Hello, I use a samba domain with a pdc with an ldap passdb backend and a member server, both running on samba-3.0.0_rc1-r1. When listing the shares on the controller, everything is all right. But when I try to list the shares on a member server on the domain, I get the error: "session setup failed: NT_STATUS_LOGON_FAILURE". Digging in the logs of the member server, I get: "domain_client_validate: unable to validate password for user test in domain LOTR to Domain controller \\STRIDER. Error was NT_STATUS_WRONG_PASSWORD." The function check_ntlm_password from the file auth/auth.c is the one who returns the NT_STATUS_WRONG_PASSWORD error on the domain controller. One difference seems to be: the failing call went through a call to the net_sam_logon (rpc_server/srv_netlogon_nt.c) The error is reproductible if I use the switch --with-ldap (USE=ldap in gentoo) for configure and appeared first with rc1. It worked with beta3. NB : Using the standard smbpasswd backend instead of ldap works with rc1 if i remove the --with-ldap configure switch. Any ideas ? Reproducible: Always Steps to Reproduce: 1. Compile ldap 2. Compile Samba 3.0.0rc1-r1 with the USE=ldap flag 3. Create an ldap user 4. Try to log on into the samba controller with that ldap user NB : it *works* as expected with samba 3.0.0beta3, but not with rc1. Actual Results: domain_client_validate: unable to validate password for user test in domain LOTR to Domain controller \\STRIDER. Error was NT_STATUS_WRONG_PASSWORD. Expected Results: list the actual file shares on the smb network. Portage 2.0.49-r2 (default-x86-1.4, gcc-3.2.3, glibc-2.3.2-r1, 2.4.22-rc2) ================================================================= System uname: 2.4.22-rc2 i686 Intel(R) Celeron(TM) CPU 1300MHz distcc 2.9 i686-pc-linux-gnu (protocols 1 and 2) (default port 3632) [enabled] ACCEPT_KEYWORDS="x86" AUTOCLEAN="yes" CFLAGS="-march=pentium3 -Os -pipe -mfpmath=sse -mmmx -msse" CHOST="i686-pc-linux-gnu" COMPILER="gcc3" CONFIG_PROTECT="/etc /var/qmail/control /usr/kde/2/share/config /usr/kde/3/share/config /usr/X11R6/lib/X11/xkb /usr/kde/3.1/share/config /usr/share/config" CONFIG_PROTECT_MASK="/etc/gconf /etc/env.d" CXXFLAGS="-march=pentium3 -Os -pipe -mfpmath=sse -mmmx -msse" DISTDIR="/usr/portage/distfiles" FEATURES="sandbox ccache autoaddcvs distcc" GENTOO_MIRRORS="ftp://ftp.belnet.be/mirror/rsync.gentoo.org/gentoo http://gentoo.oregonstate.edu http://www.ibiblio.org/pub/Linux/distributions/gentoo" MAKEOPTS="-j4" PKGDIR="/usr/portage/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="" SYNC="rsync://rsync.namerica.gentoo.org/gentoo-portage" USE="crypt foomaticdb libg++ libwww mad mikmod mpeg nls spell gdbm berkdb slang arts bonobo svga guile gpm tcpd python esd imlib oggvorbis motif ldap aalib acl alsa apm avi cups dga dvd encode gnome gif gtk2 gtk gtkhtml icc ipv6 java jpeg kde kerberos matrox mmx mozilla ncurses ogg vorbis opengl oss pam pdflib perl png postgres qt quicktime readline samba scanner sdl sse ssl tcltk tiff truetype usb X xml xml2 xmms xv zlib x86"
rc2 with 'passdb backend = ldapsam:....' works fine here, as did rc1. if not, you should report to samba-technical or file a bug with them please.
i forgot to mention rc2 might be a little buggy, perhaps you might try a current SAMBA_3_0 CVS as well...
what say you about 3.0.0.ebuild
I've been away for some time, sorry. I've just incrementally tried rcs and the release, and I'm happy to say that rc3 corrected this, and the release works. Thanks