Solved FTP access using 'DOMAIN+username' as username. /var/log/messages: May 23 16:15:19 NAS20 httpd(pam_unix)[4867]: authentication failure; logname= uid=48 euid=48 tty= ruser= rhost= user=OWDEV+dmoron May 23 16:15:19 NAS20 pam_winbind[4867]: user 'OWDEV+dmoron' granted access
But this user name isn't useful for SMB access. Windows allows only 'DOMAIN\username' or '[EMAIL PROTECTED]' as usernames. I tried to change the 'winbind separator' atribute in smb.conf but it is automatically overwriten when samba service is restarted. How can I access a share using SMB? Thak you, David Moron escribió: > Hi, > > I have a W2003 Active Directory (10.0.0.190) and I want the AD users to > access the OF 2.0 shares. I've joined Openfiler correctly to the domain > and users and groups are correctly listed but when I try to access a > share using FTP access and a user AD account then FTP client reports a > bad login password and /var/log/messages shows: > > May 23 13:34:35 NAS20 pam_winbind[4493]: request failed: No such user, > PAM error was 10, NT error was NT_STATUS_NO_SUCH_USER > May 23 13:35:38 NAS20 httpd(pam_unix)[4493]: check pass; user unknown > May 23 13:35:38 NAS20 httpd(pam_unix)[4493]: authentication failure; > logname= uid=48 euid=48 tty= ruser= rhost= > May 23 13:35:38 NAS20 pam_winbind[4493]: request failed: No such user, > PAM error was 10, NT error was NT_STATUS_NO_SUCH_USER > > If I try to access the same share using SMB protocol then /var/log/messages: > > May 23 13:48:47 NAS20 pam_winbind[4490]: request failed: No such user, > PAM error was 10, NT error was NT_STATUS_NO_SUCH_USER > May 23 13:49:08 NAS20 smbd[4588]: [2006/05/23 13:49:08, 0] > lib/util_sock.c:get_peer_addr(1000) > May 23 13:49:08 NAS20 smbd[4588]: getpeername failed. Error was > Transport endpoint is not connected > May 23 13:49:08 NAS20 smbd[4588]: [2006/05/23 13:49:08, 0] > lib/access.c:check_access(309) > May 23 13:49:08 NAS20 smbd[4588]: ret is 1 > May 23 13:49:08 NAS20 smbd[4588]: [2006/05/23 13:49:08, 0] > lib/util_sock.c:get_peer_addr(1000) > May 23 13:49:08 NAS20 smbd[4588]: getpeername failed. Error was > Transport endpoint is not connected > May 23 13:49:08 NAS20 smbd[4588]: [2006/05/23 13:49:08, 0] > lib/util_sock.c:write_socket_data(430) > May 23 13:49:08 NAS20 smbd[4588]: write_socket_data: write failure. > Error = Connection reset by peer > May 23 13:49:08 NAS20 smbd[4588]: [2006/05/23 13:49:08, 0] > lib/util_sock.c:write_socket(455) > May 23 13:49:08 NAS20 smbd[4588]: write_socket: Error writing 4 bytes > to socket 5: ERRNO = Connection reset by peer > May 23 13:49:08 NAS20 smbd[4588]: [2006/05/23 13:49:08, 0] > lib/util_sock.c:send_smb(647) > May 23 13:49:08 NAS20 smbd[4588]: Error writing 4 bytes to client. -1. > (Connection reset by peer) > May 23 13:49:08 NAS20 smbd[4589]: [2006/05/23 13:49:08, 0] > lib/access.c:check_access(309) > May 23 13:49:08 NAS20 smbd[4589]: ret is 1 > > If I do a nslookup of the peer (laptop.owdev.net) the the error is only: > May 23 13:49:08 NAS20 smbd[4589]: [2006/05/23 13:49:08, 0] > lib/access.c:check_access(309) > May 23 13:49:08 NAS20 smbd[4589]: ret is 1 > > > My Openfiler configuration is: > Use Windows domain controller and authentication: > - Security model: AD > - Domain / Workgroup: OWDEV > - Domain controllers: 10.0.0.190 > - ADS realm: OWDEV.NET > - Join domain --> Joined succesfully > > #net rpc testjoin > Join to 'OWDEV' is OK > > SMB Settings: > Server string: Openfiler NAS > NetBIOS name: NAS20 > WINS server: 10.0.0.190 > Passwords: Use encrypt passwords > SMB homes volume: No home volume > > #wbinfo -u and -g lists AD users and Groups. > > I configured the sahre to allow public access and RW access to > "OWDEV+Domain User" Group but the problem goes on. > > I've been googling for some hours but I've not been able to find a solution. > > Thank you in advance, > -- David Morón Ruano Coordinador de Proyectos Grupo OpenWired, S.L. Caballero, 87 bajos - 08029 - Barcelona (Spain) Tel (+34) 93/410 75 70 - Fax (+34) 93/419 45 91 www.openwired.net, www.tecnologialinux.com _______________________________________________ Openfiler-users mailing list [email protected] https://lists.openfiler.com/mailman/listinfo/openfiler-users
