We've recently encountered trouble when adding new users to our server. Although we're able to create the users just fine, whenever the new user attempts to connect to our main share, they're unable to log in. Based on the AUTH_LOG, it appears that these new users aren't being found:
However, logging in with some of our longer-standing users works just fine:
Both users belong to the same primary group, with no auxiliary groups; both users have Samba authentication enabled. Both users can log in successfully over SSH. Neither user is locked.
This post mentions the same error being thrown after an upgrade to 12.0-U3; however, our SMBD log doesn't show any authentication or Unix account mapping errors like theirs did. Additionally, we're running 12.0-U8.
What might be going on here?
root@server[~]# midclt call smb.status AUTH_LOG | jq
...
{
"timestamp": "2022-05-06T17:33:34.681030-0400",
"type": "Authentication",
"Authentication": {
"version": {
"major": 1,
"minor": 2
},
"eventId": 4625,
"logonId": "0",
"logonType": 3,
"status": "NT_STATUS_NO_SUCH_USER",
"localAddress": "ipv4:[redacted]:445",
"remoteAddress": "ipv4:[redacted]:64138",
"serviceDescription": "SMB2",
"authDescription": null,
"clientDomain": "SERVER",
"clientAccount": "ntesting",
"workstation": "IMAC-B742D8",
"becameAccount": null,
"becameDomain": null,
"becameSid": null,
"mappedAccount": "ntesting",
"mappedDomain": "SERVER",
"netlogonComputer": null,
"netlogonTrustAccount": null,
"netlogonNegotiateFlags": "0x00000000",
"netlogonSecureChannelType": 0,
"netlogonTrustAccountSid": null,
"passwordType": "NTLMv2",
"duration": 3222
}
}
]
However, logging in with some of our longer-standing users works just fine:
root@server[~]# midclt call smb.status AUTH_LOG | jq
...
{
"timestamp": "2022-05-06T18:02:35.310066-0400",
"type": "Authentication",
"Authentication": {
"version": {
"major": 1,
"minor": 2
},
"eventId": 4624,
"logonId": "0",
"logonType": 3,
"status": "NT_STATUS_OK",
"localAddress": "ipv4:[redacted]:445",
"remoteAddress": "ipv4:[redacted]:50195",
"serviceDescription": "SMB2",
"authDescription": null,
"clientDomain": "SERVER",
"clientAccount": "olduser",
"workstation": "IMAC-B742D8",
"becameAccount": "olduser",
"becameDomain": "SERVER",
"becameSid": "S-1-5-21-2592541842-2331454169-529703238-1068",
"mappedAccount": "olduser",
"mappedDomain": "SERVER",
"netlogonComputer": null,
"netlogonTrustAccount": null,
"netlogonNegotiateFlags": "0x00000000",
"netlogonSecureChannelType": 0,
"netlogonTrustAccountSid": null,
"passwordType": "NTLMv2",
"duration": 4627
}
}
]
Both users belong to the same primary group, with no auxiliary groups; both users have Samba authentication enabled. Both users can log in successfully over SSH. Neither user is locked.
This post mentions the same error being thrown after an upgrade to 12.0-U3; however, our SMBD log doesn't show any authentication or Unix account mapping errors like theirs did. Additionally, we're running 12.0-U8.
root@nutvserver[~]# cat /var/log/samba4/log.smbd
...
[2022/05/03 19:28:51.446572, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh)
Failed to fetch record!
[2022/05/03 19:28:51.446678, 1] ../../source3/smbd/server_reload.c:66(delete_and_reload_printers)
pcap cache not loaded
[2022/05/03 19:49:02.478920, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh)
Failed to fetch record!
[2022/05/03 19:49:02.479179, 1] ../../source3/smbd/server_reload.c:66(delete_and_reload_printers)
pcap cache not loaded
[2022/05/03 19:49:08.343874, 1] ../../source3/rpc_server/srv_pipe_hnd.c:104(np_open)
np_open: 'mdssvc' is not a registered pipe!
[2022/05/03 23:34:05.880378, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh)
Failed to fetch record!
[2022/05/03 23:34:05.880646, 1] ../../source3/smbd/server_reload.c:66(delete_and_reload_printers)
pcap cache not loaded
[2022/05/03 23:51:48.928808, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh)
Failed to fetch record!
[2022/05/03 23:51:48.929073, 1] ../../source3/smbd/server_reload.c:66(delete_and_reload_printers)
pcap cache not loaded
[2022/05/04 00:36:03.276321, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh)
Failed to fetch record!
[2022/05/04 00:36:03.276631, 1] ../../source3/smbd/server_reload.c:66(delete_and_reload_printers)
pcap cache not loaded
[2022/05/04 00:36:04.191927, 1] ../../source3/rpc_server/srv_pipe_hnd.c:104(np_open)
np_open: 'mdssvc' is not a registered pipe!
[2022/05/04 00:36:04.507825, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh)
Failed to fetch record!
[2022/05/04 00:36:04.507900, 1] ../../source3/smbd/server_reload.c:66(delete_and_reload_printers)
pcap cache not loaded
[2022/05/06 17:28:26.729911, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh)
Failed to fetch record!
[2022/05/06 17:28:26.735222, 1] ../../source3/smbd/server_reload.c:66(delete_and_reload_printers)
pcap cache not loaded
[2022/05/06 18:02:35.331095, 1] ../../source3/printing/printer_list.c:234(printer_list_get_last_refresh)
Failed to fetch record!
[2022/05/06 18:02:35.331261, 1] ../../source3/smbd/server_reload.c:66(delete_and_reload_printers)
pcap cache not loaded
[2022/05/06 18:02:35.514423, 1] ../../source3/rpc_server/srv_pipe_hnd.c:104(np_open)
np_open: 'mdssvc' is not a registered pipe!
What might be going on here?
