*** BEGIN *** ['/bin/bash', '05domain-join-ntlm-auth'] *** *** 53_samba-common/05domain-join-ntlm-auth *** Checking domain join and ntlm authentication *** *** START TIME: 2017-03-16 15:47:40 *** ----create user info 2017-03-16 15:47:41 create user njro9z1a Object created: uid=njro9z1a,cn=users,dc=deadlock42,dc=intranet info 2017-03-16 15:47:42 add user njro9z1a to group Domain Admins Object modified: cn=Domain Admins,cn=groups,dc=deadlock42,dc=intranet Traceback (most recent call last): File "/usr/sbin/univention-directory-manager", line 201, in main() File "/usr/sbin/univention-directory-manager", line 196, in main result = process_output(output, cmdfile) File "/usr/sbin/univention-directory-manager", line 152, in process_output print line IOError: [Errno 32] Broken pipe could not obtain winbind interface details: WBC_ERR_WINBIND_NOT_AVAILABLE could not obtain winbind separator! debug 2017-03-16 15:47:44 Waiting for replication... OK: replication complete (nid=1740 lid=1740) info 2017-03-16 15:47:44 replication complete. ----wait for the user to be created wbcLookupSid: WBC_ERR_WINBIND_NOT_AVAILABLE TIMEOUT: The user which has been created in UDM could not be found in samba after 20 seconds ----restart winbind Restarting winbind (via systemctl): winbind.service. ----ntml auth with a wrong password (should fail) NT_STATUS_NO_SUCH_USER: No such user (0xc0000064) ----ntml auth with a wrong username (should fail) NT_STATUS_NO_SUCH_USER: No such user (0xc0000064) ----ntml auth with correct credentials NT_STATUS_NO_SUCH_USER: No such user (0xc0000064) ************* ps auwx ******************** USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND root 1 0.0 0.2 29240 5132 ? Ss 07:26 0:02 /sbin/init splash root 2 0.0 0.0 0 0 ? S 07:26 0:00 [kthreadd] root 3 0.0 0.0 0 0 ? S 07:26 0:02 [ksoftirqd/0] root 5 0.0 0.0 0 0 ? S< 07:26 0:00 [kworker/0:0H] root 6 0.0 0.0 0 0 ? S 07:26 0:00 [kworker/u2:0] root 7 0.0 0.0 0 0 ? S 07:26 0:02 [rcu_sched] root 8 0.0 0.0 0 0 ? S 07:26 0:00 [rcu_bh] root 9 0.0 0.0 0 0 ? S 07:26 0:00 [migration/0] root 10 0.0 0.0 0 0 ? S< 07:26 0:00 [lru-add-drain] root 11 0.0 0.0 0 0 ? S 07:26 0:00 [watchdog/0] root 12 0.0 0.0 0 0 ? S 07:26 0:00 [cpuhp/0] root 13 0.0 0.0 0 0 ? S 07:26 0:00 [kdevtmpfs] root 14 0.0 0.0 0 0 ? S< 07:26 0:00 [netns] root 15 0.0 0.0 0 0 ? S 07:26 0:00 [khungtaskd] root 16 0.0 0.0 0 0 ? S 07:26 0:00 [oom_reaper] root 17 0.0 0.0 0 0 ? S< 07:26 0:00 [writeback] root 18 0.0 0.0 0 0 ? S 07:26 0:00 [kcompactd0] root 19 0.0 0.0 0 0 ? SN 07:26 0:00 [ksmd] root 21 0.0 0.0 0 0 ? SN 07:26 0:00 [khugepaged] root 22 0.0 0.0 0 0 ? S< 07:26 0:00 [crypto] root 23 0.0 0.0 0 0 ? S< 07:26 0:00 [kintegrityd] root 24 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 25 0.0 0.0 0 0 ? S< 07:26 0:00 [kblockd] root 26 0.0 0.0 0 0 ? S< 07:26 0:00 [devfreq_wq] root 27 0.0 0.0 0 0 ? S< 07:26 0:00 [watchdogd] root 28 0.0 0.0 0 0 ? S 07:26 0:00 [kswapd0] root 29 0.0 0.0 0 0 ? S< 07:26 0:00 [vmstat] root 42 0.0 0.0 0 0 ? S< 07:26 0:00 [kthrotld] root 43 0.0 0.0 0 0 ? S< 07:26 0:00 [ipv6_addrconf] root 44 0.0 0.0 0 0 ? S 07:26 0:00 [kworker/u2:1] root 80 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 81 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 82 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 83 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 84 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 85 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 86 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 87 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 88 0.0 0.0 0 0 ? S< 07:26 0:00 [ata_sff] root 89 0.0 0.0 0 0 ? S 07:26 0:00 [scsi_eh_0] root 90 0.0 0.0 0 0 ? S< 07:26 0:00 [scsi_tmf_0] root 91 0.0 0.0 0 0 ? S 07:26 0:00 [scsi_eh_1] root 92 0.0 0.0 0 0 ? S< 07:26 0:00 [scsi_tmf_1] root 94 0.0 0.0 0 0 ? S< 07:26 0:00 [ttm_swap] root 95 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 96 0.0 0.0 0 0 ? S< 07:26 0:00 [bioset] root 97 0.0 0.0 0 0 ? S< 07:26 0:01 [kworker/0:1H] root 117 0.0 0.0 0 0 ? S< 07:27 0:00 [dm_bufio_cache] root 132 0.0 0.0 0 0 ? S< 07:27 0:00 [kdmflush] root 133 0.0 0.0 0 0 ? S< 07:27 0:00 [bioset] root 140 0.0 0.0 0 0 ? S< 07:27 0:00 [kdmflush] root 141 0.0 0.0 0 0 ? S< 07:27 0:00 [bioset] root 162 0.0 0.0 0 0 ? S 07:27 0:01 [jbd2/dm-0-8] root 163 0.0 0.0 0 0 ? S< 07:27 0:00 [ext4-rsv-conver] root 202 0.0 0.0 0 0 ? S 07:27 0:00 [kauditd] root 208 0.0 0.1 29908 3948 ? Ss 07:27 0:00 /lib/systemd/systemd-journald root 218 0.0 0.1 42004 3764 ? Ss 07:27 0:00 /lib/systemd/systemd-udevd root 318 0.0 0.0 0 0 ? S< 07:27 0:00 [ext4-rsv-conver] root 554 0.0 0.1 37080 2732 ? Ss 07:27 0:00 /sbin/rpcbind -w statd 564 0.0 0.1 37280 2772 ? Ss 07:27 0:00 /sbin/rpc.statd --port 32765 --outgoing-port 32766 root 570 0.0 0.0 0 0 ? S< 07:27 0:00 [rpciod] root 571 0.0 0.0 0 0 ? S< 07:27 0:00 [xprtiod] root 573 0.0 0.0 0 0 ? S< 07:27 0:00 [nfsiod] root 580 0.0 0.0 23356 204 ? Ss 07:27 0:00 /usr/sbin/rpc.idmapd root 584 0.0 0.1 30848 2360 ? Ss 07:27 0:00 /usr/sbin/rpc.gssd root 586 0.0 0.0 12696 1808 ? Ss 07:27 0:00 /usr/sbin/inetd -i root 587 0.0 0.2 55548 5348 ? Ss 07:27 0:00 /usr/sbin/sshd -D root 589 0.0 0.1 28972 2704 ? Ss 07:27 0:00 /usr/sbin/cron -f daemon 590 0.0 0.0 19024 1720 ? Ss 07:27 0:00 /usr/sbin/atd -f root 592 0.0 0.1 19856 2472 ? Ss 07:27 0:00 /lib/systemd/systemd-logind message+ 651 0.0 0.1 44292 3276 ? Ss 07:27 0:00 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation root 669 0.0 0.3 605624 6892 ? Ssl 07:27 0:01 /usr/sbin/nscd root 683 0.0 0.0 4252 1044 ? S 07:27 0:00 runsvdir -P /etc/service log: ........................................................................................................................................................................................................................................................................................................................................................................................................... root 694 0.0 0.0 4100 684 ? Ss 07:27 0:00 runsv univention-directory-listener root 720 0.0 0.1 258668 3296 ? Ssl 07:27 0:00 /usr/sbin/rsyslogd -n root 722 0.0 0.0 4256 1600 ? Ss 07:27 0:00 /usr/sbin/acpid root 731 0.0 1.7 533276 35836 ? Ssl 07:27 0:13 /usr/bin/dockerd -H fd:// --bip=172.17.42.1/16 --storage-driver=overlay nagios 751 0.0 0.1 25932 2332 ? Ss 07:27 0:00 /usr/sbin/nrpe -c /etc/nagios/nrpe.cfg -d listener 759 0.0 1.5 2270560 31768 ? S 07:27 0:03 /usr/sbin/univention-directory-listener -F -d 2 -b dc=deadlock42,dc=intranet -m /usr/lib/univention-directory-listener/system -c /var/lib/univention-directory-listener -ZZ -x -D cn=member425,cn=memberserver,cn=computers,dc=deadlock42,dc=intranet -y /etc/machine.secret postgres 803 0.0 1.0 210300 20908 ? S 07:27 0:00 /usr/lib/postgresql/9.4/bin/postgres -D /var/lib/postgresql/9.4/main -c config_file=/etc/postgresql/9.4/main/postgresql.conf root 808 0.0 0.4 134152 9088 ? Ssl 07:27 0:01 containerd -l unix:///var/run/docker/libcontainerd/docker-containerd.sock --shim containerd-shim --metrics-interval=0 --start-timeout 2m --state-dir /var/run/docker/libcontainerd/containerd --runtime runc root 811 0.0 2.5 423828 51764 ? S 07:27 0:01 /usr/bin/python2.7 /usr/sbin/univention-management-console-server start root 815 0.0 0.2 219004 5644 ? Ss 07:27 0:02 /usr/sbin/nmbd -D postgres 844 0.0 0.1 210436 3720 ? Ss 07:27 0:00 postgres: checkpointer process postgres 845 0.0 0.2 210436 5144 ? Ss 07:27 0:00 postgres: writer process postgres 846 0.0 0.1 210436 3720 ? Ss 07:27 0:00 postgres: wal writer process postgres 847 0.0 0.3 210704 6456 ? Ss 07:27 0:00 postgres: autovacuum launcher process postgres 848 0.0 0.1 65580 3944 ? Ss 07:27 0:00 postgres: stats collector process ntp 911 0.0 0.2 31612 4216 ? Ss 07:27 0:03 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 112:121 root 1050 0.0 0.8 311356 17152 ? Ss 07:27 0:00 /usr/sbin/smbd -D root 1052 0.0 0.2 298928 4524 ? S 07:27 0:00 /usr/sbin/smbd -D root 1055 0.0 0.2 298952 5428 ? S 07:27 0:00 /usr/sbin/smbd -D root 1142 0.0 0.2 311340 6144 ? S 07:27 0:00 /usr/sbin/smbd -D root 1170 0.0 0.1 36564 3812 ? Ss 07:27 0:00 /usr/lib/postfix/master postfix 1172 0.0 0.1 40744 3880 ? S 07:27 0:00 qmgr -l -t fifo -u root 1214 0.0 0.0 15884 1964 tty1 Ss+ 07:27 0:00 /sbin/agetty --noclear tty1 linux root 1236 0.3 2.7 1287068 56188 ? Sl 07:27 1:38 /usr/bin/python2.7 /usr/sbin/univention-management-console-web-server start root 1322 0.0 1.1 237124 22800 ? Ss 07:27 0:02 /usr/sbin/apache2 -k start www-data 1341 0.0 0.5 239240 10344 ? S 07:27 0:00 /usr/sbin/apache2 -k start www-data 1342 0.0 0.5 239240 10344 ? S 07:27 0:00 /usr/sbin/apache2 -k start www-data 1343 0.0 0.5 239240 10344 ? S 07:27 0:00 /usr/sbin/apache2 -k start www-data 1344 0.0 0.5 239240 10344 ? S 07:27 0:00 /usr/sbin/apache2 -k start www-data 1345 0.0 0.5 239240 10344 ? S 07:27 0:00 /usr/sbin/apache2 -k start postfix 2223 0.0 0.2 44924 4168 ? S 07:45 0:00 tlsmgr -l -t unix -u root 3207 0.0 0.4 119900 9060 ? Ss 08:21 0:00 sshd: root@pts/0 root 3213 0.0 0.2 17140 5548 pts/0 Ss 08:21 0:00 -bash root 14675 0.0 0.0 0 0 ? S 15:37 0:00 [kworker/0:0] root 14808 0.1 0.0 0 0 ? S 15:42 0:00 [kworker/0:1] root 22056 1.2 3.2 117348 67644 pts/0 S+ 15:46 0:00 /usr/bin/python /usr/sbin/ucs-test -E dangerous root 22279 0.0 1.4 400860 29032 ? Ss 15:47 0:00 /usr/bin/python2.7 /usr/share/univention-directory-manager-tools/univention-cli-server root 22367 0.0 0.0 0 0 ? S 15:47 0:00 [kworker/0:2] root 22445 0.2 0.1 15372 3676 ? Ss 15:47 0:00 /bin/bash 05domain-join-ntlm-auth root 22515 0.2 0.0 0 0 ? Z 15:47 0:00 [univention-cli-] postfix 22548 0.0 0.1 40696 3768 ? S 15:47 0:00 pickup -l -t fifo -u root 22633 0.0 0.3 266148 8068 ? Ss 15:48 0:00 /usr/sbin/winbindd root 22635 14.0 0.7 395768 15968 ? S 15:48 0:00 /usr/sbin/winbindd root 22639 0.0 0.1 12156 2096 ? R 15:48 0:00 ps auwx ****************************************** ************* /etc/samba/smb.conf ******************** # Warning: This file is auto-generated and might be overwritten by # univention-config-registry. # Please edit the following file(s) instead: # Warnung: Diese Datei wurde automatisch generiert und kann durch # univention-config-registry überschrieben werden. # Bitte bearbeiten Sie an Stelle dessen die folgende(n) Datei(en): # # /etc/univention/templates/files/etc/samba/smb.conf.d/01univention-samba_main # /etc/univention/templates/files/etc/samba/smb.conf.d/02univention-samba_netbios # /etc/univention/templates/files/etc/samba/smb.conf.d/11univention-samba_ldap # /etc/univention/templates/files/etc/samba/smb.conf.d/21univention-samba_winbind # /etc/univention/templates/files/etc/samba/smb.conf.d/31univention-samba_password # /etc/univention/templates/files/etc/samba/smb.conf.d/41univention-samba_printing # /etc/univention/templates/files/etc/samba/smb.conf.d/51univention-samba_domain # /etc/univention/templates/files/etc/samba/smb.conf.d/52univention-samba_domainname # /etc/univention/templates/files/etc/samba/smb.conf.d/61univention-samba_misc # /etc/univention/templates/files/etc/samba/smb.conf.d/71univention-samba_users # /etc/univention/templates/files/etc/samba/smb.conf.d/81univention-quota_scripts # /etc/univention/templates/files/etc/samba/smb.conf.d/81univention-samba_scripts # /etc/univention/templates/files/etc/samba/smb.conf.d/90univention-samba_user_shares # /etc/univention/templates/files/etc/samba/smb.conf.d/91univention-samba_shares # /etc/univention/templates/files/etc/samba/smb.conf.d/92univention-samba_shares # /etc/univention/templates/files/etc/samba/smb.conf.d/95univention-samba_local_config # /etc/univention/templates/files/etc/samba/smb.conf.d/99univention-samba_local_shares # [global] debug level = 0 logging = file max log size = 0 max open files = 32808 server string = %h univention corporate server ntlm auth = yes machine password timeout = 0 acl allow execute always = True # ignore interfaces in samba/register/exclude/interfaces bind interfaces only = yes interfaces = lo eth0 netbios name = member425 ; ldap ldap suffix = dc=deadlock42,dc=intranet ldap admin dn = "cn=member425,cn=memberserver,cn=computers,dc=deadlock42,dc=intranet" ldap ssl = start tls passdb expand explicit = no ; idmap/winbind ldap idmap suffix = cn=idmap,cn=univention idmap config * : backend = ldap idmap config * : range = 55000-64000 idmap config * : ldap_url = ldap://master421.deadlock42.intranet:7389 ldap://backup422.deadlock42.intranet:7389 idmap config * : ldap_user_dn = cn=member425,cn=memberserver,cn=computers,dc=deadlock42,dc=intranet idmap config DEADLOCK42 : backend = nss idmap config DEADLOCK42 : range = 1000-54999 winbind max clients = 500 winbind nested groups = no winbind enum users = yes winbind enum groups = yes winbind separator = + ; winbind use default domain = yes ; winbind enable local accounts = yes template shell = /bin/bash template homedir = /home/%D-%U ; password sync pam password change = no unix password sync = no ; ldap passwd sync = yes passwd chat = *New*password* %n\n *Re-enter*new*password* %n\n *password*changed* passwd chat timeout = 60 client use spnego = yes obey pam restrictions = yes encrypt passwords = yes ; printing load printers = yes printing = cups printcap name = cups spoolss: architecture = Windows x64 ; domain security = ads realm = DEADLOCK42.INTRANET domain logons = no domain master = no preferred master = no local master = no os level = 65 wins support = no workgroup = DEADLOCK42 oplocks = yes kernel oplocks = yes large readwrite = yes deadtime = 15 read raw = yes write raw = yes max xmit = 65535 getwd cache = yes wide links = no store dos attributes = yes preserve case = yes short preserve case = yes time server = yes host msdfs = no msdfs root = no guest account = nobody map to guest = Bad User admin users = administrator join-backup set quota command = /usr/sbin/univention-setquota check password script = /usr/share/univention-samba/password_check %u usershare max shares = 0 ; ----------------------------------------------------------------------------------------------------------- include = /etc/samba/base.conf include = /etc/samba/shares.conf include = /etc/samba/local.conf ****************************************************** error 2017-03-16 15:48:14 ntlm_auth failed error 2017-03-16 15:48:14 **************** Test failed above this line (1) **************** info 2017-03-16 15:48:14 remove user njro9z1a Object removed: uid=njro9z1a,cn=users,dc=deadlock42,dc=intranet debug 2017-03-16 15:48:14 user njro9z1a removed info 2017-03-16 15:48:14 checking whether the user njro9z1a is really removed debug 2017-03-16 15:48:15 user njro9z1a does not exist *** END TIME: 2017-03-16 15:48:15 *** *** TEST DURATION (H:MM:SS.ms): 0:00:34.886922 *** *** END *** 1 ***