Password won't work between RH9.0 and Win2KPro - SMB

This is a discussion on Password won't work between RH9.0 and Win2KPro - SMB ; Newbie to Samba and I am trying to connect to a RH9.0, Samba 2.2.7a-security-rollup-fix server (system name flash 192.168.2.150) from a Win2KPro SP4 workstation (system name ground0 192.168.2.100). The workgroup is MYGROUP. I cannot get the Samba server to accept ...

+ Reply to Thread
Results 1 to 2 of 2

Thread: Password won't work between RH9.0 and Win2KPro

  1. Password won't work between RH9.0 and Win2KPro

    Newbie to Samba and I am trying to connect to a RH9.0, Samba
    2.2.7a-security-rollup-fix server (system name flash 192.168.2.150)
    from a Win2KPro SP4 workstation (system name ground0 192.168.2.100).
    The workgroup is MYGROUP.

    I cannot get the Samba server to accept the password for the account
    luther1 (or any other test account). I have tried setting the PW
    through the GUI and the CLI and nothing seems to work.

    Also tried both USER and SHARED for Security Options

    Here is the smb.conf
    ==========================================
    # Samba config file created using SWAT
    # from flash (127.0.0.1)
    # Date: 2003/08/30 23:18:39

    # Global parameters
    [global]
    workgroup = MYGROUP
    netbios name = FLASH
    server string = samba server
    interfaces = eth0
    encrypt passwords = Yes
    update encrypted = Yes
    obey pam restrictions = Yes
    pam password change = Yes
    passwd program = /usr/bin/passwd %u
    passwd chat = *New*password* %n\n *Retype*new*password* %n\n
    *passwd:*all*authentication*tokens*updated*success fully*
    unix password sync = Yes
    log file = /var/log/samba/%m.log
    max log size = 0
    socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
    dns proxy = No
    wins support = Yes
    hosts allow = 192.168.2.
    printing = cups

    [homes]
    comment = Home Directories
    valid users = %S
    read only = No
    create mask = 0664
    directory mask = 0775
    browseable = No

    [printers]
    comment = All Printers
    path = /var/spool/samba
    printable = Yes
    browseable = No

    [lsurgeon]
    path = /home/lsurgeon
    invalid users = %S
    read only = No

    [luther1]
    path = /home/luther1
    username = luther1
    invalid users = %S
    valid users = luther1
    read only = No
    ========================================

    I did notice one odd thing in an Ethereal trace, it says Domain is
    Ground0 when it should be MYGROUP.

    ========================================
    SMB (Server Message Block Protocol)
    SMB Header
    Server Component: SMB
    Response in: 61
    SMB Command: Session Setup AndX (0x73)
    NT Status: STATUS_SUCCESS (0x00000000)
    Flags: 0x18
    0... .... = Request/Response: Message is a request to the
    server
    .0.. .... = Notify: Notify client only on open
    ..0. .... = Oplocks: OpLock not requested/granted
    ...1 .... = Canonicalized Pathnames: Pathnames are
    canonicalized
    .... 1... = Case Sensitivity: Path names are caseless
    .... ..0. = Receive Buffer Posted: Receive buffer has not
    been posted
    .... ...0 = Lock and Read: Lock&Read, Write&Unlock are not
    supported
    Flags2: 0x4807
    0... .... .... .... = Unicode Strings: Strings are ASCII
    .1.. .... .... .... = Error Code Type: Error codes are NT
    error codes
    ..0. .... .... .... = Execute-only Reads: Don't permit
    reads if execute-only
    ...0 .... .... .... = Dfs: Don't resolve pathnames with
    Dfs
    .... 1... .... .... = Extended Security Negotiation:
    Extended security negotiation is supported
    .... .... .0.. .... = Long Names Used: Path names in
    request are not long file names
    .... .... .... .1.. = Security Signatures: Security
    signatures are supported
    .... .... .... ..1. = Extended Attributes: Extended
    attributes are supported
    .... .... .... ...1 = Long Names Allowed: Long file names
    are allowed in the response
    Reserved: 000000000000000000000000
    Tree ID: 0
    Process ID: 65279
    User ID: 0
    Multiplex ID: 3520
    Session Setup AndX Request (0x73)
    Word Count (WCT): 13
    AndXCommand: Tree Connect AndX (0x75)
    Reserved: 00
    AndXOffset: 115
    Max Buffer: 16644
    Max Mpx Count: 50
    VC Number: 1
    Session Key: 0x00000f47
    ANSI Password Length: 1
    Unicode Password Length: 1
    Reserved: 00000000
    Capabilities: 0x000000d4
    .... .... .... .... .... .... .... ...0 = Raw Mode: Read
    Raw and Write Raw are not supported
    .... .... .... .... .... .... .... ..0. = MPX Mode: Read
    Mpx and Write Mpx are not supported
    .... .... .... .... .... .... .... .1.. = Unicode: Unicode
    strings are supported
    .... .... .... .... .... .... .... 0... = Large Files:
    Large files are not supported
    .... .... .... .... .... .... ...1 .... = NT SMBs: NT SMBs
    are supported
    .... .... .... .... .... .... ..0. .... = RPC Remote APIs:
    RPC remote APIs are not supported
    .... .... .... .... .... .... .1.. .... = NT Status Codes:
    NT status codes are supported
    .... .... .... .... .... .... 1... .... = Level 2 Oplocks:
    Level 2 oplocks are supported
    .... .... .... .... .... ...0 .... .... = Lock and Read:
    Lock and Read is not supported
    .... .... .... .... .... ..0. .... .... = NT Find: NT Find
    is not supported
    .... .... .... .... ...0 .... .... .... = Dfs: Dfs is not
    supported
    .... .... .... .... ..0. .... .... .... = Infolevel
    Passthru: NT information level request passthrough is not supported
    .... .... .... .... .0.. .... .... .... = Large ReadX:
    Large Read andX is not supported
    .... .... .... .... 0... .... .... .... = Large WriteX:
    Large Write andX is not supported
    .... .... 0... .... .... .... .... .... = UNIX: UNIX
    extensions are not supported
    .... ..0. .... .... .... .... .... .... = Reserved:
    Reserved
    ..0. .... .... .... .... .... .... .... = Bulk Transfer:
    Bulk Read and Bulk Write are not supported
    .0.. .... .... .... .... .... .... .... = Compressed Data:
    Compressed data transfer is not supported
    0... .... .... .... .... .... .... .... = Extended
    Security: Extended security exchanges are not supported
    Byte Count (BCC): 54
    ANSI Password: 00
    Unicode Password: 00
    Account: luther1
    Primary Domain: GROUND0
    Native OS: Windows 2000 2195
    Native LAN Manager: Windows 2000 5.0
    Extra byte parameters
    Tree Connect AndX Request (0x75)
    Word Count (WCT): 4
    AndXCommand: No further commands
    Reserved: 00
    AndXOffset: 172
    Flags: 0x0008
    .... .... .... ...0 = Disconnect TID: Do NOT disconnect
    TID
    Password Length: 24
    Byte Count (BCC): 46
    Password: ECA88D510F47974F722D3C6615161793...
    Path: \\FLASH\LUTHER1
    Service: ?????

  2. Re: Password won't work between RH9.0 and Win2KPro

    I have a couple of suggestions and questions.

    For peer to peer workgroups, the logon server is the workstation, so the
    domain name would be the workstation name (not the workgroup name). The
    workgroup is just a loose association of systems, each of which manages
    their own logon authentication. So, the primary domain would be ground0 for
    the account if it's an account on the workstation ground0 in a peer to peer
    workgroup as you have.

    This is different from a NT Domain or w2k Active Directory where the logon
    authentication is managed centrally by domain controllers. In that case, the
    primary domain name is the domain name, or in the case of Samba, the
    workgroup name is the domain name.

    Just a question about the password on the Linux system. It that a Linux
    account ? If it is, you need to create a Samba account with the smbpasswd
    function.

    Murray

    "www.ttdown.com" wrote in message
    news:shm2lv8bnc9kttprv88fmmuuapd20inhjm@4ax.com...
    > Newbie to Samba and I am trying to connect to a RH9.0, Samba
    > 2.2.7a-security-rollup-fix server (system name flash 192.168.2.150)
    > from a Win2KPro SP4 workstation (system name ground0 192.168.2.100).
    > The workgroup is MYGROUP.
    >
    > I cannot get the Samba server to accept the password for the account
    > luther1 (or any other test account). I have tried setting the PW
    > through the GUI and the CLI and nothing seems to work.
    >
    > Also tried both USER and SHARED for Security Options
    >
    > Here is the smb.conf
    > ==========================================
    > # Samba config file created using SWAT
    > # from flash (127.0.0.1)
    > # Date: 2003/08/30 23:18:39
    >
    > # Global parameters
    > [global]
    > workgroup = MYGROUP
    > netbios name = FLASH
    > server string = samba server
    > interfaces = eth0
    > encrypt passwords = Yes
    > update encrypted = Yes
    > obey pam restrictions = Yes
    > pam password change = Yes
    > passwd program = /usr/bin/passwd %u
    > passwd chat = *New*password* %n\n *Retype*new*password* %n\n
    > *passwd:*all*authentication*tokens*updated*success fully*
    > unix password sync = Yes
    > log file = /var/log/samba/%m.log
    > max log size = 0
    > socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
    > dns proxy = No
    > wins support = Yes
    > hosts allow = 192.168.2.
    > printing = cups
    >
    > [homes]
    > comment = Home Directories
    > valid users = %S
    > read only = No
    > create mask = 0664
    > directory mask = 0775
    > browseable = No
    >
    > [printers]
    > comment = All Printers
    > path = /var/spool/samba
    > printable = Yes
    > browseable = No
    >
    > [lsurgeon]
    > path = /home/lsurgeon
    > invalid users = %S
    > read only = No
    >
    > [luther1]
    > path = /home/luther1
    > username = luther1
    > invalid users = %S
    > valid users = luther1
    > read only = No
    > ========================================
    >
    > I did notice one odd thing in an Ethereal trace, it says Domain is
    > Ground0 when it should be MYGROUP.
    >
    > ========================================
    > SMB (Server Message Block Protocol)
    > SMB Header
    > Server Component: SMB
    > Response in: 61
    > SMB Command: Session Setup AndX (0x73)
    > NT Status: STATUS_SUCCESS (0x00000000)
    > Flags: 0x18
    > 0... .... = Request/Response: Message is a request to the
    > server
    > .0.. .... = Notify: Notify client only on open
    > ..0. .... = Oplocks: OpLock not requested/granted
    > ...1 .... = Canonicalized Pathnames: Pathnames are
    > canonicalized
    > .... 1... = Case Sensitivity: Path names are caseless
    > .... ..0. = Receive Buffer Posted: Receive buffer has not
    > been posted
    > .... ...0 = Lock and Read: Lock&Read, Write&Unlock are not
    > supported
    > Flags2: 0x4807
    > 0... .... .... .... = Unicode Strings: Strings are ASCII
    > .1.. .... .... .... = Error Code Type: Error codes are NT
    > error codes
    > ..0. .... .... .... = Execute-only Reads: Don't permit
    > reads if execute-only
    > ...0 .... .... .... = Dfs: Don't resolve pathnames with
    > Dfs
    > .... 1... .... .... = Extended Security Negotiation:
    > Extended security negotiation is supported
    > .... .... .0.. .... = Long Names Used: Path names in
    > request are not long file names
    > .... .... .... .1.. = Security Signatures: Security
    > signatures are supported
    > .... .... .... ..1. = Extended Attributes: Extended
    > attributes are supported
    > .... .... .... ...1 = Long Names Allowed: Long file names
    > are allowed in the response
    > Reserved: 000000000000000000000000
    > Tree ID: 0
    > Process ID: 65279
    > User ID: 0
    > Multiplex ID: 3520
    > Session Setup AndX Request (0x73)
    > Word Count (WCT): 13
    > AndXCommand: Tree Connect AndX (0x75)
    > Reserved: 00
    > AndXOffset: 115
    > Max Buffer: 16644
    > Max Mpx Count: 50
    > VC Number: 1
    > Session Key: 0x00000f47
    > ANSI Password Length: 1
    > Unicode Password Length: 1
    > Reserved: 00000000
    > Capabilities: 0x000000d4
    > .... .... .... .... .... .... .... ...0 = Raw Mode: Read
    > Raw and Write Raw are not supported
    > .... .... .... .... .... .... .... ..0. = MPX Mode: Read
    > Mpx and Write Mpx are not supported
    > .... .... .... .... .... .... .... .1.. = Unicode: Unicode
    > strings are supported
    > .... .... .... .... .... .... .... 0... = Large Files:
    > Large files are not supported
    > .... .... .... .... .... .... ...1 .... = NT SMBs: NT SMBs
    > are supported
    > .... .... .... .... .... .... ..0. .... = RPC Remote APIs:
    > RPC remote APIs are not supported
    > .... .... .... .... .... .... .1.. .... = NT Status Codes:
    > NT status codes are supported
    > .... .... .... .... .... .... 1... .... = Level 2 Oplocks:
    > Level 2 oplocks are supported
    > .... .... .... .... .... ...0 .... .... = Lock and Read:
    > Lock and Read is not supported
    > .... .... .... .... .... ..0. .... .... = NT Find: NT Find
    > is not supported
    > .... .... .... .... ...0 .... .... .... = Dfs: Dfs is not
    > supported
    > .... .... .... .... ..0. .... .... .... = Infolevel
    > Passthru: NT information level request passthrough is not supported
    > .... .... .... .... .0.. .... .... .... = Large ReadX:
    > Large Read andX is not supported
    > .... .... .... .... 0... .... .... .... = Large WriteX:
    > Large Write andX is not supported
    > .... .... 0... .... .... .... .... .... = UNIX: UNIX
    > extensions are not supported
    > .... ..0. .... .... .... .... .... .... = Reserved:
    > Reserved
    > ..0. .... .... .... .... .... .... .... = Bulk Transfer:
    > Bulk Read and Bulk Write are not supported
    > .0.. .... .... .... .... .... .... .... = Compressed Data:
    > Compressed data transfer is not supported
    > 0... .... .... .... .... .... .... .... = Extended
    > Security: Extended security exchanges are not supported
    > Byte Count (BCC): 54
    > ANSI Password: 00
    > Unicode Password: 00
    > Account: luther1
    > Primary Domain: GROUND0
    > Native OS: Windows 2000 2195
    > Native LAN Manager: Windows 2000 5.0
    > Extra byte parameters
    > Tree Connect AndX Request (0x75)
    > Word Count (WCT): 4
    > AndXCommand: No further commands
    > Reserved: 00
    > AndXOffset: 172
    > Flags: 0x0008
    > .... .... .... ...0 = Disconnect TID: Do NOT disconnect
    > TID
    > Password Length: 24
    > Byte Count (BCC): 46
    > Password: ECA88D510F47974F722D3C6615161793...
    > Path: \\FLASH\LUTHER1
    > Service: ?????




+ Reply to Thread