From owner-freebsd-security@freebsd.org Sun Nov 13 09:39:14 2016 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 90DD7C3B989 for ; Sun, 13 Nov 2016 09:39:14 +0000 (UTC) (envelope-from ahicks@p-o.co.uk) Received: from cl-1954.lon-02.gb.sixxs.net (cl-1954.lon-02.gb.sixxs.net [IPv6:2a01:348:6:7a1::2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 5413D8F3 for ; Sun, 13 Nov 2016 09:39:14 +0000 (UTC) (envelope-from ahicks@p-o.co.uk) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=p-o.co.uk; s=mail; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:MIME-Version: Date:Message-ID:From:References:To:Subject:Sender:Reply-To:Cc:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=izyfBG28CCqMj1mCc4igBNHlzZDW/FcTFPQUfL/qX0U=; b=cmwZkwz2ngFDNncSwJkZ6Ul+sU fNVk8EVpqf+XSDdfSGdUY+lpkm/OwCK5450S3+wSWXPj7PGBaVQ2BKCrXTLMsouKz1tezXQ1c86fP XIYd3HAA4sZHnd9cIrapmNN0MI2oM/pznO9JgGDwAweLZDVvDBgZ0ccRn4XMq8xFUspY=; Received: from verdi.p-o.co.uk ([2a01:348:6:87a1::5]) by p-o.co.uk with esmtpsa (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.87 (FreeBSD)) (envelope-from ) id 1c5rEP-0003y7-TJ; Sun, 13 Nov 2016 09:37:48 +0000 Subject: Re: I have no name prompt and no passwords recognized To: Ronny Forberger , freebsd-security@freebsd.org References: <585949692.395252.1478970441730.JavaMail.open-xchange@app04.ox.hosteurope.de> From: Alan Hicks Organization: Persistent Objects Ltd Message-ID: <0ebb4aa6-58bd-4420-42fb-ba8bc2383243@p-o.co.uk> Date: Sun, 13 Nov 2016 09:37:44 +0000 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:45.0) Gecko/20100101 Thunderbird/45.4.0 MIME-Version: 1.0 In-Reply-To: <585949692.395252.1478970441730.JavaMail.open-xchange@app04.ox.hosteurope.de> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit X-Authenticated-As: uid=alan X-Spam-Score: -3.9 (---) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 13 Nov 2016 09:39:14 -0000 On 12/11/2016 17:07, Ronny Forberger wrote: > Hi, > I am using SSSD and FreeBSD to authenticate against samba4. > I used this howto setting all up: > http://serverfault.com/questions/599200/how-to-integrate-active-directory-with-freebsd-10-0-using-security-sssd > > But when I want to logon using password, i.e. via dovecot I get wrong password. > Neigher can I use sudo typing the correct samba4 password. > > Also I get a prompt [I have no name!@HOSTNAME] and my files, which I chowned & > chgrped to the samba user and group only show IDs as owner. This means the system does not know who you are. What authentication system are you using? For example using net/nss-pam-ldap here gives the same error when ldap goes away or upgrading ports. Restarting the authentication service restores access here. > > Any ideas how to solve this? Can this maybe be a permission problem with some > file for sssd / NSS which an unprivileged user cannot read? > > Best regards, > Ronny Forberger > ___________________________________ > Ronny Forberger > ronnyforberger at ronnyforberger.de > PGP: http://www.ronnyforberger.de/pgp/email-encryption.html > _______________________________________________ > freebsd-security@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" > Regards, Alan