similar to: Strange SAMBA4 situation

Hi, Anybody got experienced that the shared folder (in SAMBAAD domain) can't be accessible on the trusting domain (TESTHV). Background: SAMBAAD has one-way trust with TESTHV. TESTHV users can login in the SAMBAAD connected machines. Currently using Version 4.9.0rc5. It's working fine if the SAMBAAD users access with it, but users in TESTHV could not access with it even the permission

Hi, Since I really would like some more info (specifically: remote ip address) to be logged with failed password attempts, I have tried to edit the samba source code. :-) Anyway, I changed in source4/auth/ntlm/auth.c > if (tevent_req_is_nterror(req, &status)) { > DEBUG(2,("auth_check_password_recv: " > "%s authentication for user [%s\\%s] " >

On 26.11.2015 03:51, mourik jan heupink wrote: > Hi, > > Since I really would like some more info (specifically: remote ip > address) to be logged with failed password attempts, I have tried to > edit the samba source code. :-) > > Anyway, I changed in source4/auth/ntlm/auth.c > > >> if (tevent_req_is_nterror(req, &status)) { >>

Hello guys, I got a really annoying problem with public sharing on samba4. Here what's happening: I installed the samba4 packet on a Debian (3.5.0-42-generic). After that I edited the /etc/samba/smb.conf as follows: [global] workgroup = WORKGROUP netbios name = dc-000-051 security = user map to guest = Bad User guest account = www-data

Guys...help! xD ------------------------------------------------------------------------------------------------------------------------------- De: Danilo Pessoa Cardoso Enviada em: quinta-feira, 24 de outubro de 2013 12:12 Para: 'samba at lists.samba.org' Assunto: ENC: Problems with public sharing on samba4 Hello guys, I got a really annoying problem with public sharing on samba4.

Hello List, I'm dealing with the following issue here: https://forum.zentyal.org/index.php?topic=25300.0 Although it starts with OpenChange, it ends with Samba4 so I very much hope that somebody on this list can help me out. Basically I try to authenticate users through the Outlook autoconfigurator using RPC-OVER-HTTP to a samba server. The problem is that in Samba4/LDAP I cannot have

Hello again, user at my.domain working for me with dovecot-imap/ exim ads samba4.1.17. Ex: hosts = my.ads.host:389 dn = cn=myuser ,cn=users,dc=my,dc=domain dnpass = secret auth_bind = yes ldap_version = 3 base = cn=Users,dc=my,dc=domain scope = subtree user_filter = (mail=%u) pass_filter = (mail=%u) pass_attrs = mail=%u,= userPassword=password You see the "user at my.domain" is

Hi Viktor! Thanks for your try at this, I am already doing what you suggest: the iptables - timestaps. But that is rather troublesome, and I would very much samba to log this vital info. Anyway, I tried what you suggested, and now it stopped compiling. :-) Does this error perhaps tell you something, or are you just as clueless as I am now: > [1955/4033] Compiling source4/auth/ntlm/auth.c

Sorry for my delayed response, my job has had me out of state for a while. I wanted to add that I am not getting the Kerberos error in my event logs. It just flat out claims that it cannot read gpt.ini for some reason. This happens randomly, whether dc01 or dc02 is the logon server, and the strange part is that most PCs can work fine, but one or two randomly won't. In other words, if pc1 and

Hai, Yeah, you have probely one of these 2 problems. ( or both ) 1) This is probely because your "computer" *(user) does not have any acces. Recheck you permissions on the share and and folders for that specific policie. 2) Connections specific suffic and/or network suffic is wrong. Check if you pc is setup correct with dhcp. Ipconfig /all ( check these, and make sure you have

I dont read any france but translators work ok. ;-) pfew.. Ok any firewalling on the DC's? if so, open TCP and UDP port 88. Or try short without firewalls on, on the DC's. Other options to try is recude the MaxPacketSize in windows. Looks like a to big package which is rejected. Ow and above is also needed on the DNS port 53. Open tcp and udp. If the upd packages are to big,

Ok, same as im running. DC => (replicated zones) => Slave DNS << == Client pc's. Have you tried to reset the network id manualy from withing windows. ( where you change/add the computer to the network ) The button "change network-id." I have seen these things also with pc's which are wrongly syspreped. Which cases same SID's for the pc's. But

Hi all, I tried samba 4.8.3, 4.8.4 and 4.8.5 to build a domain. In the domain I firstly create a machine acconut and set it's password. Then I get a computer that own this machine account's name. I use the mechod NetJoinDomain to get this computer authencated to the domain. It failed with returncode 1326. Besides, all the process above is avaliable in samba 4.5.16. So does any default

I found this one. Check which one works for you. http://www.eventid.net/display-eventid-40960-source-LSASRV-eventno-8508-phase-1.htm Im sure this is not a samba configuration problem. Greetz, Louis > -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens L.P.H. van Belle > Verzonden: dinsdag 29 maart 2016 16:18 > Aan: samba at

On Sun, 26 Jun 2016 09:24:16 Rowland penny <rpenny at samba.org> wrote: > ... > So, if you are looking for an ipaddress of a failed login attempt, it > seems you can get it. That looked interesting. I tried creating the logfile /var/log/samba/.log.samba.%m and restart samba. What it did was immediately create separate log files for each currently attached workstation:

On 26/06/16 06:16, Mark Foley wrote: > I used to also get related log messages of the form: > > auth_check_password_send: Checking password for unmapped user [HPRS]\[mark]@[ROVER] > auth_check_password_send: mapped user is: [HPRS]\[mark]@[ROVER] > > but now all I get is the auth_check_password_recv in the log. Perhaps the change is due to an > upgrade to Samba, or perhaps

This may have been asked before, but I can't find it. I am getting repeated external attempted to log into our AD/DC (running Samba 4.4.14). In /var/log/samba/log.samba I get entried like: 2017/09/19 05:02:25.562957, 2] ../source4/auth/ntlm/auth.c:430(auth_check_password_recv) auth_check_password_recv: sam_ignoredomain authentication for user [HPRS\333] FAILED with error

Hai Mark, I see the bugreport for this is still untouched. https://bugzilla.samba.org/show_bug.cgi?id=11998 Is vfs_full_audit not an option? with %I you can log the IP address of the client machine. But i dont know if that wil work of if vfs_full_audit hase that option. With something like this. full_audit:prefix = %u|%I|%m|%S full_audit:failure = connect full_audit:success = connect

I hate 'me too' replies - but I have also been struggling with this for some years in my multi-DC environment. (yes, replicated sysvol via lsyncd + rsync; permissions looked identical via getfacl last time I checked). Sometimes a client machine will run gpupdate just fine; other times it will fail, seemingly randomly. My next step was going to be to run wireshark on a client machine to

Puppet 2.7.17 is a maintenance release for Puppet in the 2.7.x series. It contains a fix for the ubuntu service regression in 2.7.16 (#15027, #15028, #15029). Downloads are available at: * Source https://downloads.puppetlabs.com/puppet/puppet-2.7.17.tar.gz Windows package is available at https://downloads.puppetlabs.com/windows/puppet-2.7.17.msi RPMs are available at