Since zypper dup in Saturday - SAMBA user auth broken

suse_rasputin · February 26, 2024, 11:08am

Hi!

My TW KDE serves a samba share without user auth and one with authentification. Doing fine for years. The zypper dup in Saturday broke the user auth for the samba share, in log I see since then:

[2024/02/26 12:02:09.741145,  0] ../../source3/auth/pampass.c:800(smb_pam_accountcheck)
  smb_pam_accountcheck: PAM: Account Validation Failed - Rejecting User hans!

smb.conf has:

[global]
...
        passdb backend = tdbsam
...

and

[hans]
        path = /mnt/md0/hans
        valid users = hans
        writeable = yes
        browsable = yes
        create mask = 0700
        directory mask = 0700

I tried to renew the samba password for the respective user (smbpasswd hans), without success.

Any ideas what broke my samba share?

suse_rasputin · February 27, 2024, 2:34pm

zypper dup today didn’t help…

deano_ferrari · March 1, 2024, 11:49pm

Further diagnostic information might be useful here.

Please confirm that the samba user exists definitively
sudo pdbedit --list --smbpasswd-style
then show us the diagnostic output when attempting to connect via smbclient
smbclient -L //<samber_server_IP_or_hostname>/<share> -U hans -d 5

suse_rasputin · March 2, 2024, 12:59pm

…debugged this some days ago by changing some parameter on the server (TW), iirc it had something to do with the password transfer or so…

Sorry for not coming back, busy week here.

deano_ferrari · March 2, 2024, 8:41pm

Ok, thanks for the update.