Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [2018/10/29 15:29:32.327471, 3] ../source3/smbd/oplock.c:1340(init_oplocks)
- init_oplocks: initializing messages.
- [2018/10/29 15:29:32.327543, 3] ../source3/smbd/process.c:1959(process_smb)
- Transaction 0 of length 159 (0 toread)
- [2018/10/29 15:29:32.327612, 3] ../source3/smbd/process.c:1539(switch_message)
- switch message SMBnegprot (pid 18316) conn 0x0
- [2018/10/29 15:29:32.329471, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [PC NETWORK PROGRAM 1.0]
- [2018/10/29 15:29:32.329504, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [LANMAN1.0]
- [2018/10/29 15:29:32.329520, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [Windows for Workgroups 3.1a]
- [2018/10/29 15:29:32.329534, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [LM1.2X002]
- [2018/10/29 15:29:32.329548, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [LANMAN2.1]
- [2018/10/29 15:29:32.329562, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [NT LM 0.12]
- [2018/10/29 15:29:32.329576, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [SMB 2.002]
- [2018/10/29 15:29:32.329590, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [SMB 2.???]
- [2018/10/29 15:29:32.329701, 3] ../source3/smbd/smb2_negprot.c:290(smbd_smb2_request_process_negprot)
- Selected protocol SMB2_FF
- [2018/10/29 15:29:32.331359, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_spnego' registered
- [2018/10/29 15:29:32.331385, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_krb5' registered
- [2018/10/29 15:29:32.331401, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_krb5_sasl' registered
- [2018/10/29 15:29:32.331415, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'spnego' registered
- [2018/10/29 15:29:32.331429, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'schannel' registered
- [2018/10/29 15:29:32.331444, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'naclrpc_as_system' registered
- [2018/10/29 15:29:32.331458, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'sasl-EXTERNAL' registered
- [2018/10/29 15:29:32.331472, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'ntlmssp' registered
- [2018/10/29 15:29:32.331487, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'ntlmssp_resume_ccache' registered
- [2018/10/29 15:29:32.331502, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'http_basic' registered
- [2018/10/29 15:29:32.331516, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'http_ntlm' registered
- [2018/10/29 15:29:32.331530, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'krb5' registered
- [2018/10/29 15:29:32.331545, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'fake_gssapi_krb5' registered
- [2018/10/29 15:29:32.331679, 3] ../source3/smbd/negprot.c:753(reply_negprot)
- Selected protocol SMB 2.???
- [2018/10/29 15:29:32.332823, 3] ../source3/smbd/smb2_negprot.c:290(smbd_smb2_request_process_negprot)
- Selected protocol SMB2_10
- [2018/10/29 15:29:32.334594, 3] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags)
- Got NTLMSSP neg_flags=0xe2088297
- [2018/10/29 15:29:32.335902, 3] ../auth/ntlmssp/ntlmssp_server.c:454(ntlmssp_server_preauth)
- Got user=[user2] domain=[C09046344100] workstation=[C09046344100] len1=24 len2=274
- [2018/10/29 15:29:32.335943, 3] ../source3/param/loadparm.c:3860(lp_load_ex)
- lp_load_ex: refreshing parameters
- [2018/10/29 15:29:32.336005, 3] ../source3/param/loadparm.c:549(init_globals)
- Initialising global parameters
- [2018/10/29 15:29:32.336078, 3] ../source3/param/loadparm.c:2774(lp_do_section)
- Processing section "[global]"
- [2018/10/29 15:29:32.336137, 1] ../lib/param/loadparm.c:1823(lpcfg_do_global_parameter)
- WARNING: The "syslog" option is deprecated
- [2018/10/29 15:29:32.336249, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[homes]"
- [2018/10/29 15:29:32.336322, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[printers]"
- [2018/10/29 15:29:32.336368, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[print$]"
- [2018/10/29 15:29:32.336417, 3] ../source3/param/loadparm.c:1609(lp_add_ipc)
- adding IPC service
- [2018/10/29 15:29:32.336452, 3] ../source3/auth/auth.c:189(auth_check_ntlm_password)
- check_ntlm_password: Checking password for unmapped user [C09046344100]\[user2]@[C09046344100] with the new password interface
- [2018/10/29 15:29:32.336469, 3] ../source3/auth/auth.c:192(auth_check_ntlm_password)
- check_ntlm_password: mapped user is: [C09046344100]\[user2]@[C09046344100]
- [2018/10/29 15:29:32.336529, 3] ../source3/auth/check_samsec.c:399(check_sam_security)
- check_sam_security: Couldn't find user 'user2' in passdb.
- [2018/10/29 15:29:32.336545, 2] ../source3/auth/auth.c:332(auth_check_ntlm_password)
- check_ntlm_password: Authentication for user [user2] -> [user2] FAILED with error NT_STATUS_NO_SUCH_USER, authoritative=1
- [2018/10/29 15:29:32.336587, 2] ../auth/auth_log.c:760(log_authentication_event_human_readable)
- Auth: [SMB2,(null)] user [C09046344100]\[user2] at [Mon, 29 Oct 2018 15:29:32.336576 CST] with [NTLMv2] status [NT_STATUS_NO_SUCH_USER] workstation [C09046344100] remote host [ipv4:10.17.9.22:61346] mapped to [C09046344100]\[user2]. local host [ipv4:10.21.1.148:445]
- [2018/10/29 15:29:32.336703, 2] ../auth/auth_log.c:220(log_json)
- JSON Authentication: {"timestamp": "2018-10-29T15:29:32.336638+0800", "type": "Authentication", "Authentication": {"version": {"major": 1, "minor": 0}, "status": "NT_STATUS_NO_SUCH_USER", "localAddress": "ipv4:10.21.1.148:445", "remoteAddress": "ipv4:10.17.9.22:61346", "serviceDescription": "SMB2", "authDescription": null, "clientDomain": "C09046344100", "clientAccount": "user2", "workstation": "C09046344100", "becameAccount": null, "becameDomain": null, "becameSid": "(NULL SID)", "mappedAccount": "user2", "mappedDomain": "C09046344100", "netlogonComputer": null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": "(NULL SID)", "passwordType": "NTLMv2"}}
- [2018/10/29 15:29:32.336730, 3] ../source3/auth/auth_util.c:1626(do_map_to_guest_server_info)
- No such user user2 [C09046344100] - using guest account
- [2018/10/29 15:29:32.345274, 3] ../source3/smbd/oplock.c:1340(init_oplocks)
- init_oplocks: initializing messages.
- [2018/10/29 15:29:32.345326, 3] ../source3/smbd/process.c:1959(process_smb)
- Transaction 0 of length 108 (0 toread)
- [2018/10/29 15:29:32.345555, 3] ../source3/smbd/smb2_negprot.c:290(smbd_smb2_request_process_negprot)
- Selected protocol SMB2_10
- [2018/10/29 15:29:32.347816, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_spnego' registered
- [2018/10/29 15:29:32.347844, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_krb5' registered
- [2018/10/29 15:29:32.348174, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_krb5_sasl' registered
- [2018/10/29 15:29:32.348194, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'spnego' registered
- [2018/10/29 15:29:32.348210, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'schannel' registered
- [2018/10/29 15:29:32.348224, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'naclrpc_as_system' registered
- [2018/10/29 15:29:32.348239, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'sasl-EXTERNAL' registered
- [2018/10/29 15:29:32.348253, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'ntlmssp' registered
- [2018/10/29 15:29:32.348268, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'ntlmssp_resume_ccache' registered
- [2018/10/29 15:29:32.348283, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'http_basic' registered
- [2018/10/29 15:29:32.348306, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'http_ntlm' registered
- [2018/10/29 15:29:32.348322, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'krb5' registered
- [2018/10/29 15:29:32.348337, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'fake_gssapi_krb5' registered
- [2018/10/29 15:29:32.349707, 3] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags)
- Got NTLMSSP neg_flags=0xe2088297
- [2018/10/29 15:29:32.351429, 3] ../auth/ntlmssp/ntlmssp_server.c:454(ntlmssp_server_preauth)
- Got user=[user2] domain=[C09046344100] workstation=[C09046344100] len1=24 len2=274
- [2018/10/29 15:29:32.351470, 3] ../source3/param/loadparm.c:3860(lp_load_ex)
- lp_load_ex: refreshing parameters
- [2018/10/29 15:29:32.351534, 3] ../source3/param/loadparm.c:549(init_globals)
- Initialising global parameters
- [2018/10/29 15:29:32.351605, 3] ../source3/param/loadparm.c:2774(lp_do_section)
- Processing section "[global]"
- [2018/10/29 15:29:32.351665, 1] ../lib/param/loadparm.c:1823(lpcfg_do_global_parameter)
- WARNING: The "syslog" option is deprecated
- [2018/10/29 15:29:32.351777, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[homes]"
- [2018/10/29 15:29:32.351844, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[printers]"
- [2018/10/29 15:29:32.351891, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[print$]"
- [2018/10/29 15:29:32.351940, 3] ../source3/param/loadparm.c:1609(lp_add_ipc)
- adding IPC service
- [2018/10/29 15:29:32.351968, 3] ../source3/auth/auth.c:189(auth_check_ntlm_password)
- check_ntlm_password: Checking password for unmapped user [C09046344100]\[user2]@[C09046344100] with the new password interface
- [2018/10/29 15:29:32.351985, 3] ../source3/auth/auth.c:192(auth_check_ntlm_password)
- check_ntlm_password: mapped user is: [C09046344100]\[user2]@[C09046344100]
- [2018/10/29 15:29:32.352046, 3] ../source3/auth/check_samsec.c:399(check_sam_security)
- check_sam_security: Couldn't find user 'user2' in passdb.
- [2018/10/29 15:29:32.352063, 2] ../source3/auth/auth.c:332(auth_check_ntlm_password)
- check_ntlm_password: Authentication for user [user2] -> [user2] FAILED with error NT_STATUS_NO_SUCH_USER, authoritative=1
- [2018/10/29 15:29:32.352102, 2] ../auth/auth_log.c:760(log_authentication_event_human_readable)
- Auth: [SMB2,(null)] user [C09046344100]\[user2] at [Mon, 29 Oct 2018 15:29:32.352092 CST] with [NTLMv2] status [NT_STATUS_NO_SUCH_USER] workstation [C09046344100] remote host [ipv4:10.17.9.22:61347] mapped to [C09046344100]\[user2]. local host [ipv4:10.21.1.148:445]
- [2018/10/29 15:29:32.352196, 2] ../auth/auth_log.c:220(log_json)
- JSON Authentication: {"timestamp": "2018-10-29T15:29:32.352142+0800", "type": "Authentication", "Authentication": {"version": {"major": 1, "minor": 0}, "status": "NT_STATUS_NO_SUCH_USER", "localAddress": "ipv4:10.21.1.148:445", "remoteAddress": "ipv4:10.17.9.22:61347", "serviceDescription": "SMB2", "authDescription": null, "clientDomain": "C09046344100", "clientAccount": "user2", "workstation": "C09046344100", "becameAccount": null, "becameDomain": null, "becameSid": "(NULL SID)", "mappedAccount": "user2", "mappedDomain": "C09046344100", "netlogonComputer": null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": "(NULL SID)", "passwordType": "NTLMv2"}}
- [2018/10/29 15:29:32.352221, 3] ../source3/auth/auth_util.c:1626(do_map_to_guest_server_info)
- No such user user2 [C09046344100] - using guest account
- [2018/10/29 15:29:32.360753, 3] ../source3/smbd/oplock.c:1340(init_oplocks)
- init_oplocks: initializing messages.
- [2018/10/29 15:29:32.360851, 3] ../source3/smbd/process.c:1959(process_smb)
- Transaction 0 of length 108 (0 toread)
- [2018/10/29 15:29:32.361158, 3] ../source3/smbd/smb2_negprot.c:290(smbd_smb2_request_process_negprot)
- Selected protocol SMB2_10
- [2018/10/29 15:29:32.365516, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_spnego' registered
- [2018/10/29 15:29:32.365581, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_krb5' registered
- [2018/10/29 15:29:32.365615, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_krb5_sasl' registered
- [2018/10/29 15:29:32.365645, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'spnego' registered
- [2018/10/29 15:29:32.365675, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'schannel' registered
- [2018/10/29 15:29:32.365713, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'naclrpc_as_system' registered
- [2018/10/29 15:29:32.365744, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'sasl-EXTERNAL' registered
- [2018/10/29 15:29:32.365774, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'ntlmssp' registered
- [2018/10/29 15:29:32.365804, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'ntlmssp_resume_ccache' registered
- [2018/10/29 15:29:32.365835, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'http_basic' registered
- [2018/10/29 15:29:32.365864, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'http_ntlm' registered
- [2018/10/29 15:29:32.365894, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'krb5' registered
- [2018/10/29 15:29:32.365925, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'fake_gssapi_krb5' registered
- [2018/10/29 15:29:32.367798, 3] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags)
- Got NTLMSSP neg_flags=0xe2088297
- [2018/10/29 15:29:32.369150, 3] ../auth/ntlmssp/ntlmssp_server.c:454(ntlmssp_server_preauth)
- Got user=[user2] domain=[C09046344100] workstation=[C09046344100] len1=24 len2=274
- [2018/10/29 15:29:32.369189, 3] ../source3/param/loadparm.c:3860(lp_load_ex)
- lp_load_ex: refreshing parameters
- [2018/10/29 15:29:32.369246, 3] ../source3/param/loadparm.c:549(init_globals)
- Initialising global parameters
- [2018/10/29 15:29:32.369316, 3] ../source3/param/loadparm.c:2774(lp_do_section)
- Processing section "[global]"
- [2018/10/29 15:29:32.369374, 1] ../lib/param/loadparm.c:1823(lpcfg_do_global_parameter)
- WARNING: The "syslog" option is deprecated
- [2018/10/29 15:29:32.369486, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[homes]"
- [2018/10/29 15:29:32.369552, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[printers]"
- [2018/10/29 15:29:32.369598, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[print$]"
- [2018/10/29 15:29:32.369645, 3] ../source3/param/loadparm.c:1609(lp_add_ipc)
- adding IPC service
- [2018/10/29 15:29:32.369672, 3] ../source3/auth/auth.c:189(auth_check_ntlm_password)
- check_ntlm_password: Checking password for unmapped user [C09046344100]\[user2]@[C09046344100] with the new password interface
- [2018/10/29 15:29:32.369688, 3] ../source3/auth/auth.c:192(auth_check_ntlm_password)
- check_ntlm_password: mapped user is: [C09046344100]\[user2]@[C09046344100]
- [2018/10/29 15:29:32.369744, 3] ../source3/auth/check_samsec.c:399(check_sam_security)
- check_sam_security: Couldn't find user 'user2' in passdb.
- [2018/10/29 15:29:32.369760, 2] ../source3/auth/auth.c:332(auth_check_ntlm_password)
- check_ntlm_password: Authentication for user [user2] -> [user2] FAILED with error NT_STATUS_NO_SUCH_USER, authoritative=1
- [2018/10/29 15:29:32.369797, 2] ../auth/auth_log.c:760(log_authentication_event_human_readable)
- Auth: [SMB2,(null)] user [C09046344100]\[user2] at [Mon, 29 Oct 2018 15:29:32.369787 CST] with [NTLMv2] status [NT_STATUS_NO_SUCH_USER] workstation [C09046344100] remote host [ipv4:10.17.9.22:61348] mapped to [C09046344100]\[user2]. local host [ipv4:10.21.1.148:445]
- [2018/10/29 15:29:32.369886, 2] ../auth/auth_log.c:220(log_json)
- JSON Authentication: {"timestamp": "2018-10-29T15:29:32.369833+0800", "type": "Authentication", "Authentication": {"version": {"major": 1, "minor": 0}, "status": "NT_STATUS_NO_SUCH_USER", "localAddress": "ipv4:10.21.1.148:445", "remoteAddress": "ipv4:10.17.9.22:61348", "serviceDescription": "SMB2", "authDescription": null, "clientDomain": "C09046344100", "clientAccount": "user2", "workstation": "C09046344100", "becameAccount": null, "becameDomain": null, "becameSid": "(NULL SID)", "mappedAccount": "user2", "mappedDomain": "C09046344100", "netlogonComputer": null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": "(NULL SID)", "passwordType": "NTLMv2"}}
- [2018/10/29 15:29:32.369917, 3] ../source3/auth/auth_util.c:1626(do_map_to_guest_server_info)
- No such user user2 [C09046344100] - using guest account
- [2018/10/29 15:29:39.945169, 3] ../source3/smbd/oplock.c:1340(init_oplocks)
- init_oplocks: initializing messages.
- [2018/10/29 15:29:39.945237, 3] ../source3/smbd/process.c:1959(process_smb)
- Transaction 0 of length 159 (0 toread)
- [2018/10/29 15:29:39.945287, 3] ../source3/smbd/process.c:1539(switch_message)
- switch message SMBnegprot (pid 18320) conn 0x0
- [2018/10/29 15:29:39.946319, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [PC NETWORK PROGRAM 1.0]
- [2018/10/29 15:29:39.946354, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [LANMAN1.0]
- [2018/10/29 15:29:39.946373, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [Windows for Workgroups 3.1a]
- [2018/10/29 15:29:39.946391, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [LM1.2X002]
- [2018/10/29 15:29:39.946408, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [LANMAN2.1]
- [2018/10/29 15:29:39.946425, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [NT LM 0.12]
- [2018/10/29 15:29:39.946442, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [SMB 2.002]
- [2018/10/29 15:29:39.946459, 3] ../source3/smbd/negprot.c:612(reply_negprot)
- Requested protocol [SMB 2.???]
- [2018/10/29 15:29:39.946590, 3] ../source3/smbd/smb2_negprot.c:290(smbd_smb2_request_process_negprot)
- Selected protocol SMB2_FF
- [2018/10/29 15:29:39.948442, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_spnego' registered
- [2018/10/29 15:29:39.948472, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_krb5' registered
- [2018/10/29 15:29:39.948491, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'gssapi_krb5_sasl' registered
- [2018/10/29 15:29:39.948509, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'spnego' registered
- [2018/10/29 15:29:39.948526, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'schannel' registered
- [2018/10/29 15:29:39.948543, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'naclrpc_as_system' registered
- [2018/10/29 15:29:39.948560, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'sasl-EXTERNAL' registered
- [2018/10/29 15:29:39.948577, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'ntlmssp' registered
- [2018/10/29 15:29:39.948595, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'ntlmssp_resume_ccache' registered
- [2018/10/29 15:29:39.948612, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'http_basic' registered
- [2018/10/29 15:29:39.948630, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'http_ntlm' registered
- [2018/10/29 15:29:39.948647, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'krb5' registered
- [2018/10/29 15:29:39.948665, 3] ../auth/gensec/gensec_start.c:977(gensec_register)
- GENSEC backend 'fake_gssapi_krb5' registered
- [2018/10/29 15:29:39.948813, 3] ../source3/smbd/negprot.c:753(reply_negprot)
- Selected protocol SMB 2.???
- [2018/10/29 15:29:39.949994, 3] ../source3/smbd/smb2_negprot.c:290(smbd_smb2_request_process_negprot)
- Selected protocol SMB2_10
- [2018/10/29 15:29:39.951711, 3] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags)
- Got NTLMSSP neg_flags=0xe2088297
- [2018/10/29 15:29:39.952881, 3] ../auth/ntlmssp/ntlmssp_server.c:454(ntlmssp_server_preauth)
- Got user=[u634410] domain=[C09046344100] workstation=[C09046344100] len1=24 len2=274
- [2018/10/29 15:29:39.952925, 3] ../source3/param/loadparm.c:3860(lp_load_ex)
- lp_load_ex: refreshing parameters
- [2018/10/29 15:29:39.952989, 3] ../source3/param/loadparm.c:549(init_globals)
- Initialising global parameters
- [2018/10/29 15:29:39.953065, 3] ../source3/param/loadparm.c:2774(lp_do_section)
- Processing section "[global]"
- [2018/10/29 15:29:39.953128, 1] ../lib/param/loadparm.c:1823(lpcfg_do_global_parameter)
- WARNING: The "syslog" option is deprecated
- [2018/10/29 15:29:39.953242, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[homes]"
- [2018/10/29 15:29:39.953311, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[printers]"
- [2018/10/29 15:29:39.953360, 2] ../source3/param/loadparm.c:2791(lp_do_section)
- Processing section "[print$]"
- [2018/10/29 15:29:39.953411, 3] ../source3/param/loadparm.c:1609(lp_add_ipc)
- adding IPC service
- [2018/10/29 15:29:39.953448, 3] ../source3/auth/auth.c:189(auth_check_ntlm_password)
- check_ntlm_password: Checking password for unmapped user [C09046344100]\[u634410]@[C09046344100] with the new password interface
- [2018/10/29 15:29:39.953468, 3] ../source3/auth/auth.c:192(auth_check_ntlm_password)
- check_ntlm_password: mapped user is: [C09046344100]\[u634410]@[C09046344100]
- [2018/10/29 15:29:39.953713, 3] ../source3/passdb/lookup_sid.c:1680(get_primary_group_sid)
- Forcing Primary Group to 'Domain Users' for u634410
- [2018/10/29 15:29:39.954140, 3] ../source3/auth/auth.c:256(auth_check_ntlm_password)
- auth_check_ntlm_password: sam_ignoredomain authentication for user [u634410] succeeded
- [2018/10/29 15:29:39.957256, 3] ../auth/auth_log.c:760(log_authentication_event_human_readable)
- Auth: [SMB2,(null)] user [C09046344100]\[u634410] at [Mon, 29 Oct 2018 15:29:39.957231 CST] with [NTLMv2] status [NT_STATUS_OK] workstation [C09046344100] remote host [ipv4:10.17.9.22:61349] became [RECRUIT-REG2]\[u634410] [S-1-5-21-1622245872-507635089-2772220737-1000]. local host [ipv4:10.21.1.148:445]
- [2018/10/29 15:29:39.957364, 3] ../auth/auth_log.c:220(log_json)
- JSON Authentication: {"timestamp": "2018-10-29T15:29:39.957317+0800", "type": "Authentication", "Authentication": {"version": {"major": 1, "minor": 0}, "status": "NT_STATUS_OK", "localAddress": "ipv4:10.21.1.148:445", "remoteAddress": "ipv4:10.17.9.22:61349", "serviceDescription": "SMB2", "authDescription": null, "clientDomain": "C09046344100", "clientAccount": "u634410", "workstation": "C09046344100", "becameAccount": "u634410", "becameDomain": "RECRUIT-REG2", "becameSid": "S-1-5-21-1622245872-507635089-2772220737-1000", "mappedAccount": "u634410", "mappedDomain": "C09046344100", "netlogonComputer": null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": "(NULL SID)", "passwordType": "NTLMv2"}}
- [2018/10/29 15:29:39.957390, 2] ../source3/auth/auth.c:314(auth_check_ntlm_password)
- check_ntlm_password: authentication for user [u634410] -> [u634410] -> [u634410] succeeded
- [2018/10/29 15:29:39.957578, 3] ../source3/auth/token_util.c:559(finalize_local_nt_token)
- Failed to fetch domain sid for WORKGROUP
- [2018/10/29 15:29:39.957640, 3] ../source3/auth/token_util.c:591(finalize_local_nt_token)
- Failed to fetch domain sid for WORKGROUP
- [2018/10/29 15:29:39.960331, 3] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset)
- NTLMSSP Sign/Seal - Initialising with flags:
- [2018/10/29 15:29:39.960360, 3] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags)
- Got NTLMSSP neg_flags=0xe2088215
- [2018/10/29 15:29:39.960395, 3] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset)
- NTLMSSP Sign/Seal - Initialising with flags:
- [2018/10/29 15:29:39.960412, 3] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags)
- Got NTLMSSP neg_flags=0xe2088215
- [2018/10/29 15:29:39.960629, 3] ../source3/auth/token_util.c:559(finalize_local_nt_token)
- Failed to fetch domain sid for WORKGROUP
- [2018/10/29 15:29:39.960690, 3] ../source3/auth/token_util.c:591(finalize_local_nt_token)
- Failed to fetch domain sid for WORKGROUP
- [2018/10/29 15:29:39.961027, 3] ../source3/smbd/password.c:144(register_homes_share)
- Adding homes service for user 'u634410' using home directory: '/home/u634410'
- [2018/10/29 15:29:39.961072, 3] ../source3/param/loadparm.c:1560(lp_add_home)
- adding home's share [u634410] for user 'u634410' at '/home/u634410'
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement