Есть PDC Samba 3.4.9 на FreeBSD, все прекрасно работает.
smb.conf:
[global] time server = Yes
interfaces = ale0
unix charset = koi8-r
display charset = koi8-r
dos charset = koi8-r
server string = Server Garant-Regi
netbios name = REGI-S
workgroup = REGI
admin users = @"Domain Admins"
domain master = Yes
os level = 255
idmap gid = 1000-20000
idmap uid = 1000-20000
winbind separator = +
winbind use default domain = Yes
encrypt passwords = yes
passdb backend = tdbsam:/usr/local/etc/samba34/passdb.tdb
wins support = yes
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
preferred master = Yes
strict locking = Yes
level2 oplocks = Yes
socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192
oplocks = Yes
locking = No
lock spin time = 100000
acl compatibility = auto
fake oplocks = No
domain logons = Yes
logon home =
logon path =
#syslog = 0
log level = 0 vfs:2
max log size = 102400
max log size = 200
log file = /var/log/samba/log.%m
#scripts
delete user from group script = /usr/local/etc/samba34/delete_user_from_group_script.sh "%g" "%u"
shutdown script = /usr/local/etc/samba34/shutdown_script.sh
rename user script = /usr/local/etc/samba34/rename_user_script.sh "%uold" "%unew"
add machine script = /usr/local/etc/samba34/add_machine_script.sh "%u"
delete user script = /usr/sbin/pw userdel "%u" -r
add user to group script = /usr/local/etc/samba34/add_user_to_group_script.sh "%g" "%u"
add group script = /usr/sbin/pw groupadd "%g"
logon script = net_map.bat
delete group script = /usr/sbin/pw groupdel "%g"
add user script = /usr/local/etc/samba34/add_user_script.sh "%u"
set primary group script = /usr/sbin/pw usermod "%u" -g "%g"
message command = /bin/mail -s 'message from %f on %m' root < %s; rm %s
Есть так же есть samba на федоре с авторизацией domain
smb.conf
[global]
#max protocol = SMB2
workgroup = regi
server string = Server 2 Garant-Regi
security = domain
log file = /var/log/samba/log.%m
log level = 3
max log size = 50
local master = No
dns proxy = No
wins server = 192.168.1.2
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
winbind offline logon = true
winbind separator = +
#winbind max clients = 5000
#password server = REGI-S
#client ntlmv2 auth = no
smb ports = 139
И время от времени не пускает некоторых пользователей на самбу федоры, помогает только перезагрузка samba.
К примеру логи одной из машин которую не пустило log.vvl-hp:
[2013/02/20 14:59:39, 3] smbd/process.c:1459(process_smb)
Transaction 7 of length 142 (0 toread)
[2013/02/20 14:59:39, 3] smbd/process.c:1273(switch_message)
switch message SMBsesssetupX (pid 1244) conn 0x0
[2013/02/20 14:59:39, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:1404(reply_sesssetup_and_X)
wct=12 flg2=0xc807
[2013/02/20 14:59:39, 2] smbd/sesssetup.c:1360(setup_new_vc_session)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:1160(reply_sesssetup_and_X_spnego)
Doing spnego session setup
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:1202(reply_sesssetup_and_X_spnego)
NativeOS=[] NativeLanMan=[] PrimaryDomain=[]
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:786(reply_spnego_negotiate)
reply_spnego_negotiate: Got secblob of size 40
[2013/02/20 14:59:39, 3] libsmb/ntlmssp.c:62(debug_ntlmssp_flags)
Got NTLMSSP neg_flags=0xe2088297
[2013/02/20 14:59:39, 3] smbd/process.c:1459(process_smb)
Transaction 8 of length 442 (0 toread)
[2013/02/20 14:59:39, 3] smbd/process.c:1273(switch_message)
switch message SMBsesssetupX (pid 1244) conn 0x0
[2013/02/20 14:59:39, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:1404(reply_sesssetup_and_X)
wct=12 flg2=0xc807
[2013/02/20 14:59:39, 2] smbd/sesssetup.c:1360(setup_new_vc_session)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:1160(reply_sesssetup_and_X_spnego)
Doing spnego session setup
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:1202(reply_sesssetup_and_X_spnego)
NativeOS=[] NativeLanMan=[] PrimaryDomain=[]
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:786(reply_spnego_negotiate)
reply_spnego_negotiate: Got secblob of size 40
[2013/02/20 14:59:39, 3] libsmb/ntlmssp.c:62(debug_ntlmssp_flags)
Got NTLMSSP neg_flags=0xe2088297
[2013/02/20 14:59:39, 3] smbd/process.c:1459(process_smb)
Transaction 8 of length 442 (0 toread)
[2013/02/20 14:59:39, 3] smbd/process.c:1273(switch_message)
switch message SMBsesssetupX (pid 1244) conn 0x0
[2013/02/20 14:59:39, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:1404(reply_sesssetup_and_X)
wct=12 flg2=0xc807
[2013/02/20 14:59:39, 2] smbd/sesssetup.c:1360(setup_new_vc_session)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:1160(reply_sesssetup_and_X_spnego)
Doing spnego session setup
[2013/02/20 14:59:39, 3] smbd/sesssetup.c:1202(reply_sesssetup_and_X_spnego)
NativeOS=[] NativeLanMan=[] PrimaryDomain=[]
[2013/02/20 14:59:39, 3] libsmb/ntlmssp.c:745(ntlmssp_server_auth)
Got user=[vvl] domain=[regi] workstation=[VVL-HP] len1=24 len2=204
[2013/02/20 14:59:39, 3] auth/auth.c:222(check_ntlm_password)
check_ntlm_password: Checking password for unmapped user [regi]\[vvl]@[VVL-HP] with the new password interface
[2013/02/20 14:59:39, 3] auth/auth.c:225(check_ntlm_password)
check_ntlm_password: mapped user is: [regi]\[vvl]@[VVL-HP]
[2013/02/20 14:59:39, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 14:59:39, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 14:59:39, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 14:59:39, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 14:59:39, 2] auth/auth.c:320(check_ntlm_password)
check_ntlm_password: Authentication for user [vvl] -> [vvl] FAILED with error NT_STATUS_NO_SUCH_USER
[2013/02/20 14:59:39, 3] smbd/error.c:60(error_packet_set)
error packet at smbd/sesssetup.c(122) cmd=115 (SMBsesssetupX) NT_STATUS_LOGON_FAILURE
После перезагрузки samba все нормально:
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] lib/util_sid.c:228(string_to_sid)
string_to_sid: Sid REGI\user1 does not start with 'S-'.
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (10030, 10010) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 1] smbd/service.c:1063(make_connection_snum)
vvl-hp (::ffff:192.168.1.63) connect to service Производство initially as user REGI+vvl (uid=10030, gid=10010) (pid 1428)
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/reply.c:759(reply_tcon_and_X)
tconX service=ПРОИЗВОДСТВО
[2013/02/20 15:00:40, 3] smbd/process.c:1459(process_smb)
Transaction 23 of length 106 (0 toread)
[2013/02/20 15:00:40, 3] smbd/process.c:1273(switch_message)
switch message SMBtrans2 (pid 1428) conn 0xf77a2158
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (10030, 10010) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/msdfs.c:828(get_referred_path)
get_referred_path: |Backup| in dfs path \REGI-S2\Backup is not a dfs root.
[2013/02/20 15:00:40, 3] smbd/error.c:60(error_packet_set)
error packet at smbd/trans2.c(7384) cmd=50 (SMBtrans2) NT_STATUS_NOT_FOUND
[2013/02/20 15:00:40, 3] smbd/process.c:1459(process_smb)
Transaction 24 of length 88 (0 toread)
[2013/02/20 15:00:40, 3] smbd/process.c:1273(switch_message)
switch message SMBtconX (pid 1428) conn 0x0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] lib/util_sid.c:228(string_to_sid)
string_to_sid: Sid @Domain Admins does not start with 'S-'.
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/service.c:807(make_connection_snum)
Connect path is '/home/samba/backup' for service [Backup]
[2013/02/20 15:00:40, 3] smbd/vfs.c:95(vfs_init_default)
Initialising default vfs hooks
[2013/02/20 15:00:40, 3] smbd/vfs.c:129(vfs_init_custom)
Initialising custom vfs hooks from [/[Default VFS]/]
[2013/02/20 15:00:40, 3] lib/util_sid.c:228(string_to_sid)
string_to_sid: Sid @Domain Admins does not start with 'S-'.
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/uid.c:428(push_conn_ctx)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (10030, 10010) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 1] smbd/service.c:1063(make_connection_snum)
vvl-hp (::ffff:192.168.1.63) connect to service Backup initially as user REGI+vvl (uid=10030, gid=10010) (pid 1428)
[2013/02/20 15:00:40, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:40, 3] smbd/reply.c:759(reply_tcon_and_X)
tconX service=BACKUP
[2013/02/20 15:00:52, 3] smbd/process.c:1459(process_smb)
Transaction 25 of length 39 (0 toread)
[2013/02/20 15:00:52, 3] smbd/process.c:1273(switch_message)
switch message SMBtdis (pid 1428) conn 0xf77af8f8
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 1] smbd/service.c:1240(close_cnum)
vvl-hp (::ffff:192.168.1.63) closed connection to service Бригада
[2013/02/20 15:00:52, 3] smbd/connection.c:31(yield_connection)
Yielding connection to Бригада
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/process.c:1459(process_smb)
Transaction 26 of length 39 (0 toread)
[2013/02/20 15:00:52, 3] smbd/process.c:1273(switch_message)
switch message SMBtdis (pid 1428) conn 0xf77a3cb0
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 1] smbd/service.c:1240(close_cnum)
vvl-hp (::ffff:192.168.1.63) closed connection to service Admin
[2013/02/20 15:00:52, 3] smbd/connection.c:31(yield_connection)
Yielding connection to Admin
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/process.c:1459(process_smb)
Transaction 27 of length 39 (0 toread)
[2013/02/20 15:00:52, 3] smbd/process.c:1273(switch_message)
switch message SMBtdis (pid 1428) conn 0xf77bdbb0
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 1] smbd/service.c:1240(close_cnum)
vvl-hp (::ffff:192.168.1.63) closed connection to service Work
[2013/02/20 15:00:52, 3] smbd/connection.c:31(yield_connection)
Yielding connection to Work
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/process.c:1459(process_smb)
Transaction 28 of length 39 (0 toread)
[2013/02/20 15:00:52, 3] smbd/process.c:1273(switch_message)
switch message SMBtdis (pid 1428) conn 0xf77be480
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 1] smbd/service.c:1240(close_cnum)
vvl-hp (::ffff:192.168.1.63) closed connection to service Рабочие документы
[2013/02/20 15:00:52, 3] smbd/connection.c:31(yield_connection)
Yielding connection to Рабочие документы
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/process.c:1459(process_smb)
Transaction 29 of length 39 (0 toread)
[2013/02/20 15:00:52, 3] smbd/process.c:1273(switch_message)
switch message SMBtdis (pid 1428) conn 0xf77bf840
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 1] smbd/service.c:1240(close_cnum)
vvl-hp (::ffff:192.168.1.63) closed connection to service Производство
[2013/02/20 15:00:52, 3] smbd/connection.c:31(yield_connection)
Yielding connection to Производство
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/process.c:1459(process_smb)
Transaction 30 of length 39 (0 toread)
[2013/02/20 15:00:52, 3] smbd/process.c:1273(switch_message)
switch message SMBtdis (pid 1428) conn 0xf77a2158
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/service.c:1240(close_cnum)
vvl-hp (::ffff:192.168.1.63) closed connection to service IPC$
[2013/02/20 15:00:52, 3] smbd/connection.c:31(yield_connection)
Yielding connection to IPC$
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/process.c:1459(process_smb)
Transaction 31 of length 39 (0 toread)
[2013/02/20 15:00:52, 3] smbd/process.c:1273(switch_message)
switch message SMBtdis (pid 1428) conn 0xf77c0ee8
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 1] smbd/service.c:1240(close_cnum)
vvl-hp (::ffff:192.168.1.63) closed connection to service Backup
[2013/02/20 15:00:52, 3] smbd/connection.c:31(yield_connection)
Yielding connection to Backup
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/process.c:1459(process_smb)
Transaction 32 of length 43 (0 toread)
[2013/02/20 15:00:52, 3] smbd/process.c:1273(switch_message)
switch message SMBulogoffX (pid 1428) conn 0x0
[2013/02/20 15:00:52, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:00:52, 3] smbd/reply.c:1948(reply_ulogoffX)
ulogoffX vuid=100
[2013/02/20 15:01:27, 3] smbd/sec_ctx.c:310(set_sec_ctx)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2013/02/20 15:01:27, 3] smbd/connection.c:31(yield_connection)
Yielding connection to
[2013/02/20 15:01:27, 3] smbd/server.c:845(exit_server_common)
Server exit (failed to receive smb request)
PDC виден всегда
[root@REGI-S2 samba]# wbinfo -g
domain guests
domain computers
domain admins
domain users
BUILTIN+administrators
BUILTIN+users
[root@REGI-S2 samba]# wbinfo -p
Ping to winbindd succeeded
[root@REGI-S2 samba]# wbinfo -u
REGI-S2+vvl
REGI-S2+babin
REGI-S2+nesterova
REGI-S2+aitova
REGI-S2+artamonov
REGI-S2+strelkova
REGI-S2+karavaev
user
bilex
regi-tv
root
lomaeva
karavaev
popova
artamonov
metelev
aitova
user1
vvl
gallyamova
babin
work1
nesterova
work2
vasilyeva
gomonova
strelkova
Пробовал менять версию samba на федоре, изначально стояла 3.6, так же переодически не пускал пользователей. Устанавливал самбу 3.6 на pdc, проблема не решилась, появились новые (перестала работать авторизация в squid). Откатился. Вчера откатил версию samba на федоре на такую же как и на фре 3.4.9.
Дополнительно на кидаю еще данных:
PDC:
cat /etc/nsswitch.conf
#
# nsswitch.conf(5) - name service switch configuration file
# $FreeBSD: src/etc/nsswitch.conf,v 1.1.10.1.6.1 2010/12/21 17:09:25 kensmith Exp $
#
group: compat
group_compat: nis
hosts: files dns
networks: files
passwd: compat
passwd_compat: nis
shells: files
services: compat
services_compat: nis
protocols: files
rpc: files
# wbinfo -g
domain guests
domain computers
domain admins
domain users
# wbinfo -u
bilex
regi-tv
root
lomaeva
karavaev
popova
artamonov
metelev
aitova
user1
vvl
gallyamova
babin
work1
nesterova
work2
vasilyeva
gomonova
strelkova
# testparm
Load smb config files from /usr/local/etc/smb.conf
max_open_files: sysctl_max (11095) below minimum Windows limit (16384)
rlimit_max: rlimit_max (11095) below minimum Windows limit (16384)
Processing section "[IPC$]"
Processing section "[print$]"
Processing section "[netlogon]"
Processing section "[profiles]"
Processing section "[Updates]"
Processing section "[Бухгалтерия]"
Processing section "[DB]"
Processing section "[Обмен]"
Processing section "[Сайт]"
Processing section "[Public]"
Loaded services file OK.
'winbind separator = +' might cause problems with group membership.
Server role: ROLE_DOMAIN_PDC
Samba на федоре:
# testparm
Load smb config files from /etc/samba/smb.conf
rlimit_max: rlimit_max (1024) below minimum Windows limit (16384)
Processing section "[IPC$]"
Processing section "[homes]"
Processing section "[Work]"
Processing section "[Admin]"
Processing section "[Backup]"
Processing section "[Рабочие документы]"
Processing section "[Бригада]"
Processing section "[Производство]"
Loaded services file OK.
'winbind separator = +' might cause problems with group membership.
WARNING: You have some share names that are longer than 12 characters.
These may not be accessible to some older clients.
(Eg. Windows9x, WindowsMe, and smbclient prior to Samba 3.0.)
Server role: ROLE_DOMAIN_MEMBER
Press enter to see a dump of your service definitions
cat /etc/nsswitch.conf
#
# /etc/nsswitch.conf
#
# An example Name Service Switch config file. This file should be
# sorted with the most-used services at the beginning.
#
# The entry '[NOTFOUND=return]' means that the search for an
# entry should stop if the search in the previous entry turned
# up nothing. Note that if the search failed due to some other reason
# (like no NIS server responding) then the search continues with the
# next entry.
#
# Valid entries include:
#
# nisplus Use NIS+ (NIS version 3)
# nis Use NIS (NIS version 2), also called YP
# dns Use DNS (Domain Name Service)
# files Use the local files
# db Use the local database (.db) files
# compat Use NIS on compat mode
# hesiod Use Hesiod for user lookups
# [NOTFOUND=return] Stop searching if not found so far
#
# To use db, put the "db" in front of "files" for entries you want to be
# looked up first in the databases
#
# Example:
#passwd: db files nisplus nis
#shadow: db files nisplus nis
#group: db files nisplus nis
passwd: files winbind
shadow: files winbind
group: files winbind
#initgroups: files
#hosts: db files nisplus nis dns
hosts: files mdns4_minimal [NOTFOUND=return] dns wins
# Example - obey only what nisplus tells us...
#services: nisplus [NOTFOUND=return] files
#networks: nisplus [NOTFOUND=return] files
#protocols: nisplus [NOTFOUND=return] files
#rpc: nisplus [NOTFOUND=return] files
#ethers: nisplus [NOTFOUND=return] files
#netmasks: nisplus [NOTFOUND=return] files
bootparams: nisplus [NOTFOUND=return] files
ethers: files
netmasks: files
networks: files dns
protocols: files
rpc: files
services: files
netgroup: files
publickey: files
automount: files
aliases: files
Вот как-то так, скажите какие еще логи или конфиги нужны, то выложу.
Вариант для распечатки
(ok) on 20-Фев-13, 15:27 
