13 thoughts on - Badlock Bad Luck

• yum history undo?

  Von meinem iPhone gesendet

• Did you update your Windows clients?

• I’m seeing the exact same behavior in my environment (NT4 PDC, not AD). I
  had to downgrade samba get systems working again.

  The full error message is:

  “The trust relationship between this workstation and the primary domain failed”.

  Did you have any luck finding a solution?

• FYI: https://lists.samba.org/archive/samba/2016-April/199013.html

• Slightly OT. A Windows NT4 PDC? Wow. I applaud you, sir!

  That is a name I’ve not heard in a long time.

  —

  Mark Haney ::: Senior Systems Engineer
  *VIF* *International Education*
  P.O. Box 3566 ::: Chapel Hill, N.C. 27515 ::: USA
  919-265-5006 office

  Global learning for all. http://www.viflearn.com Find VIF on Facebook <http://facebook.com/VIFInternationalEducation> |
  Twitter <https://twitter.com/vifglobaled> | LinkedIn
  <http://www.linkedin.com/company/vif-international-education>

  Recognized as a ‘Best for the World’
  <http://bestfortheworld.bcorporation.net/> B Corp!

• I had exactly the same problem. Your workaround fixed me too.

  With the new samba packages my samba\logs are full of errors.

  If I temporarily disconnected the PC client NIC cable, and logged into the domain using cached credentials, then I could get past the problem. But, you helped me greatly with this posting. I wasted hours checking Windows updates – useless.

  We still need the new configuration settings for our conf file to workaround this problem.

  Bob Smith

  bobsmith at dbata dot com

  *> >* Hello,
  *> >* I run a CentOS 6 machine with samba, serving approx. 150 Windows users with samba running as an NT-like PDC.
  *> >* After today’s samba update (samba-3.6.23-30.el6_7.x86_64 etc.), nobody can log in.
  *> >* They all get the “Trust relationship failed” error message.
  *> >* If I downgrade:
  *> >* yum downgrade samba-common samba-winbind samba-winbind-clients samba-client samba samba-doc samba-domainjoin-gui libsmbclient
  *> >* – the problem goes away.
  *> >* What am I missing?
  *> >* Mogens
  *> >*

• So what do I need to change in smb.conf to get login to work with the new version of samba?

  Mogens

• They run Windows Update automatically.

  They might not have got the update when the server was updated.

  Is this the key point?

  Mogens

• *> >* Hello,
  *> >* I run a CentOS 6 machine with samba, serving approx. 150 Windows users with samba running as an NT-like PDC.
  *> >* After today’s samba update (samba-3.6.23-30.el6_7.x86_64 etc.), nobody can log in.
  *> >* They all get the “Trust relationship failed” error message.
  *> >* If I downgrade:
  *> >* yum downgrade samba-common samba-winbind samba-winbind-clients samba-client samba samba-doc samba-domainjoin-gui libsmbclient
  *> >* – the problem goes away.
  *> >* What am I missing?
  *> >* Mogens
  *> >*

• Thanks, this worked for me, too.

  Mogens

• Just to follow up, the fix for us was to add “client ipc signing = auto” to our smb.conf configuration file.

• Another follow up.

  I have a CentOS 6 server running as a Samba NT4/PDC Domain controller and have seen the regression with 3.6.23-30 release.

  Client is a Windows 2008R2 server.

  Workaround with smb.conf parameters given here seems to work but it works only for accounts already existing in the domain.

  New accounts get a “There are currently no logon servers available to service the logon” message.

  I have downgraded :-(

  Le 19/04/2016 16:20, Bill Baird a

• So have I.

  Mogens