Server :: Samba Rejects Client Passwords?
Dec 8, 2010
So a while back I decided I wanted to get to know Linux a little bit and I figured the most immediately useful thing for me would be a small home server. About this time I discovered plug computers and I eventually bought myself a Guruplug for this purpose - a small, cheap, power-efficient ARM architecture thing running Debian 5.0.6. Since then I've kind of ambled along with the project as and when time permitted (installing, tweaking, scouring manpages and tutorials is fun, but takes a lot of time), and have now finally got a nice big external harddrive formatted as ext3 and hooked up to it. The time seemed right to go for the samba install. I installed from the Debian repository, configured using SWAT and immediately hit problems.
Since the only user is me and the only access to the computer is over SSH, I have few accounts - there's root which I've disabled from access altogether, there's my sudoer account magnus, and there's my new test account magnus-smb. This one is a standard user, and has identical Unix password and samba password (added with smbpasswd). I intend to keep this up with a separate samba-access account - I'm a little paranoid about allowing any kind of access to sudoer accounts and won't even let SSHD accept password based logins.
Setting up samba, I basically tried to make it do as little as I needed to get a local file server going. The only share is homes, and its path goes to my external drive. The drive itself is mounted as rw,noexec,user from fstab.
Now, with all of that set up I'd hoped I'd be able to mount my homes shares and go. This proved not to be the case - if I set encrypted passwords = yes, my Windows 7 clients behave differently. The magnus account connects but can't authenticate - all passwords are rejected. The magnus-smb account is apparently accepted but then receives a "network path not found" error. If I set it to no, both accounts are prevented from even attempting to authenticate, and I get an error message about "this account is not approved for logging on from this station" (translation from Norwegian). I've been searching around but not finding much. I did find one article claiming this was easier after samba 3.3 and discovered that my manpages said samba 3.2. Yesterday I therefore decided to reinstall samba from source, only to find that the current stable release (3.5) also claims to be version 3.2 in it's manpages, so I probably might as well not have bothered. Oh well, at least I've installed something from source now.
My smb.conf:
Code:
# Samba config file created using SWAT
# from UNKNOWN (Q@)
# Date: 2010/12/08 12:59:41
[Code]....
View 3 Replies
ADVERTISEMENT
Dec 27, 2010
Background:I have a small PC104 running opensuse 11.1. I'm writing a small client/server application for debugging purposes using mono and WCF. All the client does is make a request for information every 100ms.Problem:After about 20 requests the server quits responding to the client. Even if the client is running on the same machine. I've run the exact code on another laptop running opensuse as well as a laptop running windows and everything works great. Hopefully that closes the option that it is a code, mono, or opensuse flaw.Is there a kernel option or a network option that anyone knows about that might cause this sort of behavior?
View 3 Replies
View Related
Feb 21, 2011
I'm trying to set up the server to at least ask for a password. I can connect to it without any trouble, but so can everyone else.How can I make samba ask for a password?
View 2 Replies
View Related
Apr 15, 2011
Google finds several suggestions on how to sync passwords between samba and /etc/shadow (it can't use /etc/sahdow directly). However in my case, there is an existing samba server where users have already set their passwords. Now comes a new samba server on another machine to serve the same set of users. Is there a way to just import the passwords from one samba to another, in "stay encrypted" form (the /etc/shadow can be separately imported). I looked at /var/lib/samba/passdb.tdb but it has the hostname (share name?) coded in it and that might be a confusion to just copy the file in whole.
View 2 Replies
View Related
Jan 2, 2010
True or False: If you have a user on your Linux/Samba machine with a password, example:
User = Bob
Password = Password0
And Bob is on an XP computer, where his username is also Bob and his password is also Password0, is it normal for Bob to go to:
\SambaServer, double click on Bob's share (valid users = Bob only) and Bob get RIGHT in without being prompted?
On my prior setup, the user HAD to log in. If they wanted auto login next time with their credentials, they had to check "remember password." But now it's as if Samba knows who they are. It's very strange. What's the normal behavior? Must EVERYBODY authenticate with passwords, or if the Windows credentials are the same as Samba does it just somehow auto-detect it and allow them through?
View 3 Replies
View Related
Jun 11, 2010
How to make a Server of LOGIN / PASSWORDS for flexible linux machines? Samba config files for the server and the client. The clients, if no network, shall use the /etc/shadow.
View 10 Replies
View Related
Nov 3, 2009
I have a CentOS + Samba server and Windows XP client machines. Users, passwords and permissions are entered on the server machine.users and passwords ( same as on the server ) are entered in the XP client machine.When attempting to access a public file on the server using a XP client machine and the IP address of my server, I am asked a user name and password and none of the already entered seem to work. I cannot access the server file (prompted again and again to enter user name and password). What did i miss
View 7 Replies
View Related
Jun 19, 2010
I have a very nice SUSE 11.2 Samba PDC that runs well with Windows XP clients. I am using NETBIOS for name resolution since I dont want to put in a DNS server because my router already has one, Im pretty sure it would make things more complicated. I enabled wins support in smb.conf and made the name resolve order with lmhosts first. lmhosts lists all the ip adresses with their computer names in capitals. I hope thats right. I set up my windows 7 with the reg file from the samba wiki on windows 7 [URL].
That's great now I get the old screen from XP in windows 7 when joining the domain. I gave the machine netbios name MAINPC a smb trust account MAINPC and added the unix user MAINPC$ that should all work. I manage to successfully join it says welcome to domain, afterwards an error appears "changing the dns name of this computer to "" failed" and something bout not finding the domain controller. although I joined. then I resatart and when I try to log on it says "trust relationship failed". How to make it join and logon properly.
View 2 Replies
View Related
Dec 2, 2009
I have Samba PDC server on CentOS 5..we have 10 thin clients in our network which were working fine previously with the windows Terminal services... Now i have replaced my windows 2003 Domain to Samba Domain Controller.. Is there any why i can connect our thin clients with SAMBA DC in the our environment?
View 2 Replies
View Related
Jun 3, 2010
I'd like to access a samba/SSH server which itself is connected to a VPN Server, therefore acting as a VPN Client. As soon as the VPN Connection is established, samba and ssh connections to this VPN Client get a timeout. But not all of them.
To get a better understanding I made an overview. The first one is a general network overview, without any VPN Connection, the second one with the VPN Connection established.
Network Overview without VPN
I can access the server in several ways:
*From the router via ssh (router runs ipcop with busybox)
*From the laptop via ssh (putty via Windows 7)
*From the laptop via samba
*From the internet via ssh (port forwarding to the ssh server)
Everything is working as it should.
Now the server that runs ssh and samba service connects to a VPN Server on the Internet, this is also working fine. Now it gets weird. The only samba/SSH connection that is still working is ssh directly from the router to the server. Everything else gets a timeout:
*From the laptop via ssh (putty via Windows 7)
*From the laptop via samba
*From the internet via ssh (port forwarding to the ssh server)
Network Overview with VPN active
Why is that? It seems from the little understanding I have of vpn and networking, that incoming packages (like samba request from the laptop) don't get send directly back over eth0 but over the vpn connection. This seems somewhat logic, BUT ssh from the router is still working. Why from the router and not from the laptop? I really can't get my head around it.
Configuration Overview
tldr; One Client acts as VPN Client and samba/SSH Server. As soon as the VPN Connection is established samba/SSH stop working, but only partially.
View 1 Replies
View Related
Dec 14, 2010
I have set samba domain. I am able to add win 7 and xp clients. All r working fine. But I have a doubt. If I shutdown the samba pdc server, I should be able to login the client machine with the same profile (which I had, when the samba pdc server was up). Now , if I shutdown the sambapdc, I am able to login the client machine, but new profile is being created. How to avoid this.
How to say to samba that the client machine should load the same profile which was created when the server was up and running. I do not want the client machines to create new a profile when the server is down bcoz in windows domain, when the windows domain is shutdown, the client machines are able to login with the same profile (the profile which was created when the domain was up). I wish to have same thing in samba pdc also.
View 2 Replies
View Related
Jul 24, 2010
I finished setup Samba PDC with Openldap backend. I can joint Winxp client to domain but can not change pass by press Ctrl + Alt + Delete and choose Change password button
This is my conf.
I used
samba3x-3.3.8
openldap 2.3.43
slapd.access.conf
Code:
access to attrs=userPassword,shadowLastChange,sambaNTPassword,sambaLMPassword
by dn="cn=Manager,dc=microhdesk,dc=net" write
by anonymous auth
by self write
by * none
[Code]....
View 1 Replies
View Related
Oct 28, 2010
Does winbindd must run on linux box client on network with samba ldap server configured as PDC.
View 5 Replies
View Related
Feb 8, 2010
I am encountering this issue:
Samba login/passwd client : why the users id arent the same on every machines?
So the client side config looks like this:
Quote:
/etc/pam.d/ files :
Code:
returns:
Code:
View 4 Replies
View Related
Nov 19, 2008
OS:
Red Hat ES 5.2
Kernel:
2.6.18-92.1.18.el5
Samba version:
[root@intranet samba]# rpm -qa |grep samba
system-config-samba-1.2.39-1.el5
samba-common-3.0.28-1.el5_2.1
samba-client-3.0.28-1.el5_2.1
samba-3.0.28-1.el5_2.1
When I try to connect to the share from my XP machine, I get a "network path cannot be found" error message.
Below is the entry in /var/log/samba/samba.log
[2008/11/19 11:57:51, 0] smbd/service.c:make_connection_snum(1003)
'/server2/test' does not exist or permission denied when connecting to [server2] Error was Permission denied
Here is my smb.conf file:
[global]
# Server name
server string = Intranet Server (Primary)
# These are the default password settings.
; encrypt passwords = yes
; smb passwd file = /etc/samba/smbpasswd
# Define NT domain/workgroup name.
workgroup = intranet
# Security mode. (See SAMBA documentation for details.)
; security = user
# Restrict conections to specific IP addresses.
hosts allow = all
# The %m variable sets a separate log file for each
# connecting machine.
# log file = /var/log/samba-log.%m
# Keep it basic - one file!
log file = /var/log/samba/samba.log
# The number of minutes inactivity before a connection is
# disconnected. (This disconnection should be transparent to most
# clients, which an have auto-reconnect feature. Removing inactive
# connections is to preserve the server's resources.)
deadtime = 10
# These socket options are suggested in the default smb.conf file.
# Who am I to disagree?
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
# Define both Ethernet interfaces. (Otherwise, I suspect only one
# will be configured??)
interfaces = eth0 eth1
username map = /etc/samba/smbusers
; guest ok = no
; guest account = nobody
[server2]
comment = server2
path = /server2/test
write list = @intranet
force create mode = 775
force directory mode = 2775
writeable = yes
; browseable = yes
valid users = intranet
/server2 and /server2/test are owned by user intranet and both directories have permissions set to 777.
Has anyone come across this problem in the past?
View 3 Replies
View Related
Jan 18, 2010
how to make a new Ubuntu 9.10 box use our LDAP/Samba server for user authentication. Our Red Hat and Windows machines all use it just fine. I've been trying to use the auth-client-config and libnss-ldap packages for this purpose, but I must be missing something. I'm pretty green with LDAP, so this is my first time diving in... Is there a good How-To or step-by-step read on this? All of my searches lead me to setting up Ubuntu as the server, and that isn't what I want. I've also tried the steps listed in [URL] for the LDAP Authentication section.
View 1 Replies
View Related
Sep 15, 2009
I'm trying to set up a VPN connection between our CentOS 5.3 server at work and my bosses XP computer at home. At this point, we are kinda locked into Quickbooks. I'm testing the connection from my XP boot at home to see if it works. I can log into our servicemanuals easily enough from XP at home however, the windows takes forever to update. I have the Samba server only listening on port 445 because is seems to work more efficiently at work. I connect to the Samba shares via linux from home and everything works well but, when I try to do anything with the shares from Windows client at home, it's very slow!
I'm thinking that it must have something either to do with the Windows OpenVPN client or the client.conf file. Is there anything I should look at in the .conf file for answers?
View 1 Replies
View Related
Apr 15, 2010
I have been using Ubuntu sense about 6.10 and never had to network with a Windows computer before. I have a decent understanding of Linux itself but I am having issues with this samba client. I have a clean install of Ubuntu 9.10 and am trying to use samba to access my shares on a Windows XP(SP3) computer. I am on the network just fine, and all the computers on the network have static IP addresses. When I go to Places->Network->Windows Network I see the "TITANNET" workgroup, (Even before I changed my workgroup to "TITANNET" in the smb.conf file.), but when I try to access it I get this error:
Code:
Unable to mount location
Failed to retrieve share list from server.
P.S.[0] I tried using /etc/init.d/samba restart but it did not work, I am not sure I am even running the samba server. (Well, it is obvious I am not, what I really mean is what am I running to (not =D)access the shares on my Windows PC.)
P.S.[1] I know that this has probably been posted before. I have searched and searched, I am about 1.5 pots of coffee and 4 hours into this.
View 2 Replies
View Related
Mar 14, 2009
Apologies if this was asked before -- I have googled the last bytes out of my Firefox but fail to find anything helpful. Here's my problem:I have a foomatic hpijs cups-driver for a HP Inkjet (Non-PS printer) installed. Printing from UNIX-hosts works. I have cups configured not to allow raw-printing (/etc/cups/mime.types: #application/octet-stream, /etc/cups/mime.convs: #application/octet-stream).I have now installed samba-printing, the cups PS-drivers plus the Windows PS-drivers are populated to /etc/samba/drivers/W32X86/ and get pushed to the WIN-Client.Problem is that when I print from a WINXP client, the printer outputs heaps of Postscript-text instead of my page.I have tried to debug this a bit but fail to find anything really useful. My observations so far:
- The samba-pushed HP_Photosmart_3300.ppd (in both /etc/samba/drivers/... and in the resulting dir on the WINXP client) reads:
*cupsFilter: "application/vnd.cups-postscript 0 foomatic-rip"
[code]....
View 2 Replies
View Related
Apr 25, 2010
Ok I am new to all this, I did have a server years ago but have forgotten most of what I learned. My problem is getting ftp to connect to the server. I have centos and it has proftpd but I'm lost when it comes to the conf file. I created a user in plesk but when I try to connect with any ftp software it accepts the username but rejects any password. I have tried a million combinations but I just can't get my head around this. I have used it before many years ago and managed ok but that was using webmin. I feel I've bitten off more than I can chew with this server although I have managed everything else
View 2 Replies
View Related
Feb 9, 2010
So I've set up a Samba server through the gui. When I've labeled my shares as accessible to everyone, I can get to it no problem. However, when I tie it down to a specific samba user, I can't.
By all indications, it appears that it isn't saving the password because every time I go to edit users, it has the exact same string in the password field.
View 1 Replies
View Related
May 10, 2010
I've just installed 10.04 x64 and I've had some problems with samba (cifs/windows file sharing). It seems like samba is forgetting user passwords, so on every reboot I have to add a password for the user that needs access: sudo smbpasswd -a tietze
I've tried restarting samba (sudo service sbmd restart), but it does not work. I have to add a new password for the user with the command above.
I tried to google a bit for a solution, but only found the following thread with a problem that seems related: [other] Samba forgets user
making samba remember passwords betweeen reboots/shutdowns?
View 1 Replies
View Related
Apr 10, 2011
Although my smb.conf file cites /etc/samba/smbpasswd as the password file, I see that it is not in some database file. Since smb.conf doesn't seem to look anywhere else but /etc/samba/smbpasswd, how can I direct it to the new password scheme. At least this is what I find when using SWAT to display the smb.conf file contents.This seems to be preventing my windows client having access to shared printers, but yet, not shared files.
View 2 Replies
View Related
May 4, 2010
Attempting to set up a Samba network from my SuSE 11.2 desktop to a windows laptop. Using YaST, a Samba server has been created, and allow users to share has been clicked. Identity is not a domain controller. no trusted domains have been set, and no LDAP settings have been set.
Right now, each computer can see the other over the network. When clicking on the network from windows, a window pops up requesting a user and password.
Konqueror sees both computers under smb://. It also has a window that pops up requesting user name and password. Where do I set up these user names and pass words?
View 2 Replies
View Related
Apr 5, 2010
I am *finally* getting around to rebuilding my file-sharing computer. I'll be sharing files with both Linux and Windoze machines. It's a home network, so there's nothing fancy needed. I know I have to tweak my smb.conf file until I'm satisfied with the features and security. I'm using SWAT and I'm starting with a bare-bones conf file. It's not secure but I can see the server and selected files/directories from my other Linux box.
My really dumb question is, do I have to reboot both the server and the client machines every time I change the SAMBA configuration? I thought I just had to stop and restart the SAMBA service in the SWAT software - but then the server disappears from my client. It looks like I need to reboot both machines for the client to see the server.
View 1 Replies
View Related
Apr 27, 2010
I am having a hard time with samba. Please point me in the right direction! I cant seem to get the web configuration tool working either.
smbclient -L teraquad
Server requested plaintext password but 'client plaintext auth' is disabled
session setup failed: SUCCESS - 0
smbclient -L teraquad -N
Domain=[OFFICE] OS=[Unix] Server=[Samba 3.4.7-58.fc12]
code....
View 2 Replies
View Related
Jun 11, 2011
I configured openLdap in RHEL5 on virtual achines,everything is working fine, I created a user called ldapuser,in LDAP server and i created a home directory for ldapuser in my LDAP client, now i can able to login to the both Server and client with ldapuser account....
Now here what am expecting is i want to export my server's home directory to the client, i dont want to create home directories manually in the client machine, i googled about that, and it can be done through autofs.....
what need to be done on the client and server side.
View 6 Replies
View Related
Jan 7, 2010
I wonder if it is possible to have two passwords for one user account in 9.10. I have a long login password (5 words about 45 characters with spaces caps). I would like to set a shorter password for Authentication, sudo, etc. While retaining the original for logging in.In short:Have long password to login to computer.Have short password for everything after login.
View 6 Replies
View Related
Feb 15, 2010
Don't worry, I know - that title probably makes this question seem way more complicated than it actually is. Here's the situation: I have a server running SLES10 with a samba share set up on it. I created a username in Samba and Linux for myself, can access the share, permissions are fine, yadda yadda. Now I want to give about 100 more people access to it.
I have active directory running which users log into and I'd like them to be able to use their active directory passwords to authenticate to the share, rather than have me create 100 individual Samba/Linux accounts. In the future the AD server will be changing over to server 2008 but I'll cross that bridge when I get there. It would be equally effective if I could pull AD passwords from AD and "auto-create" the associated Linux/Samba users. Any ideas or could someone point in the right direction?
View 5 Replies
View Related
Feb 8, 2010
I need to know is there any way to record or tracking or make logging if when user samba delete files or folders i can know that, cause sometimeon samba server some users complain they lost files, though i have daily backup and i can restore their files, i just want to know if or maybe some other users in one group accidentally move or delete the files.
View 1 Replies
View Related
