The Samba-Bugzilla – Bug 5340
Profiles share not accessible any more
Last modified: 2008-04-02 00:25:15 UTC
Since the upgrade to 3.0.28a it is not possible to mount the profiles share (or the subfolders of it) any more.
The error message of smbclient is
tree connect failed: NT_STATUS_NO_SUCH_USER
It is possible to mount the home share or other shares.
directory mask =0700
profile acls= yes
csc policy= disable
valid users=%U @"Domain Admins"
hide files = /desktop.ini/ntuser.ini/NTUSER.*/
nt acl support=yes
From which release did you upgrade? And please send in a debug level 10 log of the smbd process to which the client is connecting to.
Upgraded from 3.0.28 to 3.0.28a (with 3.0.28 no problems in this case) (it also worked with previous versions). Didn't change the config file.
I won't send you debug level 10 messages from this system, but if it helps you I'll try it on another system and then send you debug level 10 messages from the second system, but this will take a few days until I'm ready.
Maybe something has changed between 3.0.28 and 3.0.28a and is causing my trouble?
Sorry no debug level 10 logs yet, but an important information.
The issue occurs when following conditions are met:
* Samba 3.0.28a and a "running" winbind-daemon (winbind seems to be broken in 3.0.28a see my bug 5339)
* The share to which you want to connect has the option force user=%U set
Winbind must only be running, it must not be necessary nor in the nsswitch.conf to show the behaviour (at least on my computer)
Seems as if the server doesn't permit access to the share any more (although he is a PDC itself and the user is a user from its own domain). Don't know whether this is really intentional or not, because even without winbind I think it should work with local users.
When you remove the user=%U option from the share it works even in this case (but I don't think this is really what is wanted).
Please see Bug 5339 for log level 10 files, hope it helps you