[Eisfair] Client/PDC Samba 15.0.0. (4.17.9)
Thomas Bork
tom at eisfair.org
Di Jul 18 16:03:25 CEST 2023
Am 18.07.2023 um 15:20 schrieb Marcus Röckrath:
> Mir ging es darum, ob ich an dieser Stelle zwischenzeitlich etwas selbst
> unbewußt/ahnungslos/... geändert hatte.
Ich habe gerade einmal einen Test gemacht mit Deinen neuen
Samba-Versionen. Zwei virtuelle Maschinen aufgesetzt, eine als PDC, die
andere als Member:
Add eisfair Samba Server into an Windows NT Domain
Enter Password for User root.
The password will not be written to console for security reasons.
Password (e.g. 'secret'):
Add eisfair Samba Server into an Windows NT Domain
lp_load_ex: refreshing parameters
Initialising global parameters
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
Processing section "[global]"
interpret_interface: Adding interface 127.0.0.1/8
added interface 127.0.0.1/8 ip=127.0.0.1 bcast=127.255.255.255
netmask=255.0.0.0
interpret_interface: Adding interface 192.168.0.45/255.255.255.0
added interface 192.168.0.45/25 ip=192.168.0.45 bcast=192.168.0.255
netmask=255.255.255.0
Registered MSG_REQ_POOL_USAGE
Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
interpret_interface: Adding interface 127.0.0.1/8
added interface 127.0.0.1/8 ip=127.0.0.1 bcast=127.255.255.255
netmask=255.0.0.0
interpret_interface: Adding interface 192.168.0.45/255.255.255.0
added interface 192.168.0.45/25 ip=192.168.0.45 bcast=192.168.0.255
netmask=255.255.255.0
libnet_Join:
libnet_JoinCtx: struct libnet_JoinCtx
in: struct libnet_JoinCtx
dc_name : 'pvscsi'
machine_name : 'NVME'
domain_name : *
domain_name : 'TESTDOM'
domain_name_type : JoinDomNameTypeUnknown (0)
account_ou : NULL
admin_account : ''
admin_domain : NULL
machine_password : NULL
join_flags : 0x000000c1 (193)
0: WKSSVC_JOIN_FLAGS_IGNORE_UNSUPPORTED_FLAGS
0: WKSSVC_JOIN_FLAGS_JOIN_WITH_NEW_NAME
0: WKSSVC_JOIN_FLAGS_JOIN_DC_ACCOUNT
0: WKSSVC_JOIN_FLAGS_DEFER_SPN
1: WKSSVC_JOIN_FLAGS_MACHINE_PWD_PASSED
1: WKSSVC_JOIN_FLAGS_JOIN_UNSECURE
0: WKSSVC_JOIN_FLAGS_DOMAIN_JOIN_IF_JOINED
0: WKSSVC_JOIN_FLAGS_WIN9X_UPGRADE
0: WKSSVC_JOIN_FLAGS_ACCOUNT_DELETE
0: WKSSVC_JOIN_FLAGS_ACCOUNT_CREATE
1: WKSSVC_JOIN_FLAGS_JOIN_TYPE
os_version : NULL
os_name : NULL
os_servicepack : NULL
create_upn : 0x00 (0)
upn : NULL
dnshostname : NULL
modify_config : 0x00 (0)
ads : NULL
debug : 0x01 (1)
use_kerberos : 0x00 (0)
secure_channel_type : SEC_CHAN_WKSTA (2)
desired_encryption_types : 0x0000001c (28)
provision_computer_account_only: 0x00 (0)
odj_provision_data : NULL
request_offline_join : 0x00 (0)
ads_cldap_netlogon: did not get a reply
No nmbd found
Connecting to 192.168.0.66 at port 445
GENSEC backend 'gssapi_spnego' registered
GENSEC backend 'gssapi_krb5' registered
GENSEC backend 'gssapi_krb5_sasl' registered
GENSEC backend 'spnego' registered
GENSEC backend 'schannel' registered
GENSEC backend 'ncalrpc_as_system' registered
GENSEC backend 'sasl-EXTERNAL' registered
GENSEC backend 'ntlmssp' registered
GENSEC backend 'ntlmssp_resume_ccache' registered
GENSEC backend 'http_basic' registered
GENSEC backend 'http_ntlm' registered
GENSEC backend 'http_negotiate' registered
Got challenge flags:
Got NTLMSSP neg_flags=0x62898215
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x62008a15
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x62008a15
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x62008a15
../../source3/rpc_client/cli_pipe.c:550: RPC fault code
DCERPC_NCA_S_OP_RNG_ERROR received from host PVSCSI!
libnet_Join:
libnet_JoinCtx: struct libnet_JoinCtx
out: struct libnet_JoinCtx
odj_provision_data : NULL
account_name : 'NVME$'
netbios_domain_name : 'TESTDOM'
dns_domain_name : NULL
forest_name : NULL
dn : NULL
domain_guid : 00000000-0000-0000-0000-000000000000
domain_sid : *
domain_sid :
S-1-5-21-2318106404-1301210394-3690568243
modified_config : 0x00 (0)
error_string : 'failed to join domain 'TESTDOM'
over rpc: {Access Denied} A process has requested access to an object
but has not been granted those access rights.'
domain_is_ad : 0x00 (0)
set_encryption_types : 0x00000000 (0)
krb5_salt : NULL
dcinfo : *
dcinfo: struct netr_DsRGetDCNameInfo
dc_unc : *
dc_unc : '\\PVSCSI'
dc_address : *
dc_address : '\\192.168.0.66'
dc_address_type : DS_ADDRESS_TYPE_INET (1)
domain_guid :
00000000-0000-0000-0000-000000000000
domain_name : *
domain_name : 'TESTDOM'
forest_name : NULL
dc_flags : 0x00000000 (0)
0: DS_SERVER_PDC
0: DS_SERVER_GC
0: DS_SERVER_LDAP
0: DS_SERVER_DS
0: DS_SERVER_KDC
0: DS_SERVER_TIMESERV
0: DS_SERVER_CLOSEST
0: DS_SERVER_WRITABLE
0: DS_SERVER_GOOD_TIMESERV
0: DS_SERVER_NDNC
0: DS_SERVER_SELECT_SECRET_DOMAIN_6
0: DS_SERVER_FULL_SECRET_DOMAIN_6
0: DS_SERVER_WEBSERV
0: DS_SERVER_DS_8
0: DS_SERVER_DS_9
0: DS_SERVER_DS_10
0: DS_DNS_CONTROLLER
0: DS_DNS_DOMAIN
0: DS_DNS_FOREST_ROOT
dc_site_name : NULL
client_site_name : NULL
account_rid : 0x00000000 (0)
result : WERR_ACCESS_DENIED
libnet_Join:
libnet_JoinCtx: struct libnet_JoinCtx
in: struct libnet_JoinCtx
dc_name : 'pvscsi'
machine_name : 'NVME'
domain_name : *
domain_name : 'TESTDOM'
domain_name_type : JoinDomNameTypeUnknown (0)
account_ou : NULL
admin_account : 'root'
admin_domain : NULL
machine_password : NULL
join_flags : 0x00000023 (35)
0: WKSSVC_JOIN_FLAGS_IGNORE_UNSUPPORTED_FLAGS
0: WKSSVC_JOIN_FLAGS_JOIN_WITH_NEW_NAME
0: WKSSVC_JOIN_FLAGS_JOIN_DC_ACCOUNT
0: WKSSVC_JOIN_FLAGS_DEFER_SPN
0: WKSSVC_JOIN_FLAGS_MACHINE_PWD_PASSED
0: WKSSVC_JOIN_FLAGS_JOIN_UNSECURE
1: WKSSVC_JOIN_FLAGS_DOMAIN_JOIN_IF_JOINED
0: WKSSVC_JOIN_FLAGS_WIN9X_UPGRADE
0: WKSSVC_JOIN_FLAGS_ACCOUNT_DELETE
1: WKSSVC_JOIN_FLAGS_ACCOUNT_CREATE
1: WKSSVC_JOIN_FLAGS_JOIN_TYPE
os_version : NULL
os_name : NULL
os_servicepack : NULL
create_upn : 0x00 (0)
upn : NULL
dnshostname : NULL
modify_config : 0x00 (0)
ads : NULL
debug : 0x01 (1)
use_kerberos : 0x00 (0)
secure_channel_type : SEC_CHAN_WKSTA (2)
desired_encryption_types : 0x0000001c (28)
provision_computer_account_only: 0x00 (0)
odj_provision_data : NULL
request_offline_join : 0x00 (0)
ads_cldap_netlogon: did not get a reply
No nmbd found
Connecting to 192.168.0.66 at port 445
Got challenge flags:
Got NTLMSSP neg_flags=0x62898215
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x62088215
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x62088215
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x62088215
../../source3/rpc_client/cli_pipe.c:550: RPC fault code
DCERPC_NCA_S_OP_RNG_ERROR received from host PVSCSI!
ldb: unable to stat module /usr/lib/samba/ldb : No such file or directory
Connecting to 192.168.0.66 at port 445
Got challenge flags:
Got NTLMSSP neg_flags=0x62898215
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x62088215
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x62088215
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x62088215
libnet_Join:
libnet_JoinCtx: struct libnet_JoinCtx
out: struct libnet_JoinCtx
odj_provision_data : NULL
account_name : 'NVME$'
netbios_domain_name : 'TESTDOM'
dns_domain_name : NULL
forest_name : NULL
dn : NULL
domain_guid : 00000000-0000-0000-0000-000000000000
domain_sid : *
domain_sid :
S-1-5-21-2318106404-1301210394-3690568243
modified_config : 0x00 (0)
error_string : NULL
domain_is_ad : 0x00 (0)
set_encryption_types : 0x00000000 (0)
krb5_salt : NULL
dcinfo : *
dcinfo: struct netr_DsRGetDCNameInfo
dc_unc : *
dc_unc : '\\PVSCSI'
dc_address : *
dc_address : '\\192.168.0.66'
dc_address_type : DS_ADDRESS_TYPE_INET (1)
domain_guid :
00000000-0000-0000-0000-000000000000
domain_name : *
domain_name : 'TESTDOM'
forest_name : NULL
dc_flags : 0x00000000 (0)
0: DS_SERVER_PDC
0: DS_SERVER_GC
0: DS_SERVER_LDAP
0: DS_SERVER_DS
0: DS_SERVER_KDC
0: DS_SERVER_TIMESERV
0: DS_SERVER_CLOSEST
0: DS_SERVER_WRITABLE
0: DS_SERVER_GOOD_TIMESERV
0: DS_SERVER_NDNC
0: DS_SERVER_SELECT_SECRET_DOMAIN_6
0: DS_SERVER_FULL_SECRET_DOMAIN_6
0: DS_SERVER_WEBSERV
0: DS_SERVER_DS_8
0: DS_SERVER_DS_9
0: DS_SERVER_DS_10
0: DS_DNS_CONTROLLER
0: DS_DNS_DOMAIN
0: DS_DNS_FOREST_ROOT
dc_site_name : NULL
client_site_name : NULL
account_rid : 0x0000066d (1645)
result : WERR_OK
Using short domain name -- TESTDOM
Joined 'NVME' to domain 'TESTDOM'
return code = 0
Do you want to restart Samba now (y/n) [y]?
--
der tom
Mehr Informationen über die Mailingliste Eisfair