Samba Can't Apply Permission to shares via AD users.

[hack3rcon]

How can I define a Log Level? I used below commands :

# Debug logging information
log level = 2
log file = /var/log/samba.log.%m
max log size = 50
debug timestamp = yes

Is it OK?
After it when I browse my share and check log I see :

[2015/03/11 01:58:28.161735, 2] ../source3/param/loadparm.c:543(max_open_files)
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
[2015/03/11 01:58:28.161933, 1] ../lib/util/params.c:350(Parameter)
params.c:Parameter() - Ignoring badly formed line in configuration file: privileges
[2015/03/11 01:58:28.162219, 2] ../source3/lib/interface.c:341(add_interface)
added interface enp0s3 ip=172.30.10.32 bcast=172.30.10.63 netmask=255.255.255.192
[2015/03/11 01:58:28.162324, 2] ../source3/lib/interface.c:341(add_interface)
added interface enp0s3 ip=172.30.10.32 bcast=172.30.10.63 netmask=255.255.255.192
[2015/03/11 01:58:28.193441, 1] ../source3/lib/tdb_validate.c:480(tdb_validate_and_backup)
tdb '/var/lib/samba/winbindd_cache.tdb' is valid
[2015/03/11 01:58:28.229333, 1] ../source3/lib/tdb_validate.c:490(tdb_validate_and_backup)
Created backup '/var/lib/samba/winbindd_cache.tdb.bak' of tdb '/var/lib/samba/winbindd_cache.tdb'
[2015/03/11 01:58:28.229794, 2] ../source3/winbindd/winbindd_util.c:255(add_trusted_domain)
Added domain BUILTIN (null) S-1-5-32
[2015/03/11 01:58:28.229871, 2] ../source3/winbindd/winbindd_util.c:255(add_trusted_domain)
Added domain PRINTMAH (null) S-1-5-21-2541196549-2125853042-4012361048
[2015/03/11 01:58:28.229950, 2] ../source3/winbindd/winbindd_util.c:255(add_trusted_domain)
Added domain JASONDOMAINI JASONDOMAIN.JJ S-1-5-21-3570103376-2371597222-4282842042
[2015/03/11 01:58:28.230390, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsAdded domain ADVER adver.JASONDOMAIN.JJ S-1-5-21-1472177942-2601914714-575203747
[2015/03/11 01:58:33.264219, 0] ../source3/libsmb/cliconnect.c:1843(cli_session_setup_spnego_send)
Kinit failed: Clock skew too great
[2015/03/11 02:00:01.915402, 2] ../lib/util/modules.c:191(do_smb_load_module)
Module 'ad' loaded

What is my problem ?

Thank you.

[Tabs]

Yes your log config is correct. We can try a another log level later.

I think what you show here is the log of the winbind deamon "/var/log/samba/log.winbindd" can you show the one of the machine which tries to connect to the share ?

Also I notice that you still did not corrected the comment as I indicated in my first post.

Code: Select all

params.c:Parameter() - Ignoring badly formed line in configuration file: privileges

Note also that kerberos authentication does not work:

Code: Select all

Kinit failed: Clock skew too great

I do not think it is critical with "security=ads" since ntlmv2 might work but that still might be an issue. For this specific problem to be resolved you need to configure NTPD to ensure that your AD and your domain machine have synchronized times. In kerberos synchronized times are needed since the distribution of tickets is highly dependant on time.

[hack3rcon]

Thank you.

I set the time and my Linux Box Time is like Active Directory Time:

[root@printmah ~]# cat /var/log/samba.log.winbindd
[2015/03/11 08:13:18.821765, 2] ../source3/param/loadparm.c:543(max_open_files)
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
[2015/03/11 08:13:18.821963, 1] ../lib/util/params.c:350(Parameter)
params.c:Parameter() - Ignoring badly formed line in configuration file: privileges
[2015/03/11 08:13:18.821974, 2] ../source3/lib/interface.c:341(add_interface)
added interface enp0s3 ip=172.30.10.32 bcast=172.30.10.63 netmask=255.255.255.192
[2015/03/11 08:13:18.821974, 2] ../source3/lib/interface.c:341(add_interface)
added interface enp0s3 ip=172.30.10.32 bcast=172.30.10.63 netmask=255.255.255.192
[2015/03/11 08:13:18.852906, 1] ../source3/lib/tdb_validate.c:480(tdb_validate_and_backup)
tdb '/var/lib/samba/winbindd_cache.tdb' is valid
[2015/03/11 08:13:18.890169, 1] ../source3/lib/tdb_validate.c:490(tdb_validate_and_backup)
Created backup '/var/lib/samba/winbindd_cache.tdb.bak' of tdb '/var/lib/samba/winbindd_cache.tdb'
[2015/03/11 08:13:18.890486, 2] ../source3/winbindd/winbindd_util.c:255(add_trusted_domain)
Added domain BUILTIN (null) S-1-5-32
[2015/03/11 08:13:18.890587, 2] ../source3/winbindd/winbindd_util.c:255(add_trusted_domain)
Added domain PRINTMAH (null) S-1-5-21-2541196549-2125853042-4012361048
[2015/03/11 08:13:18.890658, 2] ../source3/winbindd/winbindd_util.c:255(add_trusted_domain)
Added domain JASONDOMAINI JASONDOMAIN.JJ S-1-5-21-3570103376-2371597222-4282842042
[2015/03/11 08:13:18.891904, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsAdded domain ADVER adver.JASONDOMAIN.JJ S-1-5-21-1472177942-2601914714-575203747
[2015/03/11 08:13:23.931427, 2] ../source3/libsmb/cliconnect.c:1312(cli_session_setup_kerberos_send)
Doing kerberos session setup

AND


[root@printmah ~]# cat /var/log/samba/log.winbindd
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/16 01:40:48, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/16 01:40:49.288950, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/16 01:47:17, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/16 01:47:17.826620, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/16 01:49:38, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/16 01:49:38.168767, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/16 01:51:33, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/16 01:51:33.354407, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/16 01:57:27, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/16 01:57:27.914534, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/16 01:59:00, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/16 01:59:00.845207, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/16 02:12:05, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/16 02:12:05.252803, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/17 01:06:01, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 01:06:01.869586, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/17 01:13:09, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 01:13:09.481734, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/17 01:15:46, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 01:15:46.874848, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/17 01:26:26, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 01:26:26.977352, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/17 04:03:20, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 04:03:20.089169, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/17 04:05:18, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 04:05:18.610227, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/17 04:11:22, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 04:11:22.081381, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/17 04:19:51, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 04:19:51.316323, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/17 04:21:43, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 04:21:43.777250, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsKinit failed: Clock skew too great
[2015/02/17 04:50:01.893828, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=1)
[2015/02/17 04:50:01, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 04:50:02.010562, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/17 05:03:35, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/17 05:03:35.206846, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/18 05:36:04, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/18 05:36:05.210449, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/18 05:48:32, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/18 05:48:32.667893, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/20 04:57:46, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/20 04:57:46.421545, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/25 10:29:54, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/25 10:29:55.170413, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/02/27 05:08:02, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/02/27 05:08:03.289979, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsKinit failed: Clock skew too great
[2015/02/27 05:12:03.284027, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=1)
[2015/03/01 01:03:51, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/01 01:03:51.998172, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/03/07 01:58:02, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/07 01:58:03.151789, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/03/09 07:42:00, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/09 07:42:00.923730, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsKinit failed: Clock skew too great
[2015/03/09 08:02:48.739497, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=1)
[2015/03/10 05:01:14, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/10 05:01:15.537546, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/03/11 01:55:21, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/11 01:55:22.521016, 0] ../lib/util/become_daemon.c:136(daemon_ready)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=1)
[2015/03/11 01:58:28, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/11 01:58:28, 0] ../source3/lib/dumpcore.c:249(dump_core_setup)
Unable to setup corepath for winbindd: Permission denied
[2015/03/11 01:58:28, 2] ../source3/lib/tallocmsg.c:124(register_msg_pool_usage)
Registered MSG_REQ_POOL_USAGE
[2015/03/11 01:58:28, 2] ../source3/lib/dmallocmsg.c:78(register_dmalloc_msgs)
Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
[2015/03/11 07:55:59, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/11 07:55:59, 0] ../source3/lib/dumpcore.c:249(dump_core_setup)
Unable to setup corepath for winbindd: Permission denied
[2015/03/11 07:55:59, 2] ../source3/lib/tallocmsg.c:124(register_msg_pool_usage)
Registered MSG_REQ_POOL_USAGE
[2015/03/11 07:55:59, 2] ../source3/lib/dmallocmsg.c:78(register_dmalloc_msgs)
Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
[2015/03/11 03:34:40, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/11 03:34:40, 0] ../source3/lib/dumpcore.c:249(dump_core_setup)
Unable to setup corepath for winbindd: Permission denied
[2015/03/11 03:34:40, 2] ../source3/lib/tallocmsg.c:124(register_msg_pool_usage)
Registered MSG_REQ_POOL_USAGE
[2015/03/11 03:34:40, 2] ../source3/lib/dmallocmsg.c:78(register_dmalloc_msgs)
Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
[2015/03/11 03:38:58, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/11 03:38:58, 0] ../source3/lib/dumpcore.c:249(dump_core_setup)
Unable to setup corepath for winbindd: Permission denied
[2015/03/11 03:38:58, 2] ../source3/lib/tallocmsg.c:124(register_msg_pool_usage)
Registered MSG_REQ_POOL_USAGE
[2015/03/11 03:38:58, 2] ../source3/lib/dmallocmsg.c:78(register_dmalloc_msgs)
Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
[2015/03/11 08:13:18, 0] ../source3/winbindd/winbindd.c:1447(main)
winbindd version 4.1.1 started.
Copyright Andrew Tridgell and the Samba Team 1992-2013
[2015/03/11 08:13:18, 0] ../source3/lib/dumpcore.c:249(dump_core_setup)
Unable to setup corepath for winbindd: Permission denied
[2015/03/11 08:13:18, 2] ../source3/lib/tallocmsg.c:124(register_msg_pool_usage)
Registered MSG_REQ_POOL_USAGE
[2015/03/11 08:13:18, 2] ../source3/lib/dmallocmsg.c:78(register_dmalloc_msgs)
Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED


But problem not Solved

[Tabs]

I have to say I do not know what is the difference between log.winbindd and samba.log.winbindd...

What I would like to see is the log of the MACHINE WHICH CONNECTS TO YOUR SERVER. For instance if the machine with netbios name "NAME" tryied to connect to the server "SERVER" than on the server you should find a log named /var/log/samba/log.NAME, or possibly /var/log/samba/log.ipAdressOfNAME. This is these logs I would like to see as they report on the authentication procedure and the file access failures.

Here is a deguging manual to help:
http://www.oreilly.com/openbook/samba/book/ch09_01.html

[hack3rcon]

Thank you Again.

My machine name is "Printmah" and logs are :


[root@printmah samba]# cat log.wb-PRINTMAH
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
[2015/02/17 04:50:01.896903, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
[2015/03/09 08:02:48.742475, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)


[root@printmah samba]# cat log.wb-JASONDOMAINI
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsKinit failed: Clock skew too great
[2015/02/17 01:26:26.873154, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsKinit failed: Clock skew too great
[2015/02/17 04:03:19.999901, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsKinit failed: Clock skew too great
[2015/02/17 04:05:18.530270, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsKinit failed: Clock skew too great
[2015/02/17 04:21:43.688849, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionskinit succeeded but ads_sasl_spnego_krb5_bind failed: Clock skew too great
[2015/02/17 08:53:23.050976, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsKinit failed: Clock skew too great
[2015/02/18 18:29:31.609199, 0] ../source3/winbindd/winbindd.c:234(winbindd_sig_term_handler)
Got sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)
STATUS=daemon 'winbindd' finished starting up and ready to serve connectionsGot sig[15] terminate (is_parent=0)

I have other files too :

[root@printmah samba]# ls
cores log.smbd log.wb-BUILTIN log.wb-PRINTMAH log.winbindd-dc-connect old
log.nmbd log.wb-ADVER log.wb-JASONDOMAINI log.winbindd log.winbindd-idmap

What is your idea?

[Tabs]

Please post logs in code sections so that the posts are not too long.

I am a bit puzzled by the logs you have. With your configuration a log is created for any machine which tries to connect. For instance if the machine PRINTMAH tries to connect than you should get the log log.PRINTMAH (not log.wb-PRINTMAH wich is related to winbind for the domain PRINTMAH).

So in the current state it seems you never tried to access files through samba on the machine. Let's see what happen when you try to connect and get files. Could you give me the output of the command bellow when run on the PRINTMAH server:
smbclient //localhost/Demo -U JASONDOMAINI\\jason -d 3

Could you also list the content of /var/log/samba/ after this operation ? If you find a log named log.PRINTMAH, log.localhost or log.127.0.0.1 please also give the content.

[hack3rcon]

Thank you so much.

The results are :

resolve_lmhosts: Attempting lmhosts lookup for name localhost<0x20>
resolve_lmhosts: Attempting lmhosts lookup for name localhost<0x20>
Connecting to 127.0.0.1 at port 445
Doing spnego session setup (blob length=96)
got OID=1.2.840.48018.1.2.2
got OID=1.2.840.113554.1.2.2
got OID=1.3.6.1.4.1.311.2.2.10
got principal=not_defined_in_RFC4178@please_ignore
Got challenge flags:
Got NTLMSSP neg_flags=0x60898215
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x60088215
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x60088215
Domain=[JASONDOMAINI] OS=[Unix] Server=[Samba 4.1.1]
tree connect failed: NT_STATUS_ACCESS_DENIED


And

[root@printmah samba]# ls
cores log.wb-ADVER log.wb-PRINTMAH log.winbindd-idmap
log.nmbd log.wb-BUILTIN log.winbindd old
log.smbd log.wb-JASONDOMAINI log.winbindd-dc-connect

What is your idea?

[hack3rcon]

Anybody, Can you help em to solve my problem?

[Tabs]

I think that this type of message is related to problem with file access.

Just to ensure that login works OK can you give the output of:
smbclient //localhost -L -U JASONDOMAINI\\jason -d 3

This should list the different shares of the server.

If that works correctly then this is a file access problem. Which means:
- re-check that the folder pointed by the share has context samba_share_t;
- that user jason belongs to the group of the folder (ls -l /path/to/share + groups JASONDOMAINI\\jason);
- give the folder to jason to check if the problem is with group attribution;
- if the group of jason is an AD group maybe you could do a test with a fake share attributed to a local group and with jason allocated to this group (to check that the problem does not come from AD groups).

Appart from that my samba knowledge reaches its limit.

[hack3rcon]

[root@printmah ~]# smbclient //localhost -L -U JASONDOMAINI\\jason -d 3
lp_load_ex: refreshing parameters
Initialising global parameters
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
params.c:pm_process() - Processing configuration file "/etc/samba/smb.conf"
Processing section "[global]"
params.c:Parameter() - Ignoring badly formed line in configuration file: privileges
added interface enp0s3 ip=172.30.10.32 bcast=172.30.10.63 netmask=255.255.255.192
Client started (version 4.1.1).
Enter JASONDOMAINI\\jason's password:
resolve_lmhosts: Attempting lmhosts lookup for name localhost<0x20>
resolve_lmhosts: Attempting lmhosts lookup for name localhost<0x20>
Connecting to 127.0.0.1 at port 445
Doing spnego session setup (blob length=96)
got OID=1.2.840.48018.1.2.2
got OID=1.2.840.113554.1.2.2
got OID=1.3.6.1.4.1.311.2.2.10
got principal=not_defined_in_RFC4178@please_ignore
Got challenge flags:
Got NTLMSSP neg_flags=0x60898215
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x60088215
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x60088215
Domain=[JASONDOMAINI] OS=[Unix] Server=[Samba 4.1.1]

Sharename Type Comment
--------- ---- -------
test Disk
Demo Disk
IPC$ IPC IPC Service (Samba 4 Client printmah)
Connecting to 127.0.0.1 at port 139
Doing spnego session setup (blob length=96)
got OID=1.2.840.48018.1.2.2
got OID=1.2.840.113554.1.2.2
got OID=1.3.6.1.4.1.311.2.2.10
got principal=not_defined_in_RFC4178@please_ignore
Got challenge flags:
Got NTLMSSP neg_flags=0x60898215
NTLMSSP: Set final flags:
Got NTLMSSP neg_flags=0x60088215
NTLMSSP Sign/Seal - Initialising with flags:
Got NTLMSSP neg_flags=0x60088215
Domain=[JASONDOMAINI] OS=[Unix] Server=[Samba 4.1.1]

Server Comment
--------- -------
PRINTMAH Samba 4 Client printmah

Workgroup Master
--------- -------
JASONDOMAINI


I use below command :

chcon -t samba_share_t -R /srv/samba/demo/

And :
[root@printmah ~]# ls -l /srv/samba/demo/
total 0

[root@printmah ~]# groups JASONDOMAINI\\jason
JASONDOMAINI\\jason : domain_users

[root@printmah samba]# ls -l
total 4
drwxrwxr-x+ 2 root linux 6 Feb 20 05:13 demo

"linux" is a Group in AD that "jason" is member of it.