Windows computers can not access smb-shares in Lion

This just happened to me when upgrading to Lion 10.7.2. Unchecking/Rechecking SMB worked perfectly for me.

Same issue here. I was able to reboot my 10.7.1 server without issue (SMB connections would work fine).

However after applying the 10.7.2 delta server update via Software Update, SMB was open, but nobody could authenticate to the server (Mac or Windows using SMB).

Having to stop/start smb has temporarily resolved it.

I haven't rebooted the server again (yet), so I don't know if this is/was a one-time issue related to the upgrade process or if it's now a every-time-you-restart issue.

I would agree it may be a hardware-specific issue. The older core2duo Mac Mini I use for testing server does not show this problem. My production server (a current-gen MacPro) showed this today.

THAT SAID: 10.7.2 fixes the need to prefix the user name (on Windows) with the server's netbios name!

I can now log into my server from windows with "maser" instead of "<netbios>\maser" again! (Though the prefix still works, too...)

Yes i can confirm that after 10.7.2 Server Upgrade there's no need to prefix the user name with server name.

But 10.7.2 didn't fix Windows Vista strange behavior creating new folder. As explained by Jeroen in another post (https://discussions.apple.com/thread/3300654) there is a problem whith Vista client and SMB shares on Lion. I can confirm what Jeroen wrote: "When I add for example a new folder, in explorer the folder shows up as "ew Folder" instead of "New Folder". When I try to change the name of the created folder, Windows report it can't find the folder. When I refresh the explorer, the foldername is correct".

This problem doesn't affect mine XP and Vindows 7 clients that are working very well.

Could someone confirm to have the same problem?

Any ideas or solutions?

I can get my XP machines to connect but complex files like .doc or .xls always open as read only.

For me going into CLI and restarting SMB protocol fixes the connection issue.

I am just stunned that such a simple operration doesn't work.

Thomas, I like your idea about setting a script - LostLib's post makes perfect sense. Never worked with making launchd scripts, any chance you can help with a little more detail on making that? Thanks.

I have an Problem by Connect a Win XP Client to a Lion Server.

The Login Works and I see all Shares/Files/Folders

Problem:

The WinXP Client shows a Syntax Error when copy/open Files.

"Syntax Error: File/Folder Path are wrong"

Is there a workaround?

Regards from Germany

Florian

This is probably the attribute bug in 10.7.2's implemenation of SMB causing this.

If you remove the attributes/metadata from the file (from the server end), then you should be able to copy it.

If you want to remove all metadata on all the files, you can do:

sudo xattr -r -c * (the -r is recursive, the -c is to "clear all")

Otherwise, you could just try removing specific attributes directly like:

sudo xattr -d com.apple.metadata:kMDItemWhereFroms (as an example).

Thats it.

Thanks for Help

The key (I think) is to not put files that you download from the internet on a Mac on a share where Windows users would access them -- at least until Apple releases a fix for this.

From what I've seen, the "bad" attributes/metadata gets put on files downloaded by Safari and (IIRC) e-mailed documents from Mail.app. If you put those files on the share, they'll have problems for Windows users (though, what I've seen is just trying to copy the files from the share to the Windows desktop -- not any problems actually *opening* the files, though. YMMV...)

I still don't think anyone has found a reliable fix / workaround to allow a windows client to connect to an SMB share on a mac mini server using an OD (network) account.

If someone with this exact setup has found a way please enlighten us. We have tried everything in these posts to date with no resolution. We can only login to the share using local accounts.

Please see https://discussions.apple.com/thread/3206725?answerId=15915509022#15915509022

In my testing with Win 7, my descirbed method worked reliably.

I didn't test with XP but don't recall having this issue with XP, but it would be good to try the method I outlined

You'd need to add the tools,

http://www.microsoft.com/download/en/details.aspx?id=18546

http://technet.microsoft.com/en-us/library/cc736890(WS.10).aspx

I'm unsure how to reply to mattcampbell.

I run a 10.7.2 server that is an OD Master (admittedly started as a 10.5 server and updated throughout all the point updates and 10.6 and *those* point updates, etc...) My DNS is controlled by a central authority, but both server and clients (Mac and Windows) have valid DNS (forward and reverse).

But I have no problems at all having any of my Windows clients (XP or Windows 7) connect to my share points on the server using their OD Master account credentials. The only "problem" -- which can be resolved on the Windows end -- would be if the user logs into Windows using the same account name as their OD account -- but with a different password. Windows will try to "pass-through" the *Windows* credentials and if those don't match, the you get the error box about how you can't connect to the server -- this is resolved (in Windows 7) by putting the OD credentials in the "Credentials Manager" control panel.

(I have other SMB-related bugs reported to Apple, but *connecting* is not a problem once SMB is up and running...)

Are you having a problem with *Mac* SMB connections? Or just Windows connections?

It's not a matterof Apple not liking the license, it is the matter of the SAMBA license being changed for from GPLv2 to GPLv3 as of SAMB 3.2.0. Apple had a choice, keep using SAMBA 3.0.x version, or write their own. GPLv3 makes it impossible to provide signed binaries without also providing the signing keys. A few seconds of thought will reveal why Apple is unwilling to provide copies of the keys they use to sign system software. Part of locking down OS X security profile required removing anythign that used GPLv3.

Short version: GPLv3 is specifially desinged to be anti-company, and you are going to see a ever widening schism in the FSS/OSS community between GPL and all the other licenses, and you will be seeing less and less GPL code in commercial OSes and more BSD/Apache/&c code.

This is exactly what GPL wants, and exactly what GPLv3 is intended to do. I am not confident that it will really work out for them in the long run, but only time will tell.

@Syth: Precisely ! Thank for reiterating - and further clarifying - the GPLv3 issue.

Hopefully it will finally sink in for some folks who need to understand this.

Hi Steve,

I managed to get it to connect today for the first time.

Not sure what was holding it back or how long it will last. At one stage I user the kerobos realm as the prefix and it went through and has been fine without a prefix since rebooting. I'm running 10.7.2 so it shouldn't need the prefix.

Anyway all good. One thing to note is that enabling file sharing on OS X server automatically shares the user's home directory and boot drive (if they are an admin). Also it seems the server app requires one sharepoint for this behaviour to occur, however if you add a sharepoint but then remove it from the system prefs (as opposed to the server app) it will continue auto sharing these folders.

Doesn't seem like a solid setup but managed to get it working. Thinking of deploying a proper file sharing / authentication system in a VM container - not sure if possible at this stage.

Matt