search for: serverpolicyaccesscheck

...e": "TGS-REQ with Ticket- > > > Granting Ticket", "domain": null, "account": null, "sid": null, > > > "logonServer": "ADMIRAL", "authTime": "2023-11-22T12:55:27.226868- > > > 0800", "serverPolicyAccessCheck": null}} > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba You have an error during the KDC granting a TGT it seems. The server specially is the one named Admiral. Verify Kerberos on the Admiral...

...mputer": null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, "passwordType": "NTLMv1", "clientPolicyAccessCheck": null, "serverPolicyAccessCheck": null, "duration": 562}} NTLM CRAP authentication for user [CN]\[nileadmin] returned NT_STATUS_NO_SUCH_USER Auth: [winbind,NTLM_AUTH, ntlm_auth, 78791] user [CN]\[nileadmin] at [Thu, 23 Jan 2025 15:49:30.161233 PST] with [NTLMv1] status [NT_STATUS_LOGON_FAILURE] workstation [CN] rem...

...er": null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, "passwordType": "NTLMv1", "clientPolicyAccessCheck": null, "serverPolicyAccessCheck": null, "duration": 60286}} I edited the password of the domain-user "BUERO\scanner" multiple times and edited it in the scanner settings also. Right now I added : server min protocol = SMB2 maybe I should try NT1 here?? (is that possible per share?) I remember tha...

..., "authType": "TGS-REQ with Ticket- > > Granting Ticket", "domain": null, "account": null, "sid": null, > > "logonServer": "ADMIRAL", "authTime": "2023-11-22T12:55:27.226868- > > 0800", "serverPolicyAccessCheck": null}}

...quot;netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", > "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, > "passwordType": "Plaintext", "clientPolicyAccessCheck": null, > "serverPolicyAccessCheck": null, "duration": 1995}} > samba ? ? ?| Calling samba_kcc script > > /Marco > > Samba 4.21.1 is available in Debian backports, no need to use testing. The Debian maintainer also has a private repo with recent versions at http://www.corpit.ru/mjt/packages/samba/ D...

On Fri, 6 Dec 2024 12:29:03 +0100 Mitja Tav?ar via samba <samba at lists.samba.org> wrote: > Il 06/12/24 10:45, Rowland Penny via samba ha scritto: > > On Fri, 6 Dec 2024 10:19:31 +0100 > > Mitja Tav?ar via samba <samba at lists.samba.org> wrote: > > > >> But the machine accoounts are not completely lost, they seem lost > >> if i query the Read

...ter": null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, "passwordType": "Plaintext", "clientPolicyAccessCheck": null, "serverPolicyAccessCheck": null, "duration": 98176}} Occasionally for success I get: Jun 03 08:27:44 hostname winbindd[774711]: final write to client failed: Broken pipe In the domain controller event log I get a pair of 4768 / 4769 event ids for the proceeding success cases and the failure case (clocks a...

..."netlogonTrustAccount": null, >>"netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, "passwordType": "Plaintext", "clientPolicyAccessCheck": null, >>"serverPolicyAccessCheck": null, "duration": 1995}} >>samba ? ? ?| Calling samba_kcc script >>/Marco >>Samba 4.21.1 is available in Debian backports, no need to use testing. The Debian maintainer also has a private repo with recent versions at >>http://www.corpit.ru/mjt/packages/sa...

...;: null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, "passwordType": "aess-hmac-sha1-96", "clientPolicyAccessCheck": null, "serverPolicyAccessCheck": null, "duration": 38190 Before I try rejoining the machines to the domain, I thought I'd ask if anyone else has experienced similar recently.. Thanks, Jonathan -- "If we knew what it was we were doing, it would not be called research, would it?" - Albert Ei...

...> "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", > "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, > "passwordType": "NTLMv1", "clientPolicyAccessCheck": null, > "serverPolicyAccessCheck": null, "duration": 60286}} > > > I edited the password of the domain-user "BUERO\scanner" multiple > times and edited it in the scanner settings also. > > Right now I added : > > server min protocol = SMB2 > > maybe I should try NT1 here...

..."0x00000000", > > > "netlogonSecureChannelType": 0, > > > "netlogonTrustAccountSid": null, "passwordType": > > > "Plaintext", > > > "clientPolicyAccessCheck": null, > > > "serverPolicyAccessCheck": null, > > > "duration": 5351}} > > > > > > log.samba has as litte info (at loglevel 3): > > > > > > [2023/10/26 20:21:10.240175, 3] > > > ../../source4/auth/ntlm/auth.c:206(au...

...ogonTrustAccount": null, >> "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, >> "netlogonTrustAccountSid": null, "passwordType": "Plaintext", >> "clientPolicyAccessCheck": null, "serverPolicyAccessCheck": null, >> "duration": 5351}} >> log.samba has as litte info (at loglevel 3): >> [2023/10/26 20:21:10.240175,? 3] >> ../../source4/auth/ntlm/auth.c:206(auth_check_password_send) >> ? auth_check_password_send: Checking password for unmapped user >&gt...

..."netlogonTrustAccount": null, >>"netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, "passwordType": "Plaintext", "clientPolicyAccessCheck": null, >>"serverPolicyAccessCheck": null, "duration": 1995}} >>> samba ? ? ?| Calling samba_kcc script >>> /Marco > >>> Samba 4.21.1 is available in Debian backports, no need to use testing. The Debian maintainer also has a private repo with recent versions at >>http://www.corpit.r...

...t;: null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, "passwordType": "arcfour-hmac-md5", "clientPolicyAccessCheck": null, "serverPolicyAccessCheck": null, "duration": 13880}} [2024/08/14 16:34:51.368927, 0] ../../source4/dsdb/repl/replicated_objects.c:1244(dsdb_origin_objects_commit) ../../source4/dsdb/repl/replicated_objects.c:1244: Failed add of CN=NTDS Settings,CN=DC6,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Conf...