Hi,
This issue I'm having appears fairly similar in symptoms to :
https://forums.freenas.org/index.php?posts/254615/
But couldn't find anything relevant to 9.10 - and that above bug is marked as resolved.
FreeNAS 9.10 upgraded from 9.3 via ISO. Also applied an update from GUI, but the problem was happening before/after the update. (everything worked fine in 9.3)
Basically, the "Domain Account Name" cannot be changed. No matter what credentials are provided, it returns:
If I change the password on existing username, it works fine.
No errors appear at all in the winbind logs, or in messages - so thinking this might be a GUI error? Any ideas people?
From the AD side, I can see it authenticate, then do a strange logon failure at the end - with the old username (can only assume it is trying the new password)-
1. The computer attempted to validate the credentials for an account.
Authentication Package: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Logon Account: [new freenas account]
Source Workstation: [AD server]
Error Code: 0x0
2. A logon was attempted using explicit credentials.
3. An account was successfully logged on.
4. Special privileges assigned to new logon.
5. An account was logged off.
6. An account failed to log on.
Account For Which Logon Failed:
Security ID: NULL SID
Account Name: [old username]
..
Failure Reason: Unknown user name or bad password
(note: I've also tried to force the new credentials into freenas database by sqlite3, but this had spectacularly bad results)
This issue I'm having appears fairly similar in symptoms to :
https://forums.freenas.org/index.php?posts/254615/
But couldn't find anything relevant to 9.10 - and that above bug is marked as resolved.
FreeNAS 9.10 upgraded from 9.3 via ISO. Also applied an update from GUI, but the problem was happening before/after the update. (everything worked fine in 9.3)
Basically, the "Domain Account Name" cannot be changed. No matter what credentials are provided, it returns:
- {'info': '80090308: LdapErr: DSID-0C0903D0, comment: AcceptSecurityContext error, data 52e, v2580', 'desc': 'Invalid credentials'}
If I change the password on existing username, it works fine.
No errors appear at all in the winbind logs, or in messages - so thinking this might be a GUI error? Any ideas people?
From the AD side, I can see it authenticate, then do a strange logon failure at the end - with the old username (can only assume it is trying the new password)-
1. The computer attempted to validate the credentials for an account.
Authentication Package: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Logon Account: [new freenas account]
Source Workstation: [AD server]
Error Code: 0x0
2. A logon was attempted using explicit credentials.
3. An account was successfully logged on.
4. Special privileges assigned to new logon.
5. An account was logged off.
6. An account failed to log on.
Account For Which Logon Failed:
Security ID: NULL SID
Account Name: [old username]
..
Failure Reason: Unknown user name or bad password
(note: I've also tried to force the new credentials into freenas database by sqlite3, but this had spectacularly bad results)
