[KLUG Members] samba malfunctions
Adam Tauno Williams
members@kalamazoolinux.org
Tue, 18 Mar 2003 05:26:07 -0500
>>[2003/03/17 20:43:08, 1] smbd/service.c:make_connection_snum(681)
>> 192.168.1.48 (192.168.1.48) connect to service support initially as user
>>test
>> (uid=1010, gid=104) (pid 15606)
>>[2003/03/17 20:43:26, 0] smbd/connection.c:register_message_flags(212)
>> register_message_flags: tdb_fetch failed
>>[2003/03/17 20:43:46, 0] smbd/connection.c:register_message_flags(212)
>> register_message_flags: tdb_fetch failed
>Okay, this has something to do with the files in /var/lib/samba, but I
>don't know what. How do I check and possibly regenerate those files:
>account_policy.tdb ntdrivers.tdb registry.tdb wins.tdb
>group_mapping.tdb ntforms.tdb secrets.tdb
>netlogon_unigrp.tdb ntprinters.tdb share_info.tdb
There are some utilities included with Samba that do *NOT* build and install by
defauly but are handy -
[awilliam@estate1 tdb]$ ls
Makefile spinlock.c tdbbackup.c tdbdump.c tdb.magic tdbtool.c tdbutil.c
README spinlock.h tdb.c tdb.h tdbtest.c tdbtorture.c tdbutil.h
[awilliam@estate1 tdb]$ pwd
/usr/src/redhat/SOURCES/samba-3.0alpha22/source/tdb
These are in 2.2.x as well.
Files such as wins.tdb, ntforms, ntprinters, ntdrivers can be nuked. Then just
restart samba and you start with a fresh file.
>I think this is the source of my problems:
>>[2003/03/17 20:43:46, 0] rpc_server/srv_util.c:get_domain_user_groups(342)
>>get_domain_user_groups: primary gid of user [pete] is not a Domain group
>> get_domain_user_groups: You should fix it, NT doesn't like that
>Okay, it was complaining about this when it still worked.
>> [2003/03/17 20:35:12, 1] rpc_server/srv_netlog_nt.c:_net_sam_logon(687)
>> _net_sam_logon: user FIRST\pete has user sid
>>S-1-5-21-2506568838-2457616256-2741851390-3000
>> but group sid S-1-5-32-547.
>> The conflicting domain portions are not supported for NETLOGON calls
>Here I tried to use smbgroupedit again, trying to get my GID to be an NT
>domain group.
>Now, that was interesting. Does my workgroup/domain, FIRST, have a SID?
Yes.
>And how do I check it?
[root@littleboy /root]# rpcclient -U adam -W backbone littleboy
Password:
rpcclient $> lsaquery
domain BACKBONE has sid S-1-5-21-2037442776-3290224752-88127236