Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

CIFS Issues

durrell
Champ in-the-making
Champ in-the-making

‎07-30-2009 11:37 AM

This is my last remaining issue with my Alfresco implementation.

I can't map drives to Alfresco, nor can I authenticate by just trying to connect to \\alfresco.

Error log is telling me this:

11:32:23,721 DEBUG [org.alfresco.smb.protocol.auth] Passthru sessId=7, auth ctx=[NTLM,Challenge=299c1e9102a9485e]
11:32:23,725 DEBUG [org.alfresco.smb.protocol.auth] Using Write transaction
11:32:23,727 ERROR [org.alfresco.smb.protocol.auth] org.alfresco.jlan.smb.SMBException: Invalid parameter
11:32:23,734 DEBUG [org.alfresco.smb.protocol.auth] Using Write transaction
11:32:23,735 ERROR [org.alfresco.smb.protocol.auth] org.alfresco.jlan.smb.SMBException: Invalid parameter

I'm also having an issue from within the Alfresco site. It seems to want to append an "a" to the Alfresco hostname within all of the download links. That can't work, since obviously our Alfresco hostname is simple "alfresco".

Any ideas? I can get more log information if necessary. I'm running on an Ubuntu server and running Alfresco as root (for now, since I haven't changed the CIFS ports to non-privileged ports).
Labels:
0 Kudos
23 REPLIES 23

jarrett
Champ in-the-making
Champ in-the-making

‎07-30-2009 12:30 PM

can you post your file-servers-custom.xml ?
0 Kudos

durrell
Champ in-the-making
Champ in-the-making

‎07-30-2009 02:11 PM 

<alfresco-config area="file-servers">
<config evaluator="string-compare" condition="CIFS Server"
 replace="true">
          <serverEnable enabled="true"/>
          <host name="${localname}A" domain="MYDOMAIN"/>
          <!– The name attribute can use the special token of
 {localname} to use the local servers host name and generate a unique name by prepending/appending to it. –>
          <comment>Alfresco CIFS Server</comment>

          <!– Set to the broadcast mask for the subnet –>
          <broadcast>255.255.0.0</broadcast>

          <!– Use Java socket based NetBIOS over TCP/IP and native SMB on linux –>
          <tcpipSMB platforms="linux,solaris,macosx"/>
          <netBIOSSMB platforms="linux,solaris,macosx"/>

          <!– Use Win32 NetBIOS interface on Windows –>
          <Win32NetBIOS/>
          <Win32Announce interval="5"/>
          <hostAnnounce interval="5"/>

          <!–The following defines the authentication connector to an AD server –>
          <authenticator type="passthru">
               <!– within the following tag place a comma delimited list of your AD servers that Alfresco should talk to–>
               <Server>10.0.1.1</Server>
          </authenticator>

          <sessionDebug flags="Negotiate,Socket"/>
</config>
</alfresco-config>
0 Kudos

ofrxnz
Champ in-the-making
Champ in-the-making

‎07-31-2009 10:27 AM

This is one of the places where the "A" comes in…..I think there may be one in web-client.config as well.  I know the web-client.config files hold things like the cifs domain suffix

this is line 5 of the config you posted

<host name="${localname}A" domain="MYDOMAIN"/>

you will want
<host name="${localname}" domain="MYDOMAIN"/>

The A is added because when alfresco runs on windows, windows fights alfresco for controll of the cifs like no one's business
0 Kudos

durrell
Champ in-the-making
Champ in-the-making

‎07-31-2009 01:20 PM

Yeah, I noticed that. I went ahead and edited it.

The interesting thing is that it sees the Alfresco server fine when I used \\alfresco, and according to the logs we are authenticating properly and a session is opening up, but it declines my credentials and acts like they aren't correct.

I'm assuming I just have something misconfigured, I just can't figure out what it is.
0 Kudos

ofrxnz
Champ in-the-making
Champ in-the-making

‎07-31-2009 01:27 PM

could you post your file-servers-config-custom.xml file as well as any custom authentication files you are using…

it should be in the "tomcat->shared" directory…..also, if your not using that could you post the "file-servers.properties" file

there are some restrictions on authentication mechanisms for cifs
0 Kudos

durrell
Champ in-the-making
Champ in-the-making

‎07-31-2009 02:59 PM

I posted the file-servers-config earliier.

I am using strictly LDAP authentication with the "simple" auth method, no Kerberos or anything. What would you need to see?
0 Kudos

ofrxnz
Champ in-the-making
Champ in-the-making

‎07-31-2009 03:05 PM

Thats it…

LDAP does not support CIFS.

you will have to use NTLM(alfresco or passthru) or Kerberos.

here is a link to the 3.2 information…I remember the same was true for every previous version i looked at too.

http://wiki.alfresco.com/wiki/Alfresco_Authentication_Subsystems#What_are_the_Authentication_Subsyst...

Passthru is not hard to setup if you are using Active directory 2k3 and if you are using 2k7(8?) you probably want to use kerberos
0 Kudos

durrell
Champ in-the-making
Champ in-the-making

‎07-31-2009 03:45 PM

Well I have CIFS configured to use Passthru and it appears to authenticate somewhat. It's just failing right after that.

Maybe I'm missing some sort of configuration somewhere?
0 Kudos

ofrxnz
Champ in-the-making
Champ in-the-making

‎07-31-2009 03:48 PM

Could you post your authentication configuration.
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC