Hi, I am able to connect to cifs share on Windows 2008 with Kerberos security via autofs with this map : * - fstype=cifs,sec=krb5i,user=&,uid=&,cruid=&,file_mode=0700,dir_mode=0700,nounix,noserverin o ://figue/data/& Is it working fine with alpha numeric login fs/cifs/cifs_spnego.c: key description = ver=0x2;host=figue;ip4=130.120.8.11;sec=krb5;uid=0x1000001;creduid=0x1000001;user=conrad3 ;pid=0xd331 But if i use numeric only login like 12345678 i have a problem : fs/cifs/cifs_spnego.c: key description = ver=0x2;host=figue;ip4=130.120.8.11;sec=krb5;uid=0xbc614e;creduid=0xbc614e;user=12345678; pid=0xe5db fs/cifs/sess.c: ssetup freeing small buf ffff88003a838140 CIFS VFS: Send error in SessSetup = -126 fs/cifs/connect.c: CIFS VFS: leaving cifs_get_smb_ses (xid = 223) rc = -126 fs/cifs/connect.c: CIFS VFS: leaving cifs_mount (xid = 222) rc = -126 CIFS VFS: cifs_mount failed w/return code = -126 What can I do to solve this issue ? Thanks in advance, Serge > Message du 07/11/12 12:57 > De : "Jeff Layton" > A : "sergio.conrad" > Copie à : linux-cifs@xxxxxxxxxxxxxxx > Objet : Re: cifs autofs krb5i > > On Wed, 07 Nov 2012 01:33:17 +0100 > "sergio.conrad" wrote: > > > Hi, > > > > I am using a test computer > > kernel 2.6.32-279.11.1.el6.x86_64 > > joined to an Active directory with winbind > > > > I am getting A kerberos Ticket with the authentication with > > /etc/security/pam_winbind.conf > > krb5_auth = yes > > krb5_ccache_type = FILE > > > > /etc/request-key.conf is configured like this : > > create cifs.spnego * * /usr/sbin/cifs.upcall %k > > create dns_resolver * * /usr/sbin/cifs.upcall %k > > > > > > I got the ticket from kerberos > > [conrad3@centad5 ~]$ klist > > Ticket cache: FILE:/tmp/krb5cc_16777217 > > Default principal: conrad3@DOMAIN.LOCAL > > > > Valid starting Expires Service principal > > 11/07/12 00:33:48 11/07/12 10:33:48 krbtgt/DOMAIN.LOCAL@DOMAIN.LOCAL > > renew until 11/14/12 00:33:48 > > 11/07/12 00:33:48 11/07/12 10:33:48 CENTAD5$@DOMAIN.LOCAL > > renew until 11/14/12 00:33:48 > > 11/07/12 00:33:48 11/07/12 10:33:48 CENTAD5$@DOMAIN.LOCAL > > renew until 11/14/12 00:33:48 > > 11/07/12 00:41:57 11/07/12 10:33:48 cifs/figue@DOMAIN.LOCAL > > renew until 11/14/12 00:33:48 > > > > > > When i put a entry in fstab, everything is working when i do mount /partage as a user > > FSTAB > > //figue/data/conrad4 /partage cifs > > sec=krb5i,user,nounix,file_mode=0700,dir_mode=0700,noauto > > fs/cifs/cifs_spnego.c: key description = > > ver=0x2;host=figue;ip4=130.120.x.xx;sec=krb5;uid=0x1000001;creduid=0x1000001;user=conrad3 > > ;pid=0xc2d > > > > > > Howether i got a problem with fstab, it seems to not pass the creduid options,and i > > obtain > > CIFS VFS: cifs_mount failed w/return code = -126 > > > > Hereis my different autofs configuration, with the result in dmesg > > > > AUTOFS > > * -fstype=cifs,sec=krb5i,user=& ://figue/data/& > > fs/cifs/cifs_spnego.c: key description = > > ver=0x2;host=figue;ip4=130.120.xx.xx;sec=krb5;uid=0x0;creduid=0x0;user=conrad3;pid=0xc6e > > > > * -fstype=cifs,sec=krb5i,user=&,uid=& ://figue/data/& > > fs/cifs/cifs_spnego.c: key description = > > ver=0x2;host=figue;ip4=130.120.xx.xx;sec=krb5;uid=0x1000001;creduid=0x0;user=conrad3;pid= > > 0xd02 > > > > * -fstype=cifs,sec=krb5i,user=&,uid=&,creduid=& ://figue/data/& > > That option should be "cruid=&". "creduid=" isn't a mount option. > > -- > Jeff Layton > -- > To unsubscribe from this list: send the line "unsubscribe linux-cifs" in > the body of a message to majordomo@xxxxxxxxxxxxxxx > More majordomo info at http://vger.kernel.org/majordomo-info.html > Une messagerie gratuite, garantie à vie et des services en plus, ça vous tente ? Je crée ma boîte mail www.laposte.net -- To unsubscribe from this list: send the line "unsubscribe linux-cifs" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
