2412 – net rpc join doesn't work if domain controller is configured to only allow NTLMv2

Bug 2412 - net rpc join doesn't work if domain controller is configured to only allow NTLMv2

Summary: net rpc join doesn't work if domain controller is configured to only allow NT...

Status:	RESOLVED INVALID

Alias:	None

Product:	Samba 3.0
Classification:	Unclassified
Component:	net utility (show other bugs)
Version:	3.0.11
Hardware:	All Windows 2000

Importance:	P3 normal
Target Milestone:	none
Assignee:	Jim McDonough
QA Contact:	Samba QA Contact

URL:
Keywords:

Depends on:
Blocks:

Reported:	2005-03-02 16:59 UTC by Qiao Yang
Modified:	2005-03-08 14:39 UTC (History)
CC List:	1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Qiao Yang 2005-03-02 16:59:58 UTC

Windows 2000 server Domain Controller local policies->security setting -> LAN
Manager Authentication Level: Send NTLMv2 only/refuse LM&NTLM.

"net rpc join" reports NT_STATUS_LOGON_FAILURE even though username/password is
correct.

Comment 1 Andrew Bartlett 2005-03-03 03:47:51 UTC

This looks very much like you need to set:

client ntlmv2 auth = yes

in the smb.conf.  Unfortunetly, it's not possible to autodect this failure,
without always doing a double-login.

Comment 2 Gerald (Jerry) Carter (dead mail address) 2005-03-08 14:39:43 UTC

looks like a configuration issue.