AnsweredAssumed Answered

CIFS with Passthru not working

Question asked by clancydamon on Jan 29, 2010
Latest reply on Feb 3, 2010 by mikeh
Hello. I've been struggling to get this damn thing up and working for almost three weeks now, and each victory leads to two setbacks. I'm trying to run Alfresco 3.2r on a VirtualBox running CentOS 5.4. This VirtualBox is hosted on a PC running Win7 Professional 64-bit. The goal is to create an environment where all authentication is handled by the active directory on our main server running SBS 2008 (SP2), and using that machine to map CIFS network drives to all of our users through Group Policy. To that end, I've tried enabling passthru authentication for Alfresco. I've read through the wiki on this matter (http://wiki.alfresco.com/wiki/Alfresco_Authentication_Subsystems#Passthru), but I haven't met with success yet. The real hell of it is that I had CIFS working just fine on a clean installation. The authentication was a pain in the ass, so I started mucking about and now CIFS is broken on all but the Win7 machine that is hosting the virtual box.

Here's my alfresco-global.properties file, with all of the now commented random changes I was making in my frustration:

###############################
## Common Alfresco Properties #
###############################

#
# Sample custom content and index data location
#————-
dir.root=/opt/Alfresco/alf_data

#
# Sample database connection properties
#————-
db.name=alfresco
db.username=alfresco
db.password=alfresco
db.host=localhost
db.port=3306

#
# External locations
#————-
ooo.exe=/usr/lib64/openoffice.org/program/soffice
ooo.user=<%ShortInstallDir%>/alf_data/oouser
img.root=/usr
swf.exe=/usr/local/bin/pdf2swf

#
# Initial admin password
#————-
alfresco_user_store.adminpassword=209c6174da490caeb422f3fa5a7ae634

#
# MySQL connection
#————-
db.driver=org.gjt.mm.mysql.Driver
db.url=jdbc:mysql://${db.host}:${db.port}/${db.name}
hibernate.dialect=org.hibernate.dialect.MySQLInnoDBDialect

#
# Index Recovery Mode
#————-
#index.recovery.mode=Auto

#
# Outbound Email Configuration
#————-
#mail.host=
#mail.port=25
#mail.username=anonymous
#mail.password=
#mail.encoding=UTF-8
#mail.from.default=alfresco@alfresco.org
#mail.smtp.auth=false

#
# Alfresco Email Service and Email Server
#————-

# Enable/Disable the inbound email service.  The service could be used by processes other than
# the Email Server (e.g. direct RMI access) so this flag is independent of the Email Service.
#————-
#email.inbound.enabled=true

# Email Server properties
#————-
#email.server.enabled=true
#email.server.port=25
#email.server.domain=alfresco.com
#email.inbound.unknownUser=anonymous

# A comma separated list of email REGEX patterns of allowed senders.
# If there are any values in the list then all sender email addresses
# must match.  For example:
#   .*\@alfresco\.com, .*\@alfresco\.org
# Allow anyone:
#————-
#email.server.allowed.senders=.*

#
# The default authentication chain
# To configure external authentication subsystems see:
# http://wiki.alfresco.com/wiki/Alfresco_Authentication_Subsystems
#————-
#authentication.chain=alfrescoNtlm1:alfrescoNtlm

authentication.chain=passthru1:passthru

passthru.authentication.servers=ourdomain.local\sbsserver
passthru.authentication.authenticateCIFS=true
passthru.authentication.defaultAdministratorUserNames=mainuser@ourdomain.local
ntlm.authentication.sso.enabled=false

ldap.authentication.active=true
ldap.synchronization.active=false

#
# LDAP configuration? Does not work with CIFS?
#

#authentication.chain=alfrescoNtlm1:alfrescoNtlm,passthru1:passthru,ldap1:ldap-ad

#ntlm.authentication.sso.enabled=false
#alfresco.authentication.authenticateCIFS=true

#ntlm.authentication.sso.enabled=true
#passthru.authentication.authenticateCIFS=true

#ldap.authentication.active=false
#ldap.synchronization.active=false

#ldap.authentication.java.naming.provider.url=ldap://10.10.0.2:389
#ldap.authentication.java.naming.security.authentication=SIMPLE

#ldap.synchronization.java.naming.security.principal=alfadmin@reality-tech.local
#ldap.synchronization.java.naming.security.credentials=temp@1234

#
# IMAP
#————-
#imap.server.enabled=true
#imap.server.port=143
#imap.server.host=localhost

#
# CIFS
#
cifs.enabled=true
cifs.serverName=VirtualBoxHostName
cifs.domain=ourdomain.local
cifs.urlfile.prefix=http://${localname}:8080/alfresco/
cifs.broadcast=255.255.255.0

I honestly have almost no idea what I'm doing here. I only heard about Alfresco three weeks ago when I started this, and I've done very little with Linux. My boss has his goals, and I'm just here to make it happen. Can someone please tell me what I'm doing wrong, and how I can fix it?

———

I should also note that whenever any machine in the network tries map an Alfresco drive, it asks for authentication within our domain - it no longer accepts the admin/admin default Alfresco logins. Every user I try fails, saying the password failed to authenticate. I've checked the main alfresco.log file, and it says the following for each failure - ERROR [org.alfresco.smb.protocol.auth] org.alfresco.jlan.smb.SMBException: Invalid Parameter.

Also, we can use the web-interface without any issue at all. I've created random test users in our AD, and have successfully used them to log into Alfresco through the browser on any machine in our network. It's strictly CIFS that isn't working.

Outcomes