The Samba-Bugzilla – Bug 76
Schannel Broken and Breaks Win2k Pro logons
Last modified: 2005-08-24 10:17:21 UTC
rpc_server/src_pipe.c:api_pipe_netsec_proces(1346) Invalid auth info 68 or level
5 on schannel
rpc_server/srv_pipe_hnd.c:process_request_pdu(605) process_request_pdu: failed to
do schaneed processing
Error dialog says: The system can not log you on due to the following error:
The procedure number is out of range.
Please try again or cosilt your system administrator
Note: Problem is with current CVS code
Note: Disabling of schannel on Samba restores operation.
giving this to TIm since he's been working on it anyways.
I've fixed the secure channel stuff as it portains to net rpc vampire and wbinfo
-t. There still seems to be a problem with wbinfo -a though.
Do we really need to use secure channel when doing anything with winbindd? I
guess it prevents MITM attacks when returning info3 data.
wbinfo -a does work - need to run it as root because of the secure pipe business
Current CVS Code June 14, 2003, clear OK.
Bug closed out in my opinion.
Note: If Invalid auth info 68 or level 5 on schannel is reported then check that
the registry setting for:
"Network: Digitally sign secure channel data (when possible)" is set to Enabled
This info should go into the HOWTO also.
originally reported against 3.0alpha23. Bugzilla spring cleaning.
sorry for the same, cleaning up the database to prevent unecessary reopens of bugs.