Created attachment 16878 [details] smbclient -d10 log Samba in a AD DC role fails to login anonymously with '-N': # testparm -s Load smb config files from /etc/samba/smb.conf Loaded services file OK. Weak crypto is allowed Server role: ROLE_ACTIVE_DIRECTORY_DC # smbclient -N -L 127.0.0.1 gensec_spnego_client_negTokenTarg_step: SPNEGO(ntlmssp) login failed: NT_STATUS_INVALID_PARAMETER session setup failed: NT_STATUS_INVALID_PARAMETER Whereas logging in specifically with -U and NULL user succeeds: # smbclient -U% -L 127.0.0.1 Sharename Type Comment --------- ---- ------- sysvol Disk netlogon Disk IPC$ IPC IPC Service (Samba 4.16.0pre1-UNKNOWN) SMB1 disabled -- no workgroup available # smbd -V Version 4.16.0pre1-UNKNOWN Debug level 10 log entries are attached.
Anoop, I can no longer reproduce this (just tested today's master as well as 4.15.0 and 4.15.1), can you?
I could still reproduce the failure(on latest master @ 1fce72f796e): # testparm -s Load smb config files from /etc/samba/smb.conf Loaded services file OK. Weak crypto is allowed Server role: ROLE_ACTIVE_DIRECTORY_DC # smbclient -N -L 127.0.0.1 gensec_spnego_client_negTokenTarg_step: SPNEGO(ntlmssp) login failed: NT_STATUS_INVALID_PARAMETER session setup failed: NT_STATUS_INVALID_PARAMETER # smbclient -U% -L 127.0.0.1 Sharename Type Comment --------- ---- ------- sysvol Disk netlogon Disk IPC$ IPC IPC Service (Samba 4.16.0pre1-UNKNOWN) SMB1 disabled -- no workgroup available # smbd -V Version 4.16.0pre1-UNKNOWN What am I missing here?
This bug was referenced in samba master: c28be4067463e582e378df402f812e510883d606
Created attachment 16990 [details] patch for 4.15
Created attachment 16991 [details] patch for 4.15
Re-assigning to Jule for 4.15 inclusion.
Pushed to autobuild-v4-15-test.
This bug was referenced in samba v4-15-test: f15232d28ecf37a0ad3c026c37c4b7a7d0898e66
Closing out bug report. Thanks!
This bug was referenced in samba v4-15-stable (Release samba-4.15.3): f15232d28ecf37a0ad3c026c37c4b7a7d0898e66