Bug 32226 - net rpc machinepass patch for samba 4.1.0~rc2
net rpc machinepass patch for samba 4.1.0~rc2
Product: UCS
Classification: Unclassified
Component: Samba
UCS 3.1
Other Linux
: P5 normal (vote)
: UCS 3.2
Assigned To: Stefan Gohmann
Arvid Requate
: interim-2
Depends on:
  Show dependency treegraph
Reported: 2013-08-12 16:27 CEST by Arvid Requate
Modified: 2013-11-19 06:41 CET (History)
1 user (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:


Note You need to log in before you can comment on or make changes to this bug.
Description Arvid Requate univentionstaff 2013-08-12 16:27:02 CEST
Our current samba 4.1.0~rc2 package has been built without the "net rpc machinepass" patch:


It needs to be adjusted in case it is still required. Otherwise it may be deleted.
Comment 1 Stefan Gohmann univentionstaff 2013-09-12 09:57:34 CEST
I've adjusted the patch and it works:

root@member096:~# smbclient -U member096$%"$(cat /etc/machine.secret)" //$(ucr get ldap/master)/netlogon -c ls 
Domain=[AUTOTEST096] OS=[Unix] Server=[Samba 4.1.0rc3-Debian]
  .                                   D        0  Fri Mar  9 09:49:03 2012
  ..                                  D        0  Thu Sep 12 03:44:05 2013
  scripts                             D        0  Thu Sep 12 03:23:52 2013

                40317 blocks of size 262144. 30707 blocks available
root@member096:~# smbclient -U member096$%fewfewfwefwew //$(ucr get ldap/master)/netlogon -c lssession setup failed: NT_STATUS_LOGON_FAILURE

No special changelog needed.
Comment 2 Arvid Requate univentionstaff 2013-09-17 17:23:27 CEST
 * net rpc join offers the "machinepass=" parameter.
 * net ads already has this builtin.
 * The machine secret specified during join is set in LDAP (and in the local secrets.tdb).
Comment 3 Stefan Gohmann univentionstaff 2013-11-19 06:41:21 CET
UCS 3.2 has been released:

If this error occurs again, please use "Clone This Bug".