"Boisvert, Stéphane"
2006-Oct-12 03:03 UTC
[Samba] Problem: samba refuse my user with error message : NT_STATUS_NO_ SUCH_USER
Hi all, I'm trying to make samba authenticate to my Active Directory Domain. I already configured and tested Kerberos5 and joined my machine to my domain with no problems, getent passwd and group give me the correct output also wbinfo give a good output too, and I can logon using my domain user to SSH and to my server console, so I assume my Kerberos config is correct. Also I didn't configure the LDAP client but as I see while googleing it is only needed to have the same UID on all my Linux servers for AD users. Here some outputs to help you to figure out my configuration. kinit give me the following tickets: Ticket cache: FILE:/tmp/krb5cc_0 Default principal: testuser@OPTIMUM.INC Valid starting Expires Service principal 10/11/06 15:35:20 10/12/06 01:35:20 krbtgt/OPTIMUM.INC@OPTIMUM.INC 10/11/06 15:38:01 10/12/06 01:35:20 ad_domain_cont$@OPTIMUM.INC 10/11/06 15:38:13 10/11/06 15:40:13 kadmin/changepw@OPTIMUM.INC My samba config is the following [global] log file = /var/log/samba/%m.log load printers = yes idmap gid = 10000-20000 template shell = /bin/bash root directory = /home wins server = 10.10.0.10 encrypt passwords = yes realm = OPTIMUM.INC dns proxy = no netbios name = lin-tst2 cups options = raw netbios aliases = linux-test2 server string = Samba Test Server idmap uid = 10000-19999 winbind enum users = yes winbind enum groups = yes winbind cache time = 10 password server = 10.10.0.66 workgroup = OPTIMUM debug level = 3 os level = 20 security = domain preferred master = no winbind separator = + max log size = 50 My Krb5.conf file is [logging] default = FILE:/var/log/krb5libs.log kdc = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log [libdefaults] default_realm = OPTIMUM.INC [realms] OPTIMUM.INC = { kdc = ad_domain_cont } [domain_realm] .kerberos.server = OPTIMUM.INC [kdc] profile = /var/kerberos/krb5kdc/kdc.conf When I try to connect a share from a windows station to my samba domain member the samba server doesn't find the username on ADS give a look at the errors in my samba logs. PS. Sorry for the long output I think my WinXP station try to connect 3 times. [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/10.10.20.100.log: No such file or directory [2006/10/11 16:19:46, 2] smbd/server.c:main(893) Changed root to /home [2006/10/11 16:19:46, 3] smbd/oplock.c:init_oplocks(1302) open_oplock_ipc: opening loopback UDP socket. [2006/10/11 16:19:46, 3] smbd/oplock_linux.c:linux_init_kernel_oplocks(278) Linux kernel oplocks not available [2006/10/11 16:19:46, 3] smbd/oplock.c:init_oplocks(1333) open_oplock ipc: pid = 2301, global_oplock_port = 1123 [2006/10/11 16:19:46, 3] smbd/process.c:process_smb(1091) Transaction 0 of length 137 [2006/10/11 16:19:46, 3] smbd/process.c:switch_message(886) switch message SMBnegprot (pid 2301) conn 0x0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [PC NETWORK PROGRAM 1.0] [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [LANMAN1.0] [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [Windows for Workgroups 3.1a] [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [LM1.2X002] [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [LANMAN2.1] [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [NT LM 0.12] [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/10.10.20.100.log: No such file or directory [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/10.10.20.100.log: No such file or directory [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/10.10.20.100.log: No such file or directory [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_nt1(333) using SPNEGO [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(549) Selected protocol NT LM 0.12 [2006/10/11 16:19:46, 3] smbd/process.c:process_smb(1091) Transaction 1 of length 240 [2006/10/11 16:19:46, 3] smbd/process.c:switch_message(886) switch message SMBsesssetupX (pid 2301) conn 0x0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655) wct=12 flg2=0xc807 [2006/10/11 16:19:46, 2] smbd/sesssetup.c:setup_new_vc_session(608) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(535) Doing spnego session setup [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(566) NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_spnego_negotiate(444) Got OID 1 3 6 1 4 1 311 2 2 10 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_spnego_negotiate(447) Got secblob of size 40 [2006/10/11 16:19:46, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62) Got NTLMSSP neg_flags=0xe2088297 [2006/10/11 16:19:46, 3] smbd/process.c:process_smb(1091) Transaction 2 of length 354 [2006/10/11 16:19:46, 3] smbd/process.c:switch_message(886) switch message SMBsesssetupX (pid 2301) conn 0x0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655) wct=12 flg2=0xc807 [2006/10/11 16:19:46, 2] smbd/sesssetup.c:setup_new_vc_session(608) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(535) Doing spnego session setup [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(566) NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2006/10/11 16:19:46, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(615) Got user=[testuser] domain=[OPTIMUM] workstation=[MY_COMPUTER] len1=24 len2=24 [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/MY_COMPUTER.log: No such file or directory [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/MY_COMPUTER.log: No such file or directory [2006/10/11 16:19:46, 3] auth/auth.c:check_ntlm_password(219) check_ntlm_password: Checking password for unmapped user [OPTIMUM]\[testuser]@[MY_COMPUTER] with the new password interface [2006/10/11 16:19:46, 3] auth/auth.c:check_ntlm_password(222) check_ntlm_password: mapped user is: [OPTIMUM]\[testuser]@[MY_COMPUTER] [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:push_sec_ctx(256) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 [2006/10/11 16:19:46, 3] smbd/uid.c:push_conn_ctx(365) push_conn_ctx(0) : conn_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:pop_sec_ctx(386) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] libsmb/namequery_dc.c:rpc_dc_name(145) rpc_dc_name: Returning DC AD_DOMAIN_CONT (10.10.0.66) for domain OPTIMUM [2006/10/11 16:19:46, 3] libsmb/cliconnect.c:cli_start_connection(1382) Connecting to host=AD_DOMAIN_CONT [2006/10/11 16:19:46, 3] lib/util_sock.c:open_socket_out(752) Connecting to 10.10.0.66 at port 445 [2006/10/11 16:19:46, 3] auth/auth_util.c:make_server_info_info3(1127) User testuser does not exist, trying to add it [2006/10/11 16:19:46, 0] auth/auth_util.c:make_server_info_info3(1134) make_server_info_info3: pdb_init_sam failed! [2006/10/11 16:19:46, 0] libsmb/samlogon_cache.c:netsamlogon_cache_store(123) netsamlogon_cache_store: cannot open netsamlogon_cache.tdb for write! [2006/10/11 16:19:46, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [testuser] -> [testuser] FAILED with error NT_STATUS_NO_SUCH_USER [2006/10/11 16:19:46, 3] smbd/process.c:process_smb(1091) Transaction 3 of length 240 [2006/10/11 16:19:46, 3] smbd/process.c:switch_message(886) switch message SMBsesssetupX (pid 2301) conn 0x0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655) wct=12 flg2=0xc807 [2006/10/11 16:19:46, 2] smbd/sesssetup.c:setup_new_vc_session(608) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(535) Doing spnego session setup [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(566) NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_spnego_negotiate(444) Got OID 1 3 6 1 4 1 311 2 2 10 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_spnego_negotiate(447) Got secblob of size 40 [2006/10/11 16:19:46, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62) Got NTLMSSP neg_flags=0xe2088297 [2006/10/11 16:19:46, 3] smbd/process.c:process_smb(1091) Transaction 4 of length 354 [2006/10/11 16:19:46, 3] smbd/process.c:switch_message(886) switch message SMBsesssetupX (pid 2301) conn 0x0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655) wct=12 flg2=0xc807 [2006/10/11 16:19:46, 2] smbd/sesssetup.c:setup_new_vc_session(608) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(535) Doing spnego session setup [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(566) NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2006/10/11 16:19:46, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(615) Got user=[testuser] domain=[OPTIMUM] workstation=[MY_COMPUTER] len1=24 len2=24 [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/MY_COMPUTER.log: No such file or directory [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/MY_COMPUTER.log: No such file or directory [2006/10/11 16:19:46, 3] auth/auth.c:check_ntlm_password(219) check_ntlm_password: Checking password for unmapped user [OPTIMUM]\[testuser]@[MY_COMPUTER] with the new password interface [2006/10/11 16:19:46, 3] auth/auth.c:check_ntlm_password(222) check_ntlm_password: mapped user is: [OPTIMUM]\[testuser]@[MY_COMPUTER] [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:push_sec_ctx(256) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 [2006/10/11 16:19:46, 3] smbd/uid.c:push_conn_ctx(365) push_conn_ctx(0) : conn_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:pop_sec_ctx(386) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] libsmb/namequery_dc.c:rpc_dc_name(145) rpc_dc_name: Returning DC AD_DOMAIN_CONT (10.10.0.66) for domain OPTIMUM [2006/10/11 16:19:46, 3] libsmb/cliconnect.c:cli_start_connection(1382) Connecting to host=AD_DOMAIN_CONT [2006/10/11 16:19:46, 3] lib/util_sock.c:open_socket_out(752) Connecting to 10.10.0.66 at port 445 [2006/10/11 16:19:46, 3] auth/auth_util.c:make_server_info_info3(1127) User testuser does not exist, trying to add it [2006/10/11 16:19:46, 0] auth/auth_util.c:make_server_info_info3(1134) make_server_info_info3: pdb_init_sam failed! [2006/10/11 16:19:46, 0] libsmb/samlogon_cache.c:netsamlogon_cache_store(123) netsamlogon_cache_store: cannot open netsamlogon_cache.tdb for write! [2006/10/11 16:19:46, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [testuser] -> [testuser] FAILED with error NT_STATUS_NO_SUCH_USER [2006/10/11 16:19:46, 3] smbd/process.c:timeout_processing(1336) timeout_processing: End of file from client (client has disconnected). [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 2] smbd/server.c:exit_server(571) Closing connections [2006/10/11 16:19:46, 3] smbd/connection.c:yield_connection(69) Yielding connection to [2006/10/11 16:19:46, 3] smbd/connection.c:yield_connection(76) yield_connection: tdb_delete for name failed with error Record does not exist. [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/10.10.20.100.log: No such file or directory [2006/10/11 16:19:46, 2] smbd/server.c:main(893) Changed root to /home [2006/10/11 16:19:46, 3] smbd/oplock.c:init_oplocks(1302) open_oplock_ipc: opening loopback UDP socket. [2006/10/11 16:19:46, 3] smbd/oplock_linux.c:linux_init_kernel_oplocks(278) Linux kernel oplocks not available [2006/10/11 16:19:46, 3] smbd/oplock.c:init_oplocks(1333) open_oplock ipc: pid = 2302, global_oplock_port = 1124 [2006/10/11 16:19:46, 3] smbd/server.c:exit_server(614) Server exit (normal exit) [2006/10/11 16:19:46, 3] smbd/process.c:process_smb(1091) Transaction 0 of length 137 [2006/10/11 16:19:46, 3] smbd/process.c:switch_message(886) switch message SMBnegprot (pid 2302) conn 0x0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [PC NETWORK PROGRAM 1.0] [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [LANMAN1.0] [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [Windows for Workgroups 3.1a] [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [LM1.2X002] [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [LANMAN2.1] [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(461) Requested protocol [NT LM 0.12] [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/10.10.20.100.log: No such file or directory [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/10.10.20.100.log: No such file or directory [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/10.10.20.100.log: No such file or directory [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_nt1(333) using SPNEGO [2006/10/11 16:19:46, 3] smbd/negprot.c:reply_negprot(549) Selected protocol NT LM 0.12 [2006/10/11 16:19:46, 3] smbd/process.c:process_smb(1091) Transaction 1 of length 240 [2006/10/11 16:19:46, 3] smbd/process.c:switch_message(886) switch message SMBsesssetupX (pid 2302) conn 0x0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655) wct=12 flg2=0xc807 [2006/10/11 16:19:46, 2] smbd/sesssetup.c:setup_new_vc_session(608) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(535) Doing spnego session setup [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(566) NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_spnego_negotiate(444) Got OID 1 3 6 1 4 1 311 2 2 10 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_spnego_negotiate(447) Got secblob of size 40 [2006/10/11 16:19:46, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62) Got NTLMSSP neg_flags=0xe2088297 [2006/10/11 16:19:46, 3] smbd/process.c:process_smb(1091) Transaction 2 of length 354 [2006/10/11 16:19:46, 3] smbd/process.c:switch_message(886) switch message SMBsesssetupX (pid 2302) conn 0x0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655) wct=12 flg2=0xc807 [2006/10/11 16:19:46, 2] smbd/sesssetup.c:setup_new_vc_session(608) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(535) Doing spnego session setup [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(566) NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2006/10/11 16:19:46, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(615) Got user=[testuser] domain=[OPTIMUM] workstation=[MY_COMPUTER] len1=24 len2=24 [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/MY_COMPUTER.log: No such file or directory [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/MY_COMPUTER.log: No such file or directory [2006/10/11 16:19:46, 3] auth/auth.c:check_ntlm_password(219) check_ntlm_password: Checking password for unmapped user [OPTIMUM]\[testuser]@[MY_COMPUTER] with the new password interface [2006/10/11 16:19:46, 3] auth/auth.c:check_ntlm_password(222) check_ntlm_password: mapped user is: [OPTIMUM]\[testuser]@[MY_COMPUTER] [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:push_sec_ctx(256) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 [2006/10/11 16:19:46, 3] smbd/uid.c:push_conn_ctx(365) push_conn_ctx(0) : conn_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:pop_sec_ctx(386) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] libsmb/namequery_dc.c:rpc_dc_name(145) rpc_dc_name: Returning DC AD_DOMAIN_CONT (10.10.0.66) for domain OPTIMUM [2006/10/11 16:19:46, 3] libsmb/cliconnect.c:cli_start_connection(1382) Connecting to host=AD_DOMAIN_CONT [2006/10/11 16:19:46, 3] lib/util_sock.c:open_socket_out(752) Connecting to 10.10.0.66 at port 445 [2006/10/11 16:19:46, 3] auth/auth_util.c:make_server_info_info3(1127) User testuser does not exist, trying to add it [2006/10/11 16:19:46, 0] auth/auth_util.c:make_server_info_info3(1134) make_server_info_info3: pdb_init_sam failed! [2006/10/11 16:19:46, 0] libsmb/samlogon_cache.c:netsamlogon_cache_store(123) netsamlogon_cache_store: cannot open netsamlogon_cache.tdb for write! [2006/10/11 16:19:46, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [testuser] -> [testuser] FAILED with error NT_STATUS_NO_SUCH_USER [2006/10/11 16:19:46, 3] smbd/process.c:process_smb(1091) Transaction 3 of length 240 [2006/10/11 16:19:46, 3] smbd/process.c:switch_message(886) switch message SMBsesssetupX (pid 2302) conn 0x0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655) wct=12 flg2=0xc807 [2006/10/11 16:19:46, 2] smbd/sesssetup.c:setup_new_vc_session(608) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(535) Doing spnego session setup [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(566) NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_spnego_negotiate(444) Got OID 1 3 6 1 4 1 311 2 2 10 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_spnego_negotiate(447) Got secblob of size 40 [2006/10/11 16:19:46, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62) Got NTLMSSP neg_flags=0xe2088297 [2006/10/11 16:19:46, 3] smbd/process.c:process_smb(1091) Transaction 4 of length 354 [2006/10/11 16:19:46, 3] smbd/process.c:switch_message(886) switch message SMBsesssetupX (pid 2302) conn 0x0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655) wct=12 flg2=0xc807 [2006/10/11 16:19:46, 2] smbd/sesssetup.c:setup_new_vc_session(608) setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources. [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(535) Doing spnego session setup [2006/10/11 16:19:46, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(566) NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] [2006/10/11 16:19:46, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(615) Got user=[testuser] domain=[OPTIMUM] workstation=[MY_COMPUTER] len1=24 len2=24 [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/MY_COMPUTER.log: No such file or directory [2006/10/11 16:19:46, 0] lib/debug.c:reopen_logs(589) Unable to open new log file /var/log/samba/MY_COMPUTER.log: No such file or directory [2006/10/11 16:19:46, 3] auth/auth.c:check_ntlm_password(219) check_ntlm_password: Checking password for unmapped user [OPTIMUM]\[testuser]@[MY_COMPUTER] with the new password interface [2006/10/11 16:19:46, 3] auth/auth.c:check_ntlm_password(222) check_ntlm_password: mapped user is: [OPTIMUM]\[testuser]@[MY_COMPUTER] [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:push_sec_ctx(256) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 [2006/10/11 16:19:46, 3] smbd/uid.c:push_conn_ctx(365) push_conn_ctx(0) : conn_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:pop_sec_ctx(386) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 3] libsmb/namequery_dc.c:rpc_dc_name(145) rpc_dc_name: Returning DC AD_DOMAIN_CONT (10.10.0.66) for domain OPTIMUM [2006/10/11 16:19:46, 3] libsmb/cliconnect.c:cli_start_connection(1382) Connecting to host=AD_DOMAIN_CONT [2006/10/11 16:19:46, 3] lib/util_sock.c:open_socket_out(752) Connecting to 10.10.0.66 at port 445 [2006/10/11 16:19:46, 3] auth/auth_util.c:make_server_info_info3(1127) User testuser does not exist, trying to add it [2006/10/11 16:19:46, 0] auth/auth_util.c:make_server_info_info3(1134) make_server_info_info3: pdb_init_sam failed! [2006/10/11 16:19:46, 0] libsmb/samlogon_cache.c:netsamlogon_cache_store(123) netsamlogon_cache_store: cannot open netsamlogon_cache.tdb for write! [2006/10/11 16:19:46, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [testuser] -> [testuser] FAILED with error NT_STATUS_NO_SUCH_USER [2006/10/11 16:19:46, 3] smbd/process.c:timeout_processing(1336) timeout_processing: End of file from client (client has disconnected). [2006/10/11 16:19:46, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/10/11 16:19:46, 2] smbd/server.c:exit_server(571) Closing connections [2006/10/11 16:19:46, 3] smbd/connection.c:yield_connection(69) Yielding connection to [2006/10/11 16:19:46, 3] smbd/connection.c:yield_connection(76) yield_connection: tdb_delete for name failed with error Record does not exist. [2006/10/11 16:19:46, 3] smbd/server.c:exit_server(614) Server exit (normal exit) I find it strange that the samba cannot find my username but the PAM configuration work very well and authenticate my user just fine. I can log as OPTIMUM+testuser on SSH or CONSOLE with my AD password. Anyone can help please! Thanks Everyone Steph.