What Happened When Samba Has Incorrect Active Directory Machine Account Password?

Solution Verified - Updated -

Issue

  • samba NT_STATUS_ACCESS_DENIED for all users despite correct file permission
  • winbind failed to resolve users and groups
  • Error: Could not malloc sid with net usersidlist -d 10
  • kinit with machine account does not work:

    kinit -k 'EXAMPLE-HOST$@EXAMPLE.COM'
    
  • wbinfo -P failed with

    checking the NETLOGON for domain[EXAMPLE] dc connection to "" failed
    failed to call wbcPingDc: WBC_ERR_DOMAIN_NOT_FOUND
    
  • wbinfo -t failed with

    checking the trust secret for domain EXAMPLE via RPC calls failed
    wbcCheckTrustCredentials(EXAMPLE): error code was NT_STATUS_DOMAIN_CONTROLLER_NOT_FOUND (0xc0000233)
    failed to call wbcCheckTrustCredentials: WBC_ERR_AUTH_ERROR
    Could not check secret
    

Environment

  • Red Hat Enterprise Linux 8
  • Red Hat Enterprise Linux 7

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In