nas1dev-rhel7 Is i expect cifs/nas1dev-rhel7.ad.yourPrimaryDomain.tld at AD.INTERNALTWO.COM Check you hosts file and resolve.conf Like in what is the output of : hostname -I and hostname -A For cifs kerberos tickets, add in krb5.conf the following lines....

...get the error in > smbd.<client ip> > 2018/04/25 17:11:58.506095, 1] > ../source3/librpc/crypto/gse.c:649(gse_get_server_auth_token) > gss_accept_sec_context failed with [Unspecified GSS failure. > Minor code may provide more information: Request ticket server > cifs/nas1dev.external.com at AD.INTERNALONE not found in keytab (ticket > kvno 3)] > > > smb.conf excerpt: > [global] > idmap config * : range = 1000000-1999999 > idmap config * : backend = tdb > idmap config INTERNALTWO range = 1000000-1999999 >...

...samba wrote: > I think you need to read this wiki page: > > https://wiki.samba.org/index.php/Setting_up_Samba_as_a_Domain_Member I wont argue you that, I inherited this config and only know enough about samba to be dangerous ;) > Finally, the error message is telling you that 'nas1dev.external.com' > needs an SPN and this also needs to be in /etc/krb5.keytab > What I want to understand it why I need this SPN when accessing this host from windows client in another domain, but when I access from IP or from Linux to DNS this isn't an issue. Also I am not sure how...