Samba user discussion

headers Chris Cooper | 1 Dec 2007 02:00 · /samba/

I've been running a couple Centos5 and RHEL4/5 servers with samba for a
while now and everything has been working great with our Windows 2003 AD.

All of a sudden though I'm experience something really weird on one of the
RHEL5 boxes.  Whenever I try to connect as a Domain Admin from one
particular Vista client, I get access denied and repeated prompts for a
username/password - this has always worked in the past, and still does using
any domain admin account from any other computer (XP or Vista).

Looking at the log I see this when connecting as a Domain Admin from a good
client:
connect to service Reports initially as user XXXXX+yyyyyy (uid=0,
gid=16777220)
and when connecting as a the same Domain Admin from the bad vista client:
connect to service Reports initially as user XXXXX+yyyyyy (uid=16777222,
gid=16777220)

The other share, with a force user=localuser option set produces the
following:
connect to service htdocs initially as user XXXXX+yyyyyy (uid=501,
gid=16777220)
and when connecting as a the same Domain Admin from the bad vista client:
connect to service htdocs initially as user XXXXX+yyyyyy (uid=16777222,
gid=16777220)

So it appears that any connections coming from this one workstation are not
recognised as Domain Admin members.

This particular workstation can connect to any of our other samba servers
(same version 3.0.26a-SerNet-RedHat or older 3.0.21b-2) with

Mon	Tue	Wed	Thu	Fri	Sat	Sun

					1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30
31

327	June 2013
598	May 2013
555	April 2013
529	March 2013
627	February 2013
542	January 2013
476	December 2012
345	November 2012
511	October 2012
321	September 2012
487	August 2012
416	July 2012
340	June 2012
531	May 2012
378	April 2012
371	March 2012
402	February 2012
458	January 2012
364	December 2011
444	November 2011
386	October 2011
343	September 2011
449	August 2011
363	July 2011
448	June 2011
326	May 2011
389	April 2011
610	March 2011
526	February 2011
584	January 2011
459	December 2010
471	November 2010
544	October 2010
501	September 2010
454	August 2010
609	July 2010
646	June 2010
748	May 2010
637	April 2010
726	March 2010
554	February 2010
644	January 2010
544	December 2009
625	November 2009
734	October 2009
606	September 2009
606	August 2009
695	July 2009
432	June 2009
510	May 2009
453	April 2009
762	March 2009
472	February 2009
573	January 2009
501	December 2008
584	November 2008
723	October 2008
554	September 2008
803	August 2008
758	July 2008
728	June 2008
705	May 2008
742	April 2008
643	March 2008
847	February 2008
781	January 2008
583	December 2007
663	November 2007
636	October 2007
578	September 2007
707	August 2007
659	July 2007
911	June 2007
1030	May 2007
738	April 2007
776	March 2007
970	February 2007
886	January 2007
634	December 2006
810	November 2006
789	October 2006
1067	September 2006
1202	August 2006
1296	July 2006
856	June 2006
974	May 2006
832	April 2006
1240	March 2006
1236	February 2006
1367	January 2006
1106	December 2005
1392	November 2005
1570	October 2005
1337	September 2005
1304	August 2005
1256	July 2005
1376	June 2005
1531	May 2005
1687	April 2005
1857	March 2005
1557	February 2005
1629	January 2005
1327	December 2004
1347	November 2004
1495	October 2004
1937	September 2004
1430	August 2004
1728	July 2004
1565	June 2004
1662	May 2004
1479	April 2004
1932	March 2004
1903	February 2004
1901	January 2004
1663	December 2003
1958	November 2003
2089	October 2003
1710	September 2003
1650	August 2003
1661	July 2003
1822	June 2003
1699	May 2003
1561	April 2003
1903	March 2003
1830	February 2003
2024	January 2003
1614	December 2002
2127	November 2002
2403	October 2002
1814	September 2002
1837	August 2002
1789	July 2002
1919	June 2002
82	May 2002
1	January 2002
1	November 2001
1	August 2001
1	July 2001
1	February 2001
1	January 2001
2	July 2000
4	January 2000
1	December 1999
1	February 1997
1	January 1980

ADS - Not recognizing Domain Admin group membership (from 1 workstation only)

Re: serverbased profiles doesnt load at winxp login

Samba AD & LDAP

Re: blocked ports 445 and 139 make printer-shares very slow

Re: blocked ports 445 and 139 make printer-shares very slow

Re: Strange file permissions

Re[2]: INTERNAL ERROR: Signal 11 in pid xxxx (3.0.26a)

[3.2.0pre1] net ads join fails with NT_STATUS_NOLOGON_WORKSTATION_TRUST_ACCOUNT

Re: Big problems with 3.0.24-6etch6 Debian packages

Making a public drive where admin has write access