You are not logged in.
Pages: 1
Hi Guys,
I have MIT Kerberos server installed and working (kinit/klist/pam_krb5...) and have installed the extra/samba package + I've added samba (which is the name of the daemon) into hosts.allow; but my clients aren't allowed in:
> smbclient -U tom@MYREALM.NET \\\\MYSERVER\share1
creating lame upcase table
creating lame lowcase table
Enter tom@MYREALM.NET's password: **********
session setup failed: NT_STATUS_NO_LOGON_SERVERS
I'm thinking that because the auth method in my smb.conf is set to ADS, then samba is looking for an LDAP server to authenticate over?
Is is possible to get samba and mit kerberos working in harmony without LDAP?
Here is my client's smb.conf:
[global]
security = ads
log file = /var/log/smb.log
password server = 10.0.0.1
realm = MYREALM.NET
encrypt passwords = yes
Here is my server's smb.conf:
security = ads
server string = Samba Server
log file = /var/log/samba/%m.log
max log size = 50
password server = 10.0.0.1
realm = MYREALM.NET
encrypt passwords = yes
hosts allow = 10. 127.
[share1]
comment = Share 1
path = /share1
public = no
writable = yes
browsable = yes
If I run
smbtree -L 10.0.0.1
I can see share1
I don't seem to have any logging whatsoever in my krb5kdc.conf or /var/log/samba/* on the server, or /var/log/smb.log on my client.
Any help would be most appreciated!
Thanks
Last edited by tommed (2010-04-25 10:36:22)
Offline
Also, if I use
smbclient -k -U tom@MYREALM.NET \\\\MYSERVER\share1
I get the following error:
cli_session_setup_blob: receive failed (NT_STATUS_LOGON_FAILURE)
session setup failed: NT_STATUS_LOGON_FAILURE
Offline
Pages: 1