Displaying 20 results from an estimated 700 matches similar to: "v3.0.X kerberos_verify sol8 compile problem"
2003 Oct 16
0
Samba 3.0.0 CVS 3.0.1pre2: "libads/kerberos_verify.c", line 77: improper member use: keyblock
This has been submitted to https://bugzilla.samba.org/ as Bug 636
I'm trying to build Samba 3.0.0 CVS 3.0.1pre2 under Solaris 8 with
MIT Kerberos 5 1.3.1
OpenLDAP 2.1.22
using the Sun Workshop 6U2 compiler
Arguments to configure are:
configured by ./configure, generated by GNU Autoconf 2.53,
with options \"'--with-readline' '--with-libiconv=/usr/local'
2004 Jan 05
1
Samba requesting nonexistent keytab type?
Hello,
I have been working diligently since my last post to solve the error
I've been receiving. I did manage to fix the credentials problem, but
now I am at the same point where many others are, mainly, when doing
hostname mapping (net use X: \\foo\bar), Samba prompts for a username
and password and does not use Kerberos.
In my error logs:
[2004/01/05 15:51:59, 10]
2003 Oct 28
2
v3.0.0, AD, 2k3 mumbles
I'm running a Samba 3.0.0 server in production in security = ADS mode
against a W2k ADS server. Works just fine, thanks!
We're sort of under pressure to regrade to a 2003 AD server, which sent
me trying stuff out a bit. Meager results. The 3.0.0 I have (linked
with MIT krb5-1.2.8) refuses to verify incoming tickets:
[2003/10/28 16:27:36, 3]
2003 Dec 17
0
Unable to create keytab in samba 3.0.1
List-
I have several samba 3.0.0 file/print servers running in a Windows 2000
AD domain. I do not use winbind; but have an LDAP database for Unix
UID's with nss_ldap. I have MIT krb5-1.3.1. When I have tried to upgrade
these machines to samba 3.0.1, clients get prompted for a user name and
password when trying to connect. I have seen others with this problem,
but none of their fixes have
2012 Apr 20
1
Upgrading from V3.0 production system to V3.3
Before I undertake this upgrade I thought I would see if anyone has any advice
on how to do this on a production system. Maybe someone has already "fought
this dragon".
Current config Gluster V3.0.0. This has been in production for over 16 months:
2 servers with 8 x 2TB hard drives (bricks) replicated
svr1:vol1 <-> srv2:vol1 -> rbrick1
svr1:vol2 <-> srv2:vol2 ->
2004 Apr 19
1
Samba 3.0.2a with ADS w2k3 Active Directory, enctypes
Hi people,
I have a Linux box running Samba 3.0.2a in ADS mode MIT Kerberos 1.3.3. My
W2K e WXP users can't access the linux box by netbios name, the only access
that works is by IP address, I know that's caused because access thought IP
address don't make use of Kerberos. The most strange for me it's that the
same environment works fine with a W2K Active Directory, I read in same
2004 Apr 20
1
RES: Samba 3.0.2a with ADS w2k3 Active Directory, enctype s
Hi Jim,
I did what the doc says but the problem is the same.
Does anybody saw this work ? I mean, is the Samba 3.0.2a+Kerberos MIT 1.3.3
able to be accessed by a WXP, W2K or W2K3 machine, using Kerberos tickets
generated in a Windows 2003 KDC (W2K3 AD) ?
Thanks
-----Mensagem original-----
De: Jim McDonough [mailto:jmcd@us.ibm.com]
Enviada em: segunda-feira, 19 de abril de 2004 17:07
Para:
2017 Nov 09
3
Slow Kerberos Authentication
Hai,
You may need to add the the following in krb5.conf
[libdefaults]
allow_weak_crypto = true
; for Windows 2003
; default_tgs_enctypes = rc4-hmac des-cbc-crc des-cbc-md5
; default_tkt_enctypes = rc4-hmac des-cbc-crc des-cbc-md5
; permitted_enctypes = rc4-hmac des-cbc-crc des-cbc-md5
; for Windows 2008 with AES
default_tgs_enctypes = aes128-cts-hmac-sha1-96
2013 Oct 09
1
URGENT - production server stops working (v3.6)
Hello,
i need some help. A samba3 (3.6.9-151.el6_4.1) ADS member (WIN 2008 AD
Master) Server did his work for years. Since hours some Clients can not
connect to the name (\\fileserver)
connecting to \\192... sometimes work.
Log say:
2013/10/09 09:54:27.735101, 3] smbd/sesssetup.c:660(reply_spnego_negotiate)
reply_spnego_negotiate: Got secblob of size 1638
[2013/10/09 09:54:27.735423, 3]
2009 May 04
2
bad encryption type in AD domain authentication
Hello,
I'm trying to access a samba share using an ADS user credentials. I always
get an error, and the debug traces (log level = 5) are giving me the output
in the follow.
I have searched the samba ML archives, and I have found the thread
http://lists.samba.org/archive/samba/2004-April/084545.html
but, before asking the system admin to apply the eventual KB fixes, I would
like to know if the
2005 Apr 16
1
Problems with ADS membership in win2k domain
I'm having problems with ADS membership for samba. I had a "mostly"
working version with RHES v2.1, krb5 v1.2, samba v3.0.5.
I knew to get to a fully functioning version I would need krb5 v1.3
or later. So finally I had an opertunity to junk RH's crufty krb5
and build from scratch with:
RHES v2.1
MIT krb5 v1.4
samba v3.0.13
This works fine on another server. Now to the
2012 May 04
1
s3 connect to s4 ads woes, need guidance..
I'm beating my head up against the wall here.. Need some extra eyes!!!
Setup -- Samba4 Domain Controller and samba3 print server.. DNS
FlatFile,, All dns works..
Issue, When I browse to the print Server vi \\IP-Address I am able to
connect just fine.. When I browse using \\netbios-name I connect to the
server but it opens up a username/pass dialog box and no name or
passwords will work..
2017 Nov 10
2
Slow Kerberos Authentication
No, no idee, but really, upgrade to samba, best option, in my opinion.
If thats not possible, it happens..
A timeout option can be set in krb5.conf
for example : kdc_timeout = 5000
You have these for krb5.conf to try out also.
the complete list.
des-hmac-sha1
DES with HMAC/sha1 (weak)
aes256-cts-hmac-sha1-96 aes256-cts AES-256
CTS mode with 96-bit SHA-1 HMAC
2006 Sep 21
1
Unable to connect samba server using hostname [2]
Hi,
I've got th same problem than in this tread (no solution found) :
http://lists.samba.org/archive/samba/2005-November/113914.html
except I've got the problem on all stations.
I am unable to connect to samba server using it's hostname, whereas it's
work with IP address. When I use the hostname, Samba always request for
login/password.
[2006/09/21 12:59:04, 3]
2004 May 27
3
Any ideas ?
Hints or check lists for that type or error ?
[2004/05/27 14:11:06.627563, 10, pid=23616]
libads/kerberos_verify.c:ads_verify_ticket(185)
ads_verify_ticket: enc type [1] failed to decrypt with error Bad
encryption type
[2004/05/27 14:11:06.627589, 10, pid=23616]
passdb/secrets.c:secrets_named_mutex_release(716)
secrets_named_mutex: released mutex for replay cache mutex
[2004/05/27
2003 Dec 11
4
Windows 2000 and krb5 tickets.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
OK. I've done some more research, and here's what I get.
smbd --version
Version 3.0.0
strings libkrb5.so.3.2 | grep BRAND
KRB5_BRAND: krb5-1-3-1-final 1.3.1 20030730
Everything seems to work, but trying to access the Samba server results in:
[2003/12/11 14:54:19, 3] libads/kerberos_verify.c:ads_verify_ticket(308)
~ ads_verify_ticket: enc
2006 Sep 18
1
username map change = samba failure
Since I haven't gotten any responses from the segfault log I posted
earlier, I will try another approach. Below is what happens when a
client tries to connect. Again, this all started after I changed a
username mapping entry from root = DOMAIN\Administrator to root =
@"DOMAIN\Domain Admins". This is in a security = ADS setup. wbinfo -u
and -g return the correct information.
2003 Dec 06
2
sol8 - rsync2.5.6 - cannot rsync at all
hi,
using sol8 sparc platform with recommended patch set from sun.
dloaded/installed rsync and popt(prerequsite) from sunfreeware.com (bin for
sol8 sparc)
# pkgadd -d ./popt-1.7-sol8-sparc-local all
# pkgadd -d ./rsync-2.5.6-sol8-sparc-local all
Problem :
can rsync locally but cannot rsync over network ; can rcp over network
can rsync locally :
oracle@sys2:/apps/oracle/dba> touch
2003 Sep 02
1
source code for samba-2.2.8a-1-sol8-suncc-64bit.pkg
Hi all,
Where could I get souce code for samba-2.2.8a-1-sol8-suncc-64bit.pkg, I
checked in samba.org but I just found pacakage(
samba-2.2.8a-1-sol8-suncc-64bit.pkg).
Thanks,
Madhavi
2001 Oct 26
1
PAM session cleanup on Sol8 with v2.9.9p2
In do_pam_cleanup_proc(), there are 3 calls to PAM:
1) pam_close_session() - do lastlog stuff
2) pam_setcred(PAM_DELETE_CRED) - delete credentials
3) pam_end() - close PAM
It appears that pam_setcred() always fails with the error PAM_PERM_DENIED.
This is due to a check done pam_unix.so to not allow a caller with euid 0
to even try to delete their SECURE_RPC credentials. When sshd calls