*New 11.3 series Release:
2019-10-05: XigmaNAS 11.3.0.4.6928 - released, 11.2 series are soon unsupported!

*New 12.0 series Release:
2019-10-05: XigmaNAS 12.0.0.4.6928 - released!

*New 11.2 series Release:
2019-09-23: XigmaNAS 11.2.0.4.6881 - released!

We really need "Your" help on XigmaNAS https://translations.launchpad.net/xigmanas translations. Please help today!

Producing and hosting XigmaNAS costs money. Please consider donating for our project so that we can continue to offer you the best.
We need your support! eg: PAYPAL

CIFS/SMB + LDAP + Open Directory (OSX)

Authenticating XigmaNAS users using LDAP.
Forum rules
Set-Up GuideFAQsForum Rules
Post Reply
Knappe
Starter
Starter
Posts: 53
Joined: 08 May 2015 08:46
Status: Offline

CIFS/SMB + LDAP + Open Directory (OSX)

#1

Post by Knappe » 10 Jul 2015 12:27

use NAS4FREE server for backups and as a file server for sharing in a mixed environment with windows and mac clients.

Access via AFP & SMB/CIFS has to be authenticated against Open Directory Server on an OSX Server with Yosemite (10.10).
Accordingly, I have set up LDAP access:
uri ldap://mydomain.de
base dc=mydomain,dc=de
rootbinddn uid=diradmin,cn=users,dc=mydomain,dc=de
nss_base_passwd cn=users,dc=mydomain,dc=de
nss_base_group cn=groups,dc=mydomain,dc=de
pam_password crypt
ldap_version 3
timelimit 30
bind_timelimit 30
bind_policy soft
pam_ldap_attribute uid
ldap_schema = rfc2307
ldap_tls_reqcert = never
sasl-host IP.NUMBER.OD.SERVER
sasl-realm MYDOMAIN.DE
The authentication via AFP from the mac´s works perfect (after modifying symbolic links see viewtopic.php?t=923)

The windows clients have no access at all.
The command (win client)

Code: Select all

net use \\IP.NUMBER.NAS4FREE.SERVER\BackupSysSMB /USER:ldap_user
produce the error message
system error 86 (sometimes 67)
didn´t find the network name
.
Similarly, of the Mac clients via the SMB protocol (cmdline):

Code: Select all

$ smb://IP.NUMBER.NAS4FREE.SERVER
-bash: smb://IP.NUMBER.NAS4FREE.SERVER: No such file or directory
Here the /var/etc/smb4.conf
global]
server role = standalone
encrypt passwords = yes
netbios name = nas4free
workgroup = MYDOMAIN
server string = NAS4Free Server
security = user
max protocol = SMB3
dns proxy = no
# Settings to enhance performance:
strict locking = no
read raw = yes
write raw = yes
oplocks = yes
max xmit = 65535
deadtime = 15
getwd cache = yes
socket options = TCP_NODELAY SO_SNDBUF=64240 SO_RCVBUF=64240
# End of performance section
password server = IP.NO.OD.SERVER
wins server = IP.NO.OD.SERVER
unix charset = UTF-8
ea support = yes
store dos attributes = yes
local master = no
domain master = no
preferred master = no
os level = 0
time server = no
guest account = ftp
map to guest = Never
max log size = 100
syslog only = yes
syslog = 10
load printers = no
printing = bsd
printcap name = /dev/null
disable spoolss = yes
log level = 10
dos charset = CP437
smb passwd file = /var/etc/private/smbpasswd
private dir = /var/etc/private
passdb backend = ldapsam:"ldap://ODserver "
ldap admin dn = uid=diradmin,cn=users,dc=mydomain,dc=de
ldap suffix = dc=mydomain,dc=de
ldap user suffix = cn=users
ldap group suffix = cn=groups
ldap machine suffix = cn=computers
ldap replication sleep = 1000
ldap passwd sync = yes
ldap ssl = no
ldapsam:trusted = yes
idmap uid = 10000-39999
idmap gid = 10000-39999
aio read size = 4096
aio write size = 4096
client ntlmv2 auth = yes
kernel change notify = no

[BackupNewSMB]
comment = 6 TG
path = /mnt/BackupNew/
writeable = yes
printable = no
veto files = /.snap/.sujournal/
hide dot files = yes
guest ok = no
inherit permissions = yes
vfs objects = shadow_copy2 recycle
recycle:repository = .recycle/%U
recycle:keeptree = yes
recycle:versions = yes
recycle:touch = yes
recycle:directory_mode = 0777
recycle:subdir_mode = 0700
shadow:format = auto-%Y%m%d-%H%M%S
shadow:snapdir = .zfs/snapshot
shadow:sort = desc
shadow:localtime = yes
#vfs objects = netatalk
cal group control = no
The "/var/etc/private/secrets.tdb" is uptodate

Code: Select all

# smbpasswd -w ldap_password
Changed log level in the guy to "debug" without helpful infos:

Code: Select all

# tail -f /var/log/samba/log.nmb (or smbd)
without any error entries.
Same with

Code: Select all

testparm

Any help is appreciated !

Knappe
Starter
Starter
Posts: 53
Joined: 08 May 2015 08:46
Status: Offline

Re: CIFS/SMB + LDAP + Open Directory (OSX)

#2

Post by Knappe » 10 Jul 2015 18:57

debug output (short) from

Code: Select all

 #	smbclient -L IP.OF.OD.SERVER -d 1 -U diradmin --configfile=/var/etc/smb4.conf

Code: Select all

WARNING: The "idmap uid" option is deprecated
WARNING: The "idmap gid" option is deprecated
Enter diradmin's password: 
Domain=[MY_WORKGROUP] OS=[Darwin] Server=[@(#)PROGRAM:smbd  PROJECT:smbx-327.20.3]

	Sharename       Type      Comment
	---------       ----      -------
	Backups.backupdb Disk      
	Shared_Disk1 Disk      
	Shared_Disk2 Disk      
	Groups          Disk      
	IPC$            IPC       
	diradmin        Disk      
Connection to IP.OF.OD.SERVER failed (Error NT_STATUS_INVALID_PARAMETER)
NetBIOS over TCP disabled -- no workgroup available
long …

Code: Select all

# smbclient -L IP.OF.OD.SERVER -U diradmin  --configfile=/var/etc/smb4.conf -d 20

Code: Select all

INFO: Current debug levels:
  all: 20
  tdb: 20
  printdrivers: 20
  lanman: 20
  smb: 20
  rpc_parse: 20
  rpc_srv: 20
  rpc_cli: 20
  passdb: 20
  sam: 20
  auth: 20
  winbind: 20
  vfs: 20
  idmap: 20
  quota: 20
  acls: 20
  locking: 20
  msdfs: 20
  dmapi: 20
  registry: 20
  scavenger: 20
  dns: 20
  ldb: 20
lp_load_ex: refreshing parameters
Initialising global parameters
INFO: Current debug levels:
  all: 20
  tdb: 20
  printdrivers: 20
  lanman: 20
  smb: 20
  rpc_parse: 20
  rpc_srv: 20
  rpc_cli: 20
  passdb: 20
  sam: 20
  auth: 20
  winbind: 20
  vfs: 20
  idmap: 20
  quota: 20
  acls: 20
  locking: 20
  msdfs: 20
  dmapi: 20
  registry: 20
  scavenger: 20
  dns: 20
  ldb: 20
params.c:pm_process() - Processing configuration file "/var/etc/smb4.conf"
Processing section "[global]"
doing parameter server role = standalone
doing parameter encrypt passwords = yes
doing parameter netbios name = nas4free
doing parameter workgroup = MY_WORKGROUP
doing parameter server string = NAS4Free Server
doing parameter security = user
doing parameter max protocol = SMB3
doing parameter dns proxy = no
doing parameter strict locking = no
doing parameter read raw = yes
doing parameter write raw = yes
doing parameter oplocks = yes
doing parameter max xmit = 65535
doing parameter deadtime = 15
doing parameter getwd cache = yes
doing parameter socket options = TCP_NODELAY SO_SNDBUF=64240 SO_RCVBUF=64240
doing parameter password server = IP.OF.OD.SERVER
doing parameter wins server = IP.OF.OD.SERVER
doing parameter unix charset = UTF-8
doing parameter ea support = yes
doing parameter store dos attributes = yes
doing parameter local master = no
doing parameter domain master = no
doing parameter preferred master = no
doing parameter os level = 0
doing parameter time server = no
doing parameter guest account = ftp
doing parameter map to guest = Never
doing parameter max log size = 100
doing parameter syslog only = yes
doing parameter syslog = 10
doing parameter load printers = no
doing parameter printing = bsd
doing parameter printcap name = /dev/null
doing parameter disable spoolss = yes
doing parameter log level = 10
doing parameter dos charset = CP437
doing parameter smb passwd file = /var/etc/private/smbpasswd
doing parameter private dir = /var/etc/private
doing parameter passdb backend = ldapsam:"ldap://mydomain.de "
doing parameter ldap admin dn = uid=diradmin,cn=users,dc=mydomain,dc=de
doing parameter ldap suffix = dc=mydomain,dc=de
doing parameter ldap user suffix = cn=users
doing parameter ldap group suffix = cn=groups
doing parameter ldap machine suffix = cn=computers
doing parameter ldap replication sleep = 1000
doing parameter ldap passwd sync = yes
doing parameter ldap ssl = no
doing parameter ldapsam:trusted = yes
doing parameter idmap uid = 10000-39999
WARNING: The "idmap uid" option is deprecated
doing parameter idmap gid = 10000-39999
WARNING: The "idmap gid" option is deprecated
doing parameter aio read size = 4096
doing parameter aio write size = 4096
doing parameter client ntlmv2 auth = yes
doing parameter kernel change notify = no
pm_process() returned Yes
lp_servicenumber: couldn't find homes
added interface re0 ip=192.168.1.24 bcast=192.168.1.255 netmask=255.255.255.0
Netbios name list:-
my_netbios_names[0]="NAS4FREE"
Client started (version 4.1.18).
Enter diradmin's password: 
Connecting to IP.OF.OD.SERVER at port 445
Socket options:
	SO_KEEPALIVE = 0
	SO_REUSEADDR = 0
	SO_BROADCAST = 0
	TCP_NODELAY = 4
	Could not test socket option TCP_KEEPCNT.
	Could not test socket option TCP_KEEPIDLE.
	Could not test socket option TCP_KEEPINTVL.
	IPTOS_LOWDELAY = 0
	IPTOS_THROUGHPUT = 0
	SO_REUSEPORT = 0
	SO_SNDBUF = 64240
	SO_RCVBUF = 64240
	SO_SNDLOWAT = 2048
	SO_RCVLOWAT = 1
	SO_SNDTIMEO = 0
	SO_RCVTIMEO = 0
 session request ok
Doing spnego session setup (blob length=128)
got OID=1.2.840.48018.1.2.2
got OID=1.2.840.113554.1.2.2
got OID=1.2.752.43.14.3
got OID=1.3.6.1.5.5.14
got OID=1.3.6.1.4.1.311.2.2.10
got OID=1.3.5.1.5.2.7
got OID=1.3.6.1.5.2.5
got principal=not_defined_in_RFC4178@please_ignore
     negotiate: struct NEGOTIATE_MESSAGE
        Signature                : 'NTLMSSP'
        MessageType              : NtLmNegotiate (1)
        NegotiateFlags           : 0x60088215 (1611170325)
               1: NTLMSSP_NEGOTIATE_UNICODE
               0: NTLMSSP_NEGOTIATE_OEM    
               1: NTLMSSP_REQUEST_TARGET   
               1: NTLMSSP_NEGOTIATE_SIGN   
               0: NTLMSSP_NEGOTIATE_SEAL   
               0: NTLMSSP_NEGOTIATE_DATAGRAM
               0: NTLMSSP_NEGOTIATE_LM_KEY 
               0: NTLMSSP_NEGOTIATE_NETWARE
               1: NTLMSSP_NEGOTIATE_NTLM   
               0: NTLMSSP_NEGOTIATE_NT_ONLY
               0: NTLMSSP_ANONYMOUS        
               0: NTLMSSP_NEGOTIATE_OEM_DOMAIN_SUPPLIED
               0: NTLMSSP_NEGOTIATE_OEM_WORKSTATION_SUPPLIED
               0: NTLMSSP_NEGOTIATE_THIS_IS_LOCAL_CALL
               1: NTLMSSP_NEGOTIATE_ALWAYS_SIGN
               0: NTLMSSP_TARGET_TYPE_DOMAIN
               0: NTLMSSP_TARGET_TYPE_SERVER
               0: NTLMSSP_TARGET_TYPE_SHARE
               1: NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY
               0: NTLMSSP_NEGOTIATE_IDENTIFY
               0: NTLMSSP_REQUEST_NON_NT_SESSION_KEY
               0: NTLMSSP_NEGOTIATE_TARGET_INFO
               0: NTLMSSP_NEGOTIATE_VERSION
               1: NTLMSSP_NEGOTIATE_128    
               1: NTLMSSP_NEGOTIATE_KEY_EXCH
               0: NTLMSSP_NEGOTIATE_56     
        DomainNameLen            : 0x0006 (6)
        DomainNameMaxLen         : 0x0006 (6)
        DomainName               : *
            DomainName               : 'MY_WORKGROUP'
        WorkstationLen           : 0x0008 (8)
        WorkstationMaxLen        : 0x0008 (8)
        Workstation              : *
            Workstation              : 'NAS4FREE'
     challenge: struct CHALLENGE_MESSAGE
        Signature                : 'NTLMSSP'
        MessageType              : NtLmChallenge (0x2)
        TargetNameLen            : 0x000c (12)
        TargetNameMaxLen         : 0x000c (12)
        TargetName               : *
            TargetName               : 'MY_WORKGROUP'
        NegotiateFlags           : 0x22810205 (578880005)
               1: NTLMSSP_NEGOTIATE_UNICODE
               0: NTLMSSP_NEGOTIATE_OEM    
               1: NTLMSSP_REQUEST_TARGET   
               0: NTLMSSP_NEGOTIATE_SIGN   
               0: NTLMSSP_NEGOTIATE_SEAL   
               0: NTLMSSP_NEGOTIATE_DATAGRAM
               0: NTLMSSP_NEGOTIATE_LM_KEY 
               0: NTLMSSP_NEGOTIATE_NETWARE
               1: NTLMSSP_NEGOTIATE_NTLM   
               0: NTLMSSP_NEGOTIATE_NT_ONLY
               0: NTLMSSP_ANONYMOUS        
               0: NTLMSSP_NEGOTIATE_OEM_DOMAIN_SUPPLIED
               0: NTLMSSP_NEGOTIATE_OEM_WORKSTATION_SUPPLIED
               0: NTLMSSP_NEGOTIATE_THIS_IS_LOCAL_CALL
               0: NTLMSSP_NEGOTIATE_ALWAYS_SIGN
               1: NTLMSSP_TARGET_TYPE_DOMAIN
               0: NTLMSSP_TARGET_TYPE_SERVER
               0: NTLMSSP_TARGET_TYPE_SHARE
               0: NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY
               0: NTLMSSP_NEGOTIATE_IDENTIFY
               0: NTLMSSP_REQUEST_NON_NT_SESSION_KEY
               1: NTLMSSP_NEGOTIATE_TARGET_INFO
               1: NTLMSSP_NEGOTIATE_VERSION
               1: NTLMSSP_NEGOTIATE_128    
               0: NTLMSSP_NEGOTIATE_KEY_EXCH
               0: NTLMSSP_NEGOTIATE_56     
        ServerChallenge          : 8e86940434c17074
        Reserved                 : 0000000000000000
        TargetInfoLen            : 0x005a (90)
        TargetNameInfoMaxLen     : 0x005a (90)
        TargetInfo               : *
            TargetInfo: struct AV_PAIR_LIST
                count                    : 0x00000006 (6)
                pair: ARRAY(6)
                    pair: struct AV_PAIR
                        AvId                     : MsvAvNbComputerName (0x1)
                        AvLen                    : 0x0012 (18)
                        Value                    : union ntlmssp_AvValue(case 0x1)
                        AvNbComputerName         : 'REALM_of_KERBEROS'
                    pair: struct AV_PAIR
                        AvId                     : MsvAvNbDomainName (0x2)
                        AvLen                    : 0x000c (12)
                        Value                    : union ntlmssp_AvValue(case 0x2)
                        AvNbDomainName           : 'MY_WORKGROUP'
                    pair: struct AV_PAIR
                        AvId                     : MsvAvDnsComputerName (0x3)
                        AvLen                    : 0x0018 (24)
                        Value                    : union ntlmssp_AvValue(case 0x3)
                        AvDnsComputerName        : 'mydomain.de'
                    pair: struct AV_PAIR
                        AvId                     : MsvAvDnsDomainName (0x4)
                        AvLen                    : 0x0004 (4)
                        Value                    : union ntlmssp_AvValue(case 0x4)
                        AvDnsDomainName          : 'de'
                    pair: struct AV_PAIR
                        AvId                     : MsvAvTimestamp (0x7)
                        AvLen                    : 0x0008 (8)
                        Value                    : union ntlmssp_AvValue(case 0x7)
                        AvTimestamp              : Fri Jul 10 18:41:23 2015 CEST
                    pair: struct AV_PAIR
                        AvId                     : MsvAvEOL (0x0)
                        AvLen                    : 0x0000 (0)
                        Value                    : union ntlmssp_AvValue(case 0x0)
        Version: struct ntlmssp_VERSION
            ProductMajorVersion      : NTLMSSP_WINDOWS_MAJOR_VERSION_6 (0x6)
            ProductMinorVersion      : NTLMSSP_WINDOWS_MINOR_VERSION_1 (0x1)
            ProductBuild             : 0x1db0 (7600)
            Reserved                 : 0f0000
            NTLMRevisionCurrent      : UNKNOWN_ENUM_VALUE (0x0)
Got challenge flags:
Got NTLMSSP neg_flags=0x22810205
  NTLMSSP_NEGOTIATE_UNICODE
  NTLMSSP_REQUEST_TARGET
  NTLMSSP_NEGOTIATE_NTLM
  NTLMSSP_NEGOTIATE_TARGET_INFO
  NTLMSSP_NEGOTIATE_VERSION
  NTLMSSP_NEGOTIATE_128
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x20000205
  NTLMSSP_NEGOTIATE_UNICODE
  NTLMSSP_REQUEST_TARGET
  NTLMSSP_NEGOTIATE_NTLM
  NTLMSSP_NEGOTIATE_128
     authenticate: struct AUTHENTICATE_MESSAGE
        Signature                : 'NTLMSSP'
        MessageType              : NtLmAuthenticate (3)
        LmChallengeResponseLen   : 0x0018 (24)
        LmChallengeResponseMaxLen: 0x0018 (24)
        LmChallengeResponse      : *
            LmChallengeResponse      : union ntlmssp_LM_RESPONSE(case 24)
            v1: struct LM_RESPONSE
                Response                 : 7a55f8960a8e0a390f45df8d4c5973f938c3ba21693b8702
        NtChallengeResponseLen   : 0x0086 (134)
        NtChallengeResponseMaxLen: 0x0086 (134)
        NtChallengeResponse      : *
            NtChallengeResponse      : union ntlmssp_NTLM_RESPONSE(case 134)
            v2: struct NTLMv2_RESPONSE
                Response                 : 7a769d0c48ba941cfb6de64bb80278c4
                Challenge: struct NTLMv2_CLIENT_CHALLENGE
                    RespType                 : 0x01 (1)
                    HiRespType               : 0x01 (1)
                    Reserved1                : 0x0000 (0)
                    Reserved2                : 0x00000000 (0)
                    TimeStamp                : Fri Jul 10 18:41:23 2015 CEST
                    ChallengeFromClient      : 06eedda4048ecf20
                    Reserved3                : 0x00000000 (0)
                    AvPairs: struct AV_PAIR_LIST
                        count                    : 0x00000006 (6)
                        pair: ARRAY(6)
                            pair: struct AV_PAIR
                                AvId                     : MsvAvNbComputerName (0x1)
                                AvLen                    : 0x0012 (18)
                                Value                    : union ntlmssp_AvValue(case 0x1)
                                AvNbComputerName         : 'REALM_of_KERBEROS'
                            pair: struct AV_PAIR
                                AvId                     : MsvAvNbDomainName (0x2)
                                AvLen                    : 0x000c (12)
                                Value                    : union ntlmssp_AvValue(case 0x2)
                                AvNbDomainName           : 'MY_WORKGROUP'
                            pair: struct AV_PAIR
                                AvId                     : MsvAvDnsComputerName (0x3)
                                AvLen                    : 0x0018 (24)
                                Value                    : union ntlmssp_AvValue(case 0x3)
                                AvDnsComputerName        : 'mydomain.de'
                            pair: struct AV_PAIR
                                AvId                     : MsvAvDnsDomainName (0x4)
                                AvLen                    : 0x0004 (4)
                                Value                    : union ntlmssp_AvValue(case 0x4)
                                AvDnsDomainName          : 'de'
                            pair: struct AV_PAIR
                                AvId                     : MsvAvTimestamp (0x7)
                                AvLen                    : 0x0008 (8)
                                Value                    : union ntlmssp_AvValue(case 0x7)
                                AvTimestamp              : Fri Jul 10 18:41:23 2015 CEST
                            pair: struct AV_PAIR
                                AvId                     : MsvAvEOL (0x0)
                                AvLen                    : 0x0000 (0)
                                Value                    : union ntlmssp_AvValue(case 0x0)
        DomainNameLen            : 0x000c (12)
        DomainNameMaxLen         : 0x000c (12)
        DomainName               : *
            DomainName               : 'MY_WORKGROUP'
        UserNameLen              : 0x0010 (16)
        UserNameMaxLen           : 0x0010 (16)
        UserName                 : *
            UserName                 : 'diradmin'
        WorkstationLen           : 0x0010 (16)
        WorkstationMaxLen        : 0x0010 (16)
        Workstation              : *
            Workstation              : 'NAS4FREE'
        EncryptedRandomSessionKeyLen: 0x0000 (0)
        EncryptedRandomSessionKeyMaxLen: 0x0000 (0)
        EncryptedRandomSessionKey: *
            EncryptedRandomSessionKey: DATA_BLOB length=0
        NegotiateFlags           : 0x20000205 (536871429)
               1: NTLMSSP_NEGOTIATE_UNICODE
               0: NTLMSSP_NEGOTIATE_OEM    
               1: NTLMSSP_REQUEST_TARGET   
               0: NTLMSSP_NEGOTIATE_SIGN   
               0: NTLMSSP_NEGOTIATE_SEAL   
               0: NTLMSSP_NEGOTIATE_DATAGRAM
               0: NTLMSSP_NEGOTIATE_LM_KEY 
               0: NTLMSSP_NEGOTIATE_NETWARE
               1: NTLMSSP_NEGOTIATE_NTLM   
               0: NTLMSSP_NEGOTIATE_NT_ONLY
               0: NTLMSSP_ANONYMOUS        
               0: NTLMSSP_NEGOTIATE_OEM_DOMAIN_SUPPLIED
               0: NTLMSSP_NEGOTIATE_OEM_WORKSTATION_SUPPLIED
               0: NTLMSSP_NEGOTIATE_THIS_IS_LOCAL_CALL
               0: NTLMSSP_NEGOTIATE_ALWAYS_SIGN
               0: NTLMSSP_TARGET_TYPE_DOMAIN
               0: NTLMSSP_TARGET_TYPE_SERVER
               0: NTLMSSP_TARGET_TYPE_SHARE
               0: NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY
               0: NTLMSSP_NEGOTIATE_IDENTIFY
               0: NTLMSSP_REQUEST_NON_NT_SESSION_KEY
               0: NTLMSSP_NEGOTIATE_TARGET_INFO
               0: NTLMSSP_NEGOTIATE_VERSION
               1: NTLMSSP_NEGOTIATE_128    
               0: NTLMSSP_NEGOTIATE_KEY_EXCH
               0: NTLMSSP_NEGOTIATE_56     
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x20000205
  NTLMSSP_NEGOTIATE_UNICODE
  NTLMSSP_REQUEST_TARGET
  NTLMSSP_NEGOTIATE_NTLM
  NTLMSSP_NEGOTIATE_128
NTLMSSP Sign/Seal - using NTLM1
cli_init_creds: user diradmin domain MY_WORKGROUP
Domain=[MY_WORKGROUP] OS=[Darwin] Server=[@(#)PROGRAM:smbd  PROJECT:smbx-327.20.3]
 session setup ok
 tconx ok

	Sharename       Type      Comment
	---------       ----      -------
Bind RPC Pipe: host IP.OF.OD.SERVER auth_type 0, auth_level 1
     &r: struct ncacn_packet
        rpc_vers                 : 0x05 (5)
        rpc_vers_minor           : 0x00 (0)
        ptype                    : DCERPC_PKT_BIND (11)
        pfc_flags                : 0x03 (3)
        drep: ARRAY(4)
            [0]                      : 0x10 (16)
            [1]                      : 0x00 (0)
            [2]                      : 0x00 (0)
            [3]                      : 0x00 (0)
        frag_length              : 0x0048 (72)
        auth_length              : 0x0000 (0)
        call_id                  : 0x00000001 (1)
        u                        : union dcerpc_payload(case 11)
        bind: struct dcerpc_bind
            max_xmit_frag            : 0x10b8 (4280)
            max_recv_frag            : 0x10b8 (4280)
            assoc_group_id           : 0x00000000 (0)
            num_contexts             : 0x01 (1)
            ctx_list: ARRAY(1)
                ctx_list: struct dcerpc_ctx_list
                    context_id               : 0x0000 (0)
                    num_transfer_syntaxes    : 0x01 (1)
                    abstract_syntax: struct ndr_syntax_id
                        uuid                     : 4b324fc8-1670-01d3-1278-5a47bf6ee188
                        if_version               : 0x00000003 (3)
                    transfer_syntaxes: ARRAY(1)
                        transfer_syntaxes: struct ndr_syntax_id
                            uuid                     : 8a885d04-1ceb-11c9-9fe8-08002b104860
                            if_version               : 0x00000002 (2)
            auth_info                : DATA_BLOB length=0
rpc_api_pipe: host IP.OF.OD.SERVER
num_setup=2, max_setup=0, param_total=0, this_param=0, max_param=0, data_total=72, this_data=72, max_data=4280, param_offset=84, param_pad=2, param_disp=0, data_offset=84, data_pad=0, data_disp=0
rpc_read_send: data_to_read: 52
     r: struct ncacn_packet
        rpc_vers                 : 0x05 (5)
        rpc_vers_minor           : 0x00 (0)
        ptype                    : DCERPC_PKT_BIND_ACK (12)
        pfc_flags                : 0x03 (3)
        drep: ARRAY(4)
            [0]                      : 0x10 (16)
            [1]                      : 0x00 (0)
            [2]                      : 0x00 (0)
            [3]                      : 0x00 (0)
        frag_length              : 0x0044 (68)
        auth_length              : 0x0000 (0)
        call_id                  : 0x00000001 (1)
        u                        : union dcerpc_payload(case 12)
        bind_ack: struct dcerpc_bind_ack
            max_xmit_frag            : 0x10b8 (4280)
            max_recv_frag            : 0x10b8 (4280)
            assoc_group_id           : 0x001ef437 (2028599)
            secondary_address_size   : 0x000d (13)
            secondary_address        : '\PIPE\srvsvc'
            _pad1                    : DATA_BLOB length=1
[0000] 00                                                . 
            num_results              : 0x01 (1)
            ctx_list: ARRAY(1)
                ctx_list: struct dcerpc_ack_ctx
                    result                   : 0x0000 (0)
                    reason                   : 0x0000 (0)
                    syntax: struct ndr_syntax_id
                        uuid                     : 8a885d04-1ceb-11c9-9fe8-08002b104860
                        if_version               : 0x00000002 (2)
            auth_info                : DATA_BLOB length=0
rpc_api_pipe: got frag len of 68 at offset 0: NT_STATUS_OK
rpc_api_pipe: host IP.OF.OD.SERVER returned 68 bytes.
check_bind_response: accepted!
cli_rpc_pipe_open_noauth: opened pipe \srvsvc to machine IP.OF.OD.SERVER and bound anonymously.
     srvsvc_NetShareEnumAll: struct srvsvc_NetShareEnumAll
        in: struct srvsvc_NetShareEnumAll
            server_unc               : *
                server_unc               : 'IP.OF.OD.SERVER'
            info_ctr                 : *
                info_ctr: struct srvsvc_NetShareInfoCtr
                    level                    : 0x00000001 (1)
                    ctr                      : union srvsvc_NetShareCtr(case 1)
                    ctr1                     : *
                        ctr1: struct srvsvc_NetShareCtr1
                            count                    : 0x00000000 (0)
                            array                    : NULL
            max_buffer               : 0xffffffff (4294967295)
            resume_handle            : *
                resume_handle            : 0x00000000 (0)
     &r: struct ncacn_packet
        rpc_vers                 : 0x05 (5)
        rpc_vers_minor           : 0x00 (0)
        ptype                    : DCERPC_PKT_REQUEST (0)
        pfc_flags                : 0x03 (3)
        drep: ARRAY(4)
            [0]                      : 0x10 (16)
            [1]                      : 0x00 (0)
            [2]                      : 0x00 (0)
            [3]                      : 0x00 (0)
        frag_length              : 0x0018 (24)
        auth_length              : 0x0000 (0)
        call_id                  : 0x00000002 (2)
        u                        : union dcerpc_payload(case 0)
        request: struct dcerpc_request
            alloc_hint               : 0x0000004c (76)
            context_id               : 0x0000 (0)
            opnum                    : 0x000f (15)
            object                   : union dcerpc_object(case 0)
            empty: struct dcerpc_empty
            _pad                     : DATA_BLOB length=0
            stub_and_verifier        : DATA_BLOB length=0
rpc_api_pipe: host IP.OF.OD.SERVER
num_setup=2, max_setup=0, param_total=0, this_param=0, max_param=0, data_total=100, this_data=100, max_data=4280, param_offset=84, param_pad=2, param_disp=0, data_offset=84, data_pad=0, data_disp=0
rpc_read_send: data_to_read: 460
     r: struct ncacn_packet
        rpc_vers                 : 0x05 (5)
        rpc_vers_minor           : 0x00 (0)
        ptype                    : DCERPC_PKT_RESPONSE (2)
        pfc_flags                : 0x03 (3)
        drep: ARRAY(4)
            [0]                      : 0x10 (16)
            [1]                      : 0x00 (0)
            [2]                      : 0x00 (0)
            [3]                      : 0x00 (0)
        frag_length              : 0x01dc (476)
        auth_length              : 0x0000 (0)
        call_id                  : 0x00000002 (2)
        u                        : union dcerpc_payload(case 2)
        response: struct dcerpc_response
            alloc_hint               : 0x000001c4 (452)
            context_id               : 0x0000 (0)
            cancel_count             : 0x00 (0)
            _pad                     : DATA_BLOB length=1
[0000] 00                                                . 
            stub_and_verifier        : DATA_BLOB length=452
[0000] 01 00 00 00 01 00 00 00   01 00 00 00 06 00 00 00   ........ ........
[0010] 01 00 00 00 06 00 00 00   01 00 00 00 00 00 00 00   ........ ........
[0020] 01 00 00 00 01 00 00 00   00 00 00 00 01 00 00 00   ........ ........
[0030] 01 00 00 00 00 00 00 00   01 00 00 00 01 00 00 00   ........ ........
[0040] 00 00 00 00 01 00 00 00   01 00 00 00 03 00 00 80   ........ ........
[0050] 01 00 00 00 01 00 00 00   00 00 00 40 01 00 00 00   ........ ...@....
[0060] 11 00 00 00 00 00 00 00   11 00 00 00 42 00 61 00   ........ ....B.a.
[0070] 63 00 6B 00 75 00 70 00   73 00 2E 00 62 00 61 00   c.k.u.p. s...b.a.
[0080] 63 00 6B 00 75 00 70 00   64 00 62 00 00 00 00 00   c.k.u.p. d.b.....
[0090] 01 00 00 00 00 00 00 00   01 00 00 00 00 00 00 00   ........ ........
[00A0] 18 00 00 00 00 00 00 00   18 00 00 00 46 00 61 00   ........ ....F.a.
[00B0] 6D 00 69 00 6C 00 79 00   20 00 42 00 61 00 63 00   m.i.l.y.  .B.a.c.
[00C0] 6B 00 75 00 70 00 4D 00   61 00 63 00 42 00 6F 00   k.u.p.M. a.c.B.o.
[00D0] 6F 00 6B 00 50 00 72 00   6F 00 00 00 01 00 00 00   o.k.P.r. o.......
[00E0] 00 00 00 00 01 00 00 00   00 00 00 00 14 00 00 00   ........ ........
[00F0] 00 00 00 00 14 00 00 00   46 00 61 00 6D 00 69 00   ........ F.a.m.i.
[0100] 6C 00 79 00 20 00 42 00   61 00 63 00 6B 00 75 00   l.y. .B. a.c.k.u.
[0110] 70 00 4F 00 6C 00 64 00   69 00 65 00 73 00 00 00   p.O.l.d. i.e.s...
[0120] 01 00 00 00 00 00 00 00   01 00 00 00 00 00 00 00   ........ ........
[0130] 07 00 00 00 00 00 00 00   07 00 00 00 47 00 72 00   ........ ....G.r.
[0140] 6F 00 75 00 70 00 73 00   00 00 00 00 01 00 00 00   o.u.p.s. ........
[0150] 00 00 00 00 01 00 00 00   00 00 00 00 05 00 00 00   ........ ........
[0160] 00 00 00 00 05 00 00 00   49 00 50 00 43 00 24 00   ........ I.P.C.$.
[0170] 00 00 00 00 01 00 00 00   00 00 00 00 01 00 00 00   ........ ........
[0180] 00 00 00 00 09 00 00 00   00 00 00 00 09 00 00 00   ........ ........
[0190] 64 00 69 00 72 00 61 00   64 00 6D 00 69 00 6E 00   d.i.r.a. d.m.i.n.
[01A0] 00 00 00 00 01 00 00 00   00 00 00 00 01 00 00 00   ........ ........
[01B0] 00 00 00 00 06 00 00 00   01 00 00 00 00 00 00 00   ........ ........
[01C0] 00 00 00 00                                       .... 
Got pdu len 476, data_len 452, ss_len 0
rpc_api_pipe: got frag len of 476 at offset 0: NT_STATUS_OK
rpc_api_pipe: host IP.OF.OD.SERVER returned 452 bytes.
     srvsvc_NetShareEnumAll: struct srvsvc_NetShareEnumAll
        out: struct srvsvc_NetShareEnumAll
            info_ctr                 : *
                info_ctr: struct srvsvc_NetShareInfoCtr
                    level                    : 0x00000001 (1)
                    ctr                      : union srvsvc_NetShareCtr(case 1)
                    ctr1                     : *
                        ctr1: struct srvsvc_NetShareCtr1
                            count                    : 0x00000006 (6)
                            array                    : *
                                array: ARRAY(6)
                                    array: struct srvsvc_NetShareInfo1
                                        name                     : *
                                            name                     : 'Backups.backupdb'
                                        type                     : STYPE_DISKTREE (0x0)
                                        comment                  : *
                                            comment                  : ''
                                    array: struct srvsvc_NetShareInfo1
                                        name                     : *
                                            name                     : 'Shared_Disk1'
                                        type                     : STYPE_DISKTREE (0x0)
                                        comment                  : *
                                            comment                  : ''
                                    array: struct srvsvc_NetShareInfo1
                                        name                     : *
                                            name                     : 'Shared_Disk2'
                                        type                     : STYPE_DISKTREE (0x0)
                                        comment                  : *
                                            comment                  : ''
                                    array: struct srvsvc_NetShareInfo1
                                        name                     : *
                                            name                     : 'Groups'
                                        type                     : STYPE_DISKTREE (0x0)
                                        comment                  : *
                                            comment                  : ''
                                    array: struct srvsvc_NetShareInfo1
                                        name                     : *
                                            name                     : 'IPC$'
                                        type                     : STYPE_IPC_HIDDEN (0x80000003)
                                        comment                  : *
                                            comment                  : ''
                                    array: struct srvsvc_NetShareInfo1
                                        name                     : *
                                            name                     : 'diradmin'
                                        type                     : STYPE_DISKTREE_TEMPORARY (0x40000000)
                                        comment                  : *
                                            comment                  : ''
            totalentries             : *
                totalentries             : 0x00000006 (6)
            resume_handle            : *
                resume_handle            : 0x00000000 (0)
            result                   : WERR_OK
	Backups.backupdb Disk      
	Shared_Disk1 Disk      
	Shared_Disk2 Disk      
	Groups          Disk      
	IPC$            IPC       
	diradmin        Disk      
Connecting to IP.OF.OD.SERVER at port 139
Connection to IP.OF.OD.SERVER failed (Error NT_STATUS_INVALID_PARAMETER)
NetBIOS over TCP disabled -- no workgroup available
Hope it helps …

newyork10023
NewUser
NewUser
Posts: 7
Joined: 16 Jan 2016 07:41
Status: Offline

Re: CIFS/SMB + LDAP + Open Directory (OSX)

#3

Post by newyork10023 » 23 Feb 2016 06:41

Your question is quite old and was never answered. I haven't tried this, but it may prove useful:

http://aarononeal.info/configure-freena ... directory/


I am currently wrestling with Samba using our LDAP configuration (on Open Directory) and causing a kernel panic. (I posted information in the Extended GUI thread, page 14, on the NAS4Free forums). We don't use Samba: it is neither configured nor enabled. However, as per the link above which is about FreeNAS, Samba pulls in the LDAP configuration, and apparently does so also on NAS4Free given the kernel panics I see.

I would like to prevent Samba from running at all (preferred), or configure Sambato not to use LDAP (next best), or else try the directions in the link above.

Post Reply

Return to “LDAP (Lightweight Directory Access Protocol)”