[Freeipa-users] AD --> IPA trust --::-- ipa: ERROR: Insufficient access: CIFS server denied your credentials
g.fer.ordas at unicyber.co.uk
g.fer.ordas at unicyber.co.uk
Sat Apr 11 06:05:42 UTC 2015
Guys
Anyway of simply skipping the CIFS mount credentials bit?
I do not actually need the AD CIFS at this point.
ipa trust-add --type=ad ad.domain.com --admin Admin --password
Active Directory domain administrator's password:
ipa: ERROR: Insufficient access: CIFS server <ad.domain.com> denied your
credentials
---
ot NTLMSSP neg_flags=0x60088205
NTLMSSP_NEGOTIATE_UNICODE
NTLMSSP_REQUEST_TARGET
NTLMSSP_NEGOTIATE_NTLM
NTLMSSP_NEGOTIATE_ALWAYS_SIGN
NTLMSSP_NEGOTIATE_NTLM2
NTLMSSP_NEGOTIATE_128
NTLMSSP_NEGOTIATE_KEY_EXCH
s4_tevent: Added timed event "dcerpc_timeout_handler": 0x7f31e9911d50
s4_tevent: Destroying timer event 0x7f31e9911d50
"dcerpc_timeout_handler"
dcerpc: alter_resp - rpc fault: WERR_ACCESS_DENIED
s4_tevent: Schedule immediate event "tevent_req_trigger": 0x7f31e99093a0
s4_tevent: Run immediate event "tevent_req_trigger": 0x7f31e99093a0
Failed to bind to uuid 12345778-1234-abcd-ef00-0123456789ab for
12345778-1234-abcd-ef00-0123456789ab at AD.ad.domain.com[49155]
NT_STATUS_LOGON_FAILURE
s4_tevent: Destroying timer event 0x7f31e80539d0
"dcerpc_connect_timeout_handler"
[Sat Apr 11 06:00:17.408265 2015] [:error] [pid 25074] ipa: INFO:
[jsonserver_session] admin at LINUX.DOMAIN.COM: trust_add(u'domain.com',
trust_type=u'ad', realm_admin=Admin', realm_passwd=u'********',
all=False, raw=False, version=u'2.114'): ACIError
----
This is freeipa-server-4.1.4-1.el7.centos.x86_64
Thanks!!
More information about the Freeipa-users
mailing list