[samba-jp:22447] RSATユーザ作成時のエラーについて
Yuki Kusama
kusama-yxa @ necst.nec.co.jp
2015年 3月 5日 (木) 18:00:01 JST
草間と申します。お世話になっております。
RSATユーザ作成時のエラーについてご教示をお願い致します。
■構成
・AD(SAMBA)サーバ
RHEL6.5 / SAMBA4.1.17(ソースインストール)
・メンバサーバ
Windows Server 2012 R2 Standard
※機能の追加からRSAT(AD管理ツール)をインストールしています。
■事象
[ADユーザとコンピュータ]を使用するためメンバサーバ(Win2012R2)
へドメインのAdministoratorユーザでログインしています。
[ADユーザとコンピュータ]ツールより[Users]を右クリック-[新規作成]-[ユーザー]
よりユーザを新規作成しようとしたところ、
「エラーが発生しました。システム管理者に問い合わせてください。」という
ポップアップが出力され、ユーザの新規作成ができない状態となります。
AD(SAMBA)サーバよりsamba-toolで作成したユーザの編集・削除は[ADユーザと
コンピュータ]から可能な状況ですが、新規ユーザ作成が出来ない状態となります。
対処方法や調査すべき点がありましたら、ご教示頂きたく思っております。
SAMBAログを確認しておりますが、明確なエラー等でておらず、調査が行き詰って
おります。
■上記ユーザ作成時のsambaログ出力
[2015/03/05 17:18:48 root @ sambaSV01 ~]# tail -f /var/log/samba/samba.log
[2015/03/05 17:17:39.241554, 3] ../source3/smbd/oplock.c:873(init_oplocks)
init_oplocks: initializing messages.
[2015/03/05 17:17:39.241856, 3] ../source3/smbd/server_exit.c:221(exit_server_common)
Server exit (failed to receive smb request)
[2015/03/05 17:17:39.242299, 3] ../source3/lib/access.c:338(allow_access)
Allowed connection from 127.0.0.1 (127.0.0.1)
[2015/03/05 17:17:39.242539, 3] ../source3/smbd/oplock.c:873(init_oplocks)
init_oplocks: initializing messages.
[2015/03/05 17:17:39.242905, 3] ../source3/smbd/server_exit.c:221(exit_server_common)
Server exit (failed to receive smb request)
[2015/03/05 17:19:13.991692, 3] ../source3/lib/access.c:338(allow_access)
Allowed connection from 192.168.10.100 (192.168.10.100)
[2015/03/05 17:19:13.992025, 3] ../source3/smbd/oplock.c:873(init_oplocks)
init_oplocks: initializing messages.
[2015/03/05 17:19:13.992345, 3] ../source3/smbd/process.c:1802(process_smb)
Transaction 0 of length 159 (0 toread)
[2015/03/05 17:19:13.992532, 3] ../source3/smbd/process.c:1405(switch_message)
switch message SMBnegprot (pid 16815) conn 0x0
[2015/03/05 17:19:13.993449, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [PC NETWORK PROGRAM 1.0]
[2015/03/05 17:19:13.993554, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [LANMAN1.0]
[2015/03/05 17:19:13.993621, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [Windows for Workgroups 3.1a]
[2015/03/05 17:19:13.993684, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [LM1.2X002]
[2015/03/05 17:19:13.993783, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [LANMAN2.1]
[2015/03/05 17:19:13.993910, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [NT LM 0.12]
[2015/03/05 17:19:13.994007, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [SMB 2.002]
[2015/03/05 17:19:13.994098, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [SMB 2.???]
[2015/03/05 17:19:13.994338, 3] ../source3/smbd/smb2_negprot.c:243(smbd_smb2_request_process_negprot)
Selected protocol SMB2_FF
[2015/03/05 17:19:13.995422, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'gssapi_spnego' registered
[2015/03/05 17:19:13.995546, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'gssapi_krb5' registered
[2015/03/05 17:19:13.995635, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'gssapi_krb5_sasl' registered
[2015/03/05 17:19:14.002925, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'sasl-DIGEST-MD5' registered
[2015/03/05 17:19:14.003044, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'schannel' registered
[2015/03/05 17:19:14.003136, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'spnego' registered
[2015/03/05 17:19:14.003224, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'ntlmssp' registered
[2015/03/05 17:19:14.003331, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'krb5' registered
[2015/03/05 17:19:14.003419, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'fake_gssapi_krb5' registered
[2015/03/05 17:19:14.004684, 3] ../lib/ldb-samba/ldb_wrap.c:320(ldb_wrap_connect)
ldb_wrap open of secrets.ldb
[2015/03/05 17:19:14.006269, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'sam' registered
[2015/03/05 17:19:14.006379, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'sam_ignoredomain' registered
[2015/03/05 17:19:14.006497, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'anonymous' registered
[2015/03/05 17:19:14.006585, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'winbind' registered
[2015/03/05 17:19:14.006669, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'winbind_wbclient' registered
[2015/03/05 17:19:14.006755, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'name_to_ntstatus' registered
[2015/03/05 17:19:14.006853, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'unix' registered
[2015/03/05 17:19:14.012582, 3] ../source3/smbd/negprot.c:672(reply_negprot)
Selected protocol SMB 2.???
[2015/03/05 17:19:14.019664, 3] ../source3/smbd/smb2_negprot.c:243(smbd_smb2_request_process_negprot)
Selected protocol SMB3_00
[2015/03/05 17:19:14.020359, 3] ../lib/ldb-samba/ldb_wrap.c:320(ldb_wrap_connect)
ldb_wrap open of secrets.ldb
[2015/03/05 17:19:14.033286, 3] ../lib/ldb-samba/ldb_wrap.c:320(ldb_wrap_connect)
ldb_wrap open of secrets.ldb
[2015/03/05 17:19:14.043450, 3] ../lib/ldb-samba/ldb_wrap.c:320(ldb_wrap_connect)
ldb_wrap open of privilege.ldb
[2015/03/05 17:19:14.049551, 3] ../source3/smbd/password.c:138(register_homes_share)
No home directory defined for user 'SAMBADOM01\Administrator'
[2015/03/05 17:19:14.056014, 3] ../source3/lib/access.c:338(allow_access)
Allowed connection from 192.168.10.100 (192.168.10.100)
[2015/03/05 17:19:14.056161, 3] ../source3/smbd/service.c:612(make_connection_snum)
Connect path is '/tmp' for service [IPC$]
[2015/03/05 17:19:14.056261, 3] ../source3/smbd/vfs.c:113(vfs_init_default)
Initialising default vfs hooks
[2015/03/05 17:19:14.056318, 3] ../source3/smbd/vfs.c:139(vfs_init_custom)
Initialising custom vfs hooks from [/[Default VFS]/]
[2015/03/05 17:19:14.056354, 3] ../source3/smbd/vfs.c:139(vfs_init_custom)
Initialising custom vfs hooks from [acl_xattr]
[2015/03/05 17:19:14.057940, 2] ../lib/util/modules.c:191(do_smb_load_module)
Module 'acl_xattr' loaded
[2015/03/05 17:19:14.057987, 3] ../source3/smbd/vfs.c:139(vfs_init_custom)
Initialising custom vfs hooks from [dfs_samba4]
[2015/03/05 17:19:14.058030, 2] ../source3/modules/vfs_acl_xattr.c:193(connect_acl_xattr)
connect_acl_xattr: setting 'inherit acls = true' 'dos filemode = true' and 'force unknown acl user = true' for service IPC$
[2015/03/05 17:19:14.060609, 3] ../source3/smbd/service.c:856(make_connection_snum)
192.168.10.100 (ipv4:192.168.10.100:50669) connect to service IPC$ initially as user SAMBADOM01\Administrator (uid=0, gid=100) (pid 16815)
[2015/03/05 17:19:24.821068, 3] ../source3/smbd/service.c:1130(close_cnum)
192.168.10.100 (ipv4:192.168.10.100:50669) closed connection to service IPC$
[2015/03/05 17:19:24.834308, 3] ../source3/smbd/server_exit.c:221(exit_server_common)
Server exit (NT_STATUS_CONNECTION_RESET)
[2015/03/05 17:19:29.640984, 3] ../source3/lib/access.c:338(allow_access)
Allowed connection from 192.168.10.100 (192.168.10.100)
[2015/03/05 17:19:29.641285, 3] ../source3/smbd/oplock.c:873(init_oplocks)
init_oplocks: initializing messages.
[2015/03/05 17:19:29.641525, 3] ../source3/smbd/process.c:1802(process_smb)
Transaction 0 of length 159 (0 toread)
[2015/03/05 17:19:29.641652, 3] ../source3/smbd/process.c:1405(switch_message)
switch message SMBnegprot (pid 16868) conn 0x0
[2015/03/05 17:19:29.642415, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [PC NETWORK PROGRAM 1.0]
[2015/03/05 17:19:29.642549, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [LANMAN1.0]
[2015/03/05 17:19:29.642644, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [Windows for Workgroups 3.1a]
[2015/03/05 17:19:29.642735, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [LM1.2X002]
[2015/03/05 17:19:29.642826, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [LANMAN2.1]
[2015/03/05 17:19:29.642917, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [NT LM 0.12]
[2015/03/05 17:19:29.643010, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [SMB 2.002]
[2015/03/05 17:19:29.643100, 3] ../source3/smbd/negprot.c:564(reply_negprot)
Requested protocol [SMB 2.???]
[2015/03/05 17:19:29.643342, 3] ../source3/smbd/smb2_negprot.c:243(smbd_smb2_request_process_negprot)
Selected protocol SMB2_FF
[2015/03/05 17:19:29.644413, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'gssapi_spnego' registered
[2015/03/05 17:19:29.644536, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'gssapi_krb5' registered
[2015/03/05 17:19:29.644611, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'gssapi_krb5_sasl' registered
[2015/03/05 17:19:29.651746, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'sasl-DIGEST-MD5' registered
[2015/03/05 17:19:29.651846, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'schannel' registered
[2015/03/05 17:19:29.651919, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'spnego' registered
[2015/03/05 17:19:29.651992, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'ntlmssp' registered
[2015/03/05 17:19:29.652065, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'krb5' registered
[2015/03/05 17:19:29.652135, 3] ../auth/gensec/gensec_start.c:870(gensec_register)
GENSEC backend 'fake_gssapi_krb5' registered
[2015/03/05 17:19:29.653384, 3] ../lib/ldb-samba/ldb_wrap.c:320(ldb_wrap_connect)
ldb_wrap open of secrets.ldb
[2015/03/05 17:19:29.654804, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'sam' registered
[2015/03/05 17:19:29.654895, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'sam_ignoredomain' registered
[2015/03/05 17:19:29.654969, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'anonymous' registered
[2015/03/05 17:19:29.655039, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'winbind' registered
[2015/03/05 17:19:29.655110, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'winbind_wbclient' registered
[2015/03/05 17:19:29.655181, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'name_to_ntstatus' registered
[2015/03/05 17:19:29.655250, 3] ../source4/auth/ntlm/auth.c:673(auth_register)
AUTH backend 'unix' registered
[2015/03/05 17:19:29.660658, 3] ../source3/smbd/negprot.c:672(reply_negprot)
Selected protocol SMB 2.???
[2015/03/05 17:19:29.663572, 3] ../source3/smbd/smb2_negprot.c:243(smbd_smb2_request_process_negprot)
Selected protocol SMB3_00
[2015/03/05 17:19:29.663945, 3] ../lib/ldb-samba/ldb_wrap.c:320(ldb_wrap_connect)
ldb_wrap open of secrets.ldb
[2015/03/05 17:19:29.670753, 3] ../lib/ldb-samba/ldb_wrap.c:320(ldb_wrap_connect)
ldb_wrap open of secrets.ldb
[2015/03/05 17:19:29.680611, 3] ../lib/ldb-samba/ldb_wrap.c:320(ldb_wrap_connect)
ldb_wrap open of privilege.ldb
[2015/03/05 17:19:29.686344, 3] ../source3/smbd/password.c:138(register_homes_share)
No home directory defined for user 'SAMBADOM01\Administrator'
[2015/03/05 17:19:29.690094, 3] ../source3/lib/access.c:338(allow_access)
Allowed connection from 192.168.10.100 (192.168.10.100)
[2015/03/05 17:19:29.690229, 3] ../source3/smbd/service.c:612(make_connection_snum)
Connect path is '/tmp' for service [IPC$]
[2015/03/05 17:19:29.690327, 3] ../source3/smbd/vfs.c:113(vfs_init_default)
Initialising default vfs hooks
[2015/03/05 17:19:29.690393, 3] ../source3/smbd/vfs.c:139(vfs_init_custom)
Initialising custom vfs hooks from [/[Default VFS]/]
[2015/03/05 17:19:29.690439, 3] ../source3/smbd/vfs.c:139(vfs_init_custom)
Initialising custom vfs hooks from [acl_xattr]
[2015/03/05 17:19:29.691999, 2] ../lib/util/modules.c:191(do_smb_load_module)
Module 'acl_xattr' loaded
[2015/03/05 17:19:29.692057, 3] ../source3/smbd/vfs.c:139(vfs_init_custom)
Initialising custom vfs hooks from [dfs_samba4]
[2015/03/05 17:19:29.692110, 2] ../source3/modules/vfs_acl_xattr.c:193(connect_acl_xattr)
connect_acl_xattr: setting 'inherit acls = true' 'dos filemode = true' and 'force unknown acl user = true' for service IPC$
[2015/03/05 17:19:29.694543, 3] ../source3/smbd/service.c:856(make_connection_snum)
192.168.10.100 (ipv4:192.168.10.100:50672) connect to service IPC$ initially as user SAMBADOM01\Administrator (uid=0, gid=100) (pid 16868)
=====================
samba-jp メーリングリストの案内