AnsweredAssumed Answered

Windows XP can but Vista/7 can't login CIFS on Alfresco+AD

Question asked by samphan on Sep 8, 2010
Latest reply on Mar 1, 2011 by lotharmärkle
We've setup an Alfresco server with this configuration
  • Alfresco 3.3 Community Edition

  • on Ubuntu 8.04 LTS

  • authenticate with an Active Directory on Windows 2008 R2

  • using CIFS passthru
Login thru Alfresco Explorer work fine. Windows XP client (which has joined a domain) can login successfully to access the CIFS share.
However, the problem is that Windows Vista/7 client can not login to the CIFS share!
I think this is a known problem but I can't find a working solution.
Anyone?

alfresco-global.properties
dir.root=./alf_data
db.name=alfresco
db.username=alfresco
db.password=alfresco
db.host=localhost
db.port=3306
db.driver=org.gjt.mm.mysql.Driver
db.url=jdbc:mysql://localhost/alfresco
authentication.chain=alfrescoNtlm1:alfrescoNtlm,passthru1:passthru,ldap-ad1:ldap-ad
ntlm.authentication.sso.enabled=false
ntlm.authentication.authenticateCIFS=false
alfresco.authentication.authenticateCIFS=false
alfresco.authentication.allowGuestLogin=false
passthru.authentication.sso.enabled=false
passthru.authentication.allowGuestLogin=false
passthru.authentication.authenticateCIFS=true
passthru.authentication.authenticateFTP=false
passthru.authentication.servers=192.168.1.48
passthru.authentication.domain=
passthru.authentication.useLocalServer=false
passthru.authentication.guestAccess=true
passthru.authentication.defaultAdministratorUserNames=administrator
passthru.authentication.connectTimeout=5000
passthru.authentication.offlineCheckInterval=300
passthru.authentication.protocolOrder=TCPIP,NETBIOS
ldap.authentication.active=false
ldap.authentication.java.naming.security.authentication=simple
ldap.authentication.userNameFormat=%s
ldap.authentication.allowGuestLogin=false
ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
ldap.authentication.java.naming.provider.url=ldap://192.168.1.48:389
ldap.authentication.escapeCommasInBind=false
ldap.authentication.escapeCommasInUid=false
ldap.synchronization.active=true
ldap.synchronization.java.naming.security.principal=CN\=Administrator,CN\=Users,DC\=tisco,DC\=local
ldap.synchronization.java.naming.security.credentials=P@ssw0rd
ldap.synchronization.queryBatchSize=1000
ldap.synchronization.groupDifferentialQuery=(&(objectclass=nogroup)(!(modifyTimestamp<\={0})))
ldap.synchronization.personQuery=(&(objectclass=user)(userAccountControl\:1.2.840.113556.1.4.803\:\=512))
ldap.synchronization.personDifferentialQuery=(& (objectclass=user)(!(modifyTimestamp<\={0})))
ldap.synchronization.groupQuery=(objectclass\=group)
ldap.synchronization.groupSearchBase=CN\=Users,DC\=tisco,DC\=local
ldap.synchronization.userSearchBase=CN\=Users,DC\=tisco,DC\=local
ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
ldap.synchronization.timestampFormat=yyyyMMddHHmmss'.0Z'
ldap.synchronization.userIdAttributeName=sAMAccountName
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
ldap.synchronization.userOrganizationalIdAttributeName=msExchALObjectVersion
ldap.synchronization.defaultHomeFolderProvider=userHomesHomeFolderProvider
ldap.synchronization.groupIdAttributeName=cn
ldap.synchronization.groupType=group
ldap.synchronization.personType=user
ldap.synchronization.groupMemberAttributeName=member
synchronization.synchronizeChangesOnly=true
#cifs.disableNativeCode=false
cifs.enabled=true
cifs.ServerName=alfresco-demo
cifs.domain=
cifs.hostanounce=true
cifs.broadcast=255.255.255.255
cifs.sessionTimeout=500
cifs.ipv6.enabled=false
cifs.tcpipSMB.port=1445
cifs.netBIOSSMB.namePort=1137
cifs.netBIOSSMB.datagramPort=1138
cifs.netBIOSSMB.sessionPort=1139
cifs.WINS.autoDetectEnabled=true
alfresco.log when trying to use Windows XP to login to the CIFS share, successfully
10:00:51,442 DEBUG [org.alfresco.smb.protocol.auth] Mapped client /192.168.1.130 to domain null
10:00:51,443 DEBUG [org.alfresco.smb.protocol.auth] Passthru sessId=11, auth ctx=[NTLM,Challenge=ea79904645ee162b]
10:00:51,446 DEBUG [org.alfresco.smb.protocol.auth] Using Write transaction
10:00:51,459 DEBUG [org.alfresco.smb.protocol.auth] Setting current user using person sukanda (username sukanda)
10:00:51,459 DEBUG [org.alfresco.smb.protocol.auth] Passthru authenticate user=sukanda, FULL
10:00:51,460 DEBUG [org.alfresco.smb.protocol.auth] Using Write transaction
10:00:51,471 DEBUG [org.alfresco.smb.protocol.auth] Closed auth session, sessId=11
alfresco.log when trying to use Windows 7 to login to the CIFS share, unsuccessfully
10:28:29,281 DEBUG [org.alfresco.smb.protocol.auth] Mapped client /192.168.1.197 to domain null
10:28:29,283 DEBUG [org.alfresco.smb.protocol.auth] Passthru sessId=16, auth ctx=[NTLM,Challenge=21223c0054ec11cf]
10:28:29,286 DEBUG [org.alfresco.smb.protocol.auth] Using Write transaction
10:28:29,288 ERROR [org.alfresco.smb.protocol.auth] org.alfresco.jlan.smb.SMBException: Invalid parameter
10:28:38,872 DEBUG [org.alfresco.smb.protocol.auth] Using Write transaction
10:28:38,874 ERROR [org.alfresco.smb.protocol.auth] org.alfresco.jlan.smb.SMBException: Invalid parameter
10:28:52,072 DEBUG [org.alfresco.smb.protocol.auth] Closed auth session, sessId=16

Outcomes