summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJohn Terpstra <jht@samba.org>2003-05-27 17:33:12 +0000
committerJohn Terpstra <jht@samba.org>2003-05-27 17:33:12 +0000
commit901d06872a8e1b39708a4179971363a9df02eb93 (patch)
tree86e73b37165c4d08fdc3b3d7da7c5d0fa7fe0b24
parent1c859d606ce734f29fc0767f82345f739f114057 (diff)
downloadsamba-901d06872a8e1b39708a4179971363a9df02eb93.tar.gz
samba-901d06872a8e1b39708a4179971363a9df02eb93.tar.bz2
samba-901d06872a8e1b39708a4179971363a9df02eb93.zip
Added a Common Error.
(This used to be commit e87cf7d65cc415a88fe0215b29b2cd7e24fb779b)
-rw-r--r--docs/docbook/projdoc/ServerType.xml19
1 files changed, 19 insertions, 0 deletions
diff --git a/docs/docbook/projdoc/ServerType.xml b/docs/docbook/projdoc/ServerType.xml
index 056d6227ac..aa90f82334 100644
--- a/docs/docbook/projdoc/ServerType.xml
+++ b/docs/docbook/projdoc/ServerType.xml
@@ -617,6 +617,25 @@ makes Samba act as a domain member. Read the manufacturers manual before the war
</sect2>
+
+<sect2>
+<title>Constantly Losing Connections to Password Server</title>
+
+<para>
+Why does server_validate() simply give up rather than re-establishing its connection to the
+password server? Though I am not fluent in the SMB protocol, perhaps the cluster server
+process passes along to its client workstation the session key it receives from the password
+server, which means the password hashes submitted by the client would not work on a subsequent
+connection, whose session key would be different. So server_validate() must give up.
+</para>
+
+<para>
+Indeed. That's why security = server is at best a nasty hack. Please use security = domain.
+<parameter>security = server<parameter> mode is also known as pass-through authentication.
+</para>
+
+</sect2>
+
</sect1>
</chapter>