Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # smbclient //NT4MEMBER/share1 -U NT4DOMAIN\\user1
- smbd log:
- check_ntlm_password: Checking password for unmapped user [NT4DOMAIN]\[user1]@[NT4MEMBER] with the new password interface
- check_ntlm_password: mapped user is: [NT4DOMAIN]\[user1]@[NT4MEMBER]
- check_ntlm_password: Authentication for user [user1] -> [user1] FAILED with error NT_STATUS_NO_MEMORY, authoritative=1
- Auth: [SMB2,(null)] user [NT4DOMAIN]\[user1] at [Wed, 19 Dec 2018 13:56:08.989053 CET] with [NTLMv2] status [NT_STATUS_NO_MEMORY] workstation [NT4MEMBER] remote host [ipv4:X.X.X.X:40488] mapped to [NT4DOMAIN]\[user1]. local host [ipv4:X.X.X.X:445]
- log_no_json: JSON auth logs not available unless compiled with jansson
- gensec_spnego_server_negTokenTarg_step: SPNEGO(ntlmssp) login failed: NT_STATUS_NO_MEMORY
- smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_NO_MEMORY] || at ../source3/smbd/smb2_sesssetup.c:137
- Server exit (NT_STATUS_END_OF_FILE)
- Terminated
- winbind log:
- [ 9232]: request interface version (version = 30)
- [ 9232]: request location of privileged pipe
- [ 9232]: pam auth crap domain: [NT4DOMAIN] user: user1
- set_dc_type_and_flags_connect: DC for domain NT4DOMAIN claimed it was a DC for domain NT4MEMBER, refusing to initialize
- [ 9228]: pam auth crap domain: NT4DOMAIN user: user1
- set_dc_type_and_flags_connect: DC for domain NT4DOMAIN claimed it was a DC for domain NT4MEMBER, refusing to initialize
- set_dc_type_and_flags_connect: DC for domain NT4DOMAIN claimed it was a DC for domain NT4MEMBER, refusing to initialize
- ldb_wrap open of secrets.ldb
- rpccli_create_netlogon_creds failed for NT4DOMAIN, unable to create NETLOGON credentials: NT_STATUS_NO_MEMORY
- Could not open handle to NETLOGON pipe (error: NT_STATUS_NO_MEMORY, attempts: 0)
- The connection to netlogon failed, retrying
- set_dc_type_and_flags_connect: DC for domain NT4DOMAIN claimed it was a DC for domain NT4MEMBER, refusing to initialize
- set_dc_type_and_flags_connect: DC for domain NT4DOMAIN claimed it was a DC for domain NT4MEMBER, refusing to initialize
- ldb_wrap open of secrets.ldb
- rpccli_create_netlogon_creds failed for NT4DOMAIN, unable to create NETLOGON credentials: NT_STATUS_NO_MEMORY
- Could not open handle to NETLOGON pipe (error: NT_STATUS_NO_MEMORY, attempts: 1)
- This is again a problem for this particular call, forcing the close of this connection
- The connection to netlogon failed, retrying
- set_dc_type_and_flags_connect: DC for domain NT4DOMAIN claimed it was a DC for domain NT4MEMBER, refusing to initialize
- set_dc_type_and_flags_connect: DC for domain NT4DOMAIN claimed it was a DC for domain NT4MEMBER, refusing to initialize
- ldb_wrap open of secrets.ldb
- rpccli_create_netlogon_creds failed for NT4DOMAIN, unable to create NETLOGON credentials: NT_STATUS_NO_MEMORY
- Could not open handle to NETLOGON pipe (error: NT_STATUS_NO_MEMORY, attempts: 2)
- This is again a problem for this particular call, forcing the close of this connection
- This is the third problem for this particular call, adding DC to the negative cache list: NT4DOMAIN (null)
- The connection to netlogon failed, retrying
- set_dc_type_and_flags_connect: DC for domain NT4DOMAIN claimed it was a DC for domain NT4MEMBER, refusing to initialize
- set_dc_type_and_flags_connect: DC for domain NT4DOMAIN claimed it was a DC for domain NT4MEMBER, refusing to initialize
- ldb_wrap open of secrets.ldb
- rpccli_create_netlogon_creds failed for NT4DOMAIN, unable to create NETLOGON credentials: NT_STATUS_NO_MEMORY
- Could not open handle to NETLOGON pipe (error: NT_STATUS_NO_MEMORY, attempts: 3)
- This is again a problem for this particular call, forcing the close of this connection
- This is the third problem for this particular call, adding DC to the negative cache list: NT4DOMAIN (null)
- NTLM CRAP authentication for user [NT4DOMAIN]\[user1] returned NT_STATUS_NO_MEMORY
- # smbclient //NT4MEMBER/share1 -U NT4MEMBER\\user1
- smbd log:
- check_ntlm_password: Checking password for unmapped user [NT4MEMBER]\[user1]@[NT4MEMBER] with the new password interface
- check_ntlm_password: mapped user is: [NT4MEMBER]\[user1]@[NT4MEMBER]
- init_sam_from_ldap: Entry found for user: user1
- auth_check_ntlm_password: sam authentication for user [user1] succeeded
- Auth: [SMB2,(null)] user [NT4MEMBER]\[user1] at [Wed, 19 Dec 2018 14:00:37.714900 CET] with [NTLMv2] status [NT_STATUS_OK] workstation [NT4MEMBER] remote host [ipv4:X.X.X.X:40494] became [NT4MEMBER]\[user1] [S-1-5-21-x-x-x-21020]. local host [ipv4:X.X.X.X:445]
- log_no_json: JSON auth logs not available unless compiled with jansson
- check_ntlm_password: authentication for user [user1] -> [user1] -> [user1] succeeded
- NTLMSSP Sign/Seal - Initialising with flags:
- Got NTLMSSP neg_flags=0x62088215
- NTLMSSP Sign/Seal - Initialising with flags:
- Got NTLMSSP neg_flags=0x62088215
- init_group_from_ldap: Entry found for group: 544
- init_group_from_ldap: Entry found for group: 100000
- Adding homes service for user 'user1' using home directory: '/posta/user1'
- adding home's share [user1] for user 'user1' at '/data/osobni/%S'
- Allowed connection from X.X.X.X (X.X.X.X)
- Connect path is '/tmp' for service [IPC$]
- Initialising default vfs hooks
- Initialising custom vfs hooks from [/[Default VFS]/]
- NT4MEMBER (ipv4:X.X.X.X:40494) connect to service IPC$ initially as user user1 (uid=10010, gid=513) (pid 7874)
- get_referred_path: |share1| in dfs path \NT4MEMBER\share1 is not a dfs root.
- smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_NOT_FOUND] || at ../source3/smbd/smb2_ioctl.c:312
- NT4MEMBER (ipv4:X.X.X.X:40494) closed connection to service IPC$
- Allowed connection from X.X.X.X (X.X.X.X)
- Connect path is '/samba1/664' for service [share1]
- Initialising default vfs hooks
- Initialising custom vfs hooks from [/[Default VFS]/]
- Initialising custom vfs hooks from [recycle]
- load_module_absolute_path: Module '/usr/lib64/samba/vfs/recycle.so' loaded
- NT4MEMBER (ipv4:X.X.X.X:40494) connect to service share1 initially as user user1 (uid=10010, gid=513) (pid 7874)
- winbind log:
- [ 9238]: request interface version (version = 30)
- [ 9238]: request location of privileged pipe
- sids_to_xids
- sam_sid_to_name
- sam_sid_to_name
- sam_sid_to_name
- StartTLS issued: using a TLS connection
- smbldap_open_connection: connection opened
- ldap_connect_system: successful connection to the LDAP server
- # wbinfo -i user1
- NT4MEMBER\user1:*:10010:513::/posta/user1:/bin/false
- winbindd log:
- [ 9747]: request interface version (version = 30)
- [ 9747]: request location of privileged pipe
- getpwnam user1
- sam_name_to_sid
- name_to_sid: user1 for domain
- init_sam_from_ldap: Entry found for user: user1
- name_to_sid: user1 for domain
- init_sam_from_ldap: Entry found for user: user1
- sam_rids_to_names for NT4MEMBER
- sam_sid_to_name
- Please find more logs. wbinfo -i user1 (without prepending domain) should show NT4DOMAIN\user1 not NT4MEMBER\user1. The same should be for wbinfo -i NT4DOMAIN\\user1.
- # wbinfo -i NT4MEMBER\\user1
- NT4MEMBER\user1:*:10010:513::/posta/user1:/bin/false
- winbindd log:
- [ 9744]: request interface version (version = 30)
- [ 9744]: request location of privileged pipe
- getpwnam NT4MEMBER\user1
- sam_name_to_sid
- name_to_sid: NT4MEMBER\user1 for domain NT4MEMBER
- init_sam_from_ldap: Entry found for user: user1
- name_to_sid: NT4MEMBER\user1 for domain NT4MEMBER
- init_sam_from_ldap: Entry found for user: user1
- sam_rids_to_names for NT4MEMBER
- sam_sid_to_name
- # wbinfo -i NT4DOMAIN\\user1
- Could not get info for user NT4DOMAIN\user1
- winbindd log:
- [ 9746]: request interface version (version = 30)
- [ 9746]: request location of privileged pipe
- getpwnam NT4DOMAIN\user1
- sam_name_to_sid
- name_to_sid: NT4DOMAIN\user1 for domain NT4DOMAIN
- name_to_sid: failed to lookup name: NT_STATUS_NONE_MAPPED
- name_to_sid: NT4DOMAIN\user1 for domain NT4DOMAIN
- name_to_sid: failed to lookup name: NT_STATUS_NONE_MAPPED
- wbinfo -u should list all users from NT4DOMAIN but list nothing. wbinfo -u --domain="NT4MEMBER" list all users which are from ldap - they are NT4DOMAIN users.
- # wbinfo -u
- winbindd log:
- [ 9754]: request interface version (version = 30)
- [ 9754]: request location of privileged pipe
- [ 9754]: request interface version (version = 30)
- [ 9754]: request misc info
- [ 9754]: request netbios name
- [ 9754]: request domain name
- [ 9754]: domain_info [NT4DOMAIN]
- list_users NT4DOMAIN
- samr: sequence number
- # wbinfo -u --domain="NT4MEMBER"
- NT4MEMBER\dovecot
- NT4MEMBER\root
- NT4MEMBER\nobody
- NT4MEMBER\user1
- winbindd log:
- [ 9756]: request interface version (version = 30)
- [ 9756]: request location of privileged pipe
- list_users NT4MEMBER
- samr_query_user_list
- smbldap_search_paged: base => [ou=Users,dc=intranet,dc=xx], filter => [(&(uid=*)(objectclass=sambaSamAccount))],scope => [2], pagesize => [1000]
- smbldap_search_paged: search was successful
- samr: sequence number
- sam_rids_to_names for NT4MEMBER
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement