[CentOS] CentOS 5.6 - Samba server + Windows error 233

Wed Apr 27 14:53:21 UTC 2011
Guy Boisvert <boisvert.guy at videotron.ca>


     I have upgraded my servers yesterday to CentOS 5.6 via yum update.  
Everything went smoothly except that i have client workstations not part 
of the domain that are not able to access the samba server anymore.  The 
samba server is part of the domain.  We recently added Windows 2008 R2 
DC.  Everything was working smoothly until the CentOS update.

     I had a Win7 Workstation that i had success connecting when using 
the "net use" command:

net use g: \\sambaserver\share /user:domain\username

The mapping worked right away and didn't even asked for the password.  
Normally, before the CentOS upgrade, i'd put \\sambaserver in the UNC 
line of the Windows Explorer and i'd get a box asking for credentials.  
Entering "domain\username" as user and giving the password in the 
password line was working.  Not anymore.

I have another XP workstation on another subnet (router wide open) and 
the mapping with the command line as specified above doesn't even work.  
For this subnet, i have to use the IP address because the workstations 
on it use a DNS which isn't aware or active directory (and cannot change 


Here is my smb.conf:
         workgroup = DOMAINNAME
         realm = DOMAINNAME.COM
         server string = Servername File Server
         socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
         security = ADS
         encrypt passwords = yes
         passdb backend = tdbsam
         password server = *
         preferred master = No
         local master = No
         domain master = No
         cups options = raw
         hosts allow = 10.0.2., 10.0.3., 127.,
pam password change = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *New*Password* %n\n *Re-enter*new*password*%n\n 
username map = /etc/samba/smbusers
unix password sync = Yes
log level = 1
syslog = 0
log file = /var/log/samba/%m
max log size = 50
smb ports = 139
name resolve order = bcast hosts
time server = Yes
printcap name = CUPS
show add printer wizard = No
add user script = /usr/sbin/useradd -m '%u'
delete user script = /usr/sbin/userdel -r '%u'
add group script = /usr/sbin/groupadd '%g'
delete group script = /usr/sbin/groupdel '%g'
add user to group script = /usr/sbin/usermod -G '%g' '%u'
add machine script = /usr/sbin/useradd -s /bin/false -d /tmp '%u'
shutdown script = /var/lib/samba/scripts/shutdown.sh
abort shutdown script = /sbin/shutdown -c

# separate domain and username with '\', like DOMAIN\username
winbind separator =+
# use uids from 10000 to 20000 for domain users
idmap uid = 10000-20000
# use gids from 10000 to 20000 for domain groups
idmap gid = 10000-20000
# allow enumeration of winbind users and groups
winbind enum users = yes

         comment = Home Directories
         read only = No
         browseable = No
         writable = yes

         comment = Fichiers MPEG2
         path = /home/Samba/Videotheque
         read only = No
         available = Yes
         public = Yes
         writable = yes
         admin users = domainname+user1,domainname+user2,domainname+user3


Guy Boisvert
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos/attachments/20110427/d37ab81c/attachment-0002.html>