11.3 Authentication

11.3.1 CIFS User Authentication Fails On an NTLMv2 enabled Windows XP Client in the First Attempt

Description: CIFS user authentication from a Windows XP client fails on the first attempt. The second time the user attempts to log in, authentication occurs as expected if NTLMv2 is enabled on Windows XP clients.

Cause: Windows XP sends the client machine name as a domain name. For the second attempt sends the actual domain name.

Action: Pass the user name in domainname\username format.

For example, if you are using net use command to map a CIFS share following is the command you can use.

net use <device name> \\<computer name or IP address>\<share> /user:<DOMAIN>\<USER> <password>

net use * \\192.168.100.1\CIFS_VOL /user:BLR\cifsuser1 <password>

In this example, net use command is used to connect to the share named CIFS_VOL on a computer with IP address 192.168.100.1. The CIFS_VOL share will be mapped to the highest free drive letter [*].

net use e: \\192.168.100.1\CIFS_VOL /user:BLR\cifsuser1 <password>

In this example, net use command is used to connect to the share named CIFS_VOL on a computer with IP address 192.168.100.1. The CIFS_VOL share will be mapped to e: drive.

NOTE:NTLMv2 authentication is enabled by default on Windows 7 workstations.

11.3.2 Password Has Expired

Error: Password has expired.

Cause: Password expiry is set for security purposes. The password has expired.

Action: Reset the password and try to log in again.

11.3.3 User Can Only See Folders Assigned With Public Trustee Rights

Error: Only folders to which the Public trustee has rights are visible.

Cause: If you have logged into a Windows workstation and see folders assigned only with Public Trustee rights, it is either because you have logged in with an incorrect user name or have logged in as a guest user.

Action: Log in with correct credentials.

11.3.4 Authentication Failed Due to Password Mismatch

Cause: The password is incorrect.

Action: Provide the correct password.

OR

Cause: Universal password is not set for the user.

Action: Set the universal password for the user.

OR

Cause: The client and the server have incompatible LMCompatibility level settings.

Action: Check for the LMComaptibility settings. For more information, refer Setting LMCompatibilityLevel.