Curious NetBios over TCP/IP issues and Windows SMB shares
Hi all.
I've got two Win 2003 R2 SP2 member servers on our AD domain. Each has shared network folders on them which are accessed by both Windows and Mac users.
Both servers - lets call them ALPHA and BETA - are identically setup: same hardware, configuration etc. but exist on different subnets.
Alpha has never had a problem with Mac clients connecting to any of its shares.
Beta has, up until recently, only ever had Windows clients, but now has a couple of Snow Leopard Mac clients. When a Mac client attempts to connect via SMB or CIFS to any share on Beta - they get the prompt to authenticate and then "Connection Failed. There was an error connecting to the server Beta. Check the server name or IP address and then try again". Of course the same thing happens when I try to connect by IP.
Curiously, the only way I can get Mac clients to connect to shares on Beta is to go into the network adapter settings on Beta, advanced, WINS and then disable NetBios over TCP/IP. Unfortunatley this breaks some unrelated stuff and I eventually have to go back in and set NetBios back to Default (enabled) and the whole thing screws up again in a few hours time again for my beloved Mac users.
The other server Alpha never gives me any problem with Mac clients, and as I say, they are setup identically. I have been testing this with 10.6.3 clients, not sure if my 10.5 or 10.4 clients are affected.
Can anyone offer some suggestions as to why my shares aren't accessible to my Mac clients on both servers?
Generally it is the browser service that populates network neighborhood. This technology is no longer used with newer OS like server 2008, windows 7/8.
Description of the Microsoft Computer Browser Service
Regards, Dave Patrick ....
Microsoft Certified Professional
Microsoft MVP [Windows]
Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
Similar Messages
-
Consequences of disabling NetBIOS over TCP/IP in a Windows Server 2008 environment
Is NetBIOS required in a network with 2008 Servers and Windows 7 and Windows 8 computers?
There are two 2003 and one 2000 server.
What functionality would we loose?
What are the major server functions or major applications that use NetBIOS.
Is there any way to find if any application or server is relying on NetBIOS.
Any help is much appreciated.Generally it is the browser service that populates network neighborhood. This technology is no longer used with newer OS like server 2008, windows 7/8.
Description of the Microsoft Computer Browser Service
Regards, Dave Patrick ....
Microsoft Certified Professional
Microsoft MVP [Windows]
Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights. -
Netbios over tcp/ip and over wlc-4402
dear gentlemen,
i have one wlc-4402 controller and some clients. how to configure the netbios over tcp/ip in the controller, so that the clients can assiciate the network.
thank?s in advance
michaelNothing, you dont have to configure anything regarding Netbios. Regards
-
How could I create a Compliance Settings that enforces NetBIOS over TCP/IP?
Hello Everyone,
I need to be able to enforce NetBIOS over TCP/IP on some collections. I've created a batch script with one line that disable NetBIOS over TCP/IP but I also need to make sure this is enforced. How could I do the enforcement using Compliance Settings?
This is the line I use to disable it;
"wmic nicconfig where (TcpipNetbiosOptions!=Null and TcpipNetbiosOptions!=2) call SetTcpipNetbios 2"
Thank you everyone in advance for any helpI could probably help you with a CI for discovery and remediation, but I need (or you need to define) an additional parameter.
If I were to run this as a powershell discovery script:
$adapter=(gwmi win32_networkadapterconfiguration | where {$_.ipenabled -eq "1"})
Foreach ($nic in $adapter) {
write-host $nic.TcpIPNetBiosOptions
what's echo'd out (in my testing) is a 0, a 1 , or a 2.
0 means "default--use what your dhcp is offering"
1 = enabled
2 = disabled.
So... from your standpoint... is a 0 or 1, (either one) acceptable? or is only a value of 1, a hard-coded at the client (not whatever the default is from dhcp) the only acceptable value?
fyi, the remediation script, if 1 is the only acceptable answer, would probably be this:
$adapter=(gwmi win32_networkadapterconfiguration | where {$_.ipenabled -eq "1"})
Foreach ($nic in $adapter) {
$adapter.settcpipnetbios(1)
Standardize. Simplify. Automate. -
Problems with VPN and Windows Network Shares
I'm in the middle of a Windows domain migration and I've setup the two way trust for the domains.
Cisco VPN clients authenticate against the old domain.
A user with an account in the new domain and whos laptop is joined to the new domain (also has a user account in the old domain) can connect to the VPN but is asked for Windows authentication when they connect to a network share in either domain.
Users whos account/laptop are in the old domain don't have this issue.
Any ideas or suggestions?This may happens because broadcasts do not go through an IPSec tunnel.
Browsing Network Neighborhood is a function of the Microsoft browsing service. Any problems are usually because the PC or master browsers do not function properly. Network Neighborhood is officially not supported. However, it works if configured correctly. Browsing Network Neighborhood works by obtaining the browse list from either a master or backup browser. This list is obtained locally on your LAN by using NetBIOS Broadcasts to locate domain browsers.
Inorder to resove this :
Make sure you have NetBIOS over TCP enabled on the adapter that you use to connect to the domain.
Refer this related links:
http://www.cisco.com/en/US/products/sw/secursw/ps2308/products_tech_note09186a0080194b4a.shtml -
Mac OS X Mountain Lion randomly disconnects from a Windows SMB share
First le t me say that I am still trying to diagnose if this is a hardware or software issue. But I figured I would start here. I work in a mixed environment with Mac's and PC's and all working together with no issues. I deployed this Mac about 6 months ago to production. The person using this Mac recently has been complaining of the Mac disconnecting from a Windows SMB share at random times. The server is running Windows Server 2008R2 and has been running for 3 years. I have other Macs on the same network connecting to it with varying operating systems ranging from 10.6 to 10.8. None of the other Mac's are experiencing this same issue. So I know it is isolated to this Mac. I was wondering if there might be something in the software like a setting that needs changed that might be causing this. Any suggestions are welcome.
I have renamed my pc and everything is ok with the file sharing SMB. Both my iMac and my pc can share files very easily.
-
Why is my Mac pro slow to Open folders in a Windows SMB share?
Why is my Mac pro slow to Open folders in a Windows SMB share? We use a Windows Server for graphics storage and I can open the share just fine, but when I attempt to open folders within that share it takes sometimes as long at 15 minutes to display the contents of the folders. This happend before and I switched to the other NIC port, but now it is doing it in both. I can open other connections to Windows SMB shares with no problem.
Why is my Mac pro slow to Open folders in a Windows SMB share? We use a Windows Server for graphics storage and I can open the share just fine, but when I attempt to open folders within that share it takes sometimes as long at 15 minutes to display the contents of the folders. This happend before and I switched to the other NIC port, but now it is doing it in both. I can open other connections to Windows SMB shares with no problem.
-
EliteBook 8570p Fingerprint Sensor Issue and Windows 8 and 8.1 Built-In Biometric Framework
Hello there,
i'm currently testing the Preview Build of Windows 8.1 on my HP EliteBook 8570p and have a small Problem using the Fingerprint... but back to start...
In Windows 8 there wheren't any microsoft builtin biometric framework, to get the fingerprint there you have to install the hp security protect manager, and the validity Fingerprint Driver from here:
http://h20000.www2.hp.com/bizsupport/TechSupport/SoftwareDescription.jsp?lang=de&cc=de&prodTypeId=32...
the actual version that the site above state is this: 4.4.228.0 (31 Okt 2012)
the filename of the fingerprint driver should be this: sp59624.exe
exactly this is what i download, but then upon extracting and "older?" SP-Number appears? -> SP58152 ????
Driver should have Win8 support, but on installing it it just says it supports Win7 max... another hint that the driver packet is wrong packed...
this is the first thing what is very strange, even, the driver won't install automatically... just manuall, this is also a non WBF (Windows Biometric Framework) driver, so ne built-in fingerprint support of win 8.1 does not work.. indeed with the hp security manager... but when using the fingerprint login there i see just ugly Windows Vista branded Loginmasks... not a real choice..
after a bit of google seach i then found a new version of the validty fingerprint driver, but this is not listet in the 8570p Model download page... just found it with the help of google..
http://h10025.www1.hp.com/ewfrf/wc/softwareDownloadIndex?cc=de&lc=de&dlc=de&softwareitem=ob-109892-1
this one have a newer version: 4.4.234.0 (2012-09-07)
interessting thing about this... newer version, but older release date... ?!
and it is a WBF driver, voila, i thought...
installing the driver via the device manager (VFS451) and Windows 8.1 is able to scan fingers for login or credentials requests... works quite well... until first reboot... sadly after the first reboot, windows just continously means that a finger is getting swyped acrous the fingerprint reader, but it isn't...
after deinstalling the device, and reinstalling it (and driver) the fingerprint reader works again still the next reboot...
any help is appreciated and HP PLEASE do something about all the issues with the fingerprint readers even in Windows 8 (and/or correct the download)Hello DaStivi,
Your EliteBook is a Business model. Your issue would be best answered on the HP Enterprise Business Community Forum
Good luck!
↙-----------How do I give Kudos?| How do I mark a post as Solved? ----------------↓ -
Microsoft Band Functionality Issues and Windows Phone Developer Preview
I just wanted to post this since I ran into this issue and after spending my evening dealing with it wanted to share what I learned. I picked up a Microsoft Band for myself and my wife. I'm running the developer preview on my Lumia 920 and have
been for awhile now. The band has been working really well for me and I hadn't had any issues. My wife has a new Lumia 1520 and wasn't in the developer preview. Her band was fine for a couple of days but then stopped connecting to her phone. The Bluetooth
wouldn't connect. I spent over an hour on the phone with Microsoft support which was pretty helpful (I do appreciate that it is US based support and not out in India). But during the troubleshooting I did with the support tech he mentioned that there are features
that only work if you have the developer preview. Things such as Facebook and Twitter tiles on the Band only work with the latest version of WP 8.1 that you can get through the developer preview. However it also appears that the Band's other
functions such as Cortana and Text/Email notifications work much better as well when you have the newer version of 8.1 with the Developer Preview. So I just wanted to put that out there, if you are having any issues with your Band sign up for the
Developers Preview and update your phone and you should see improvements.
Vincent SpragueCan anyone tell me why I have not mail option under Manage Tiles? I am running with the Develop Preview on a Lumia 1020. I am now running the developer preview update, I hope this fixes the issue but it seems it should just be an app issue smh.
-
10.8.1 Server and windows smb issues
Ever since upgrading to 10.8.1 server my windows clients now have issues copying to the share point on the server. "Network error, there is a problem accessing \\SERVER\WORK"
It's only with large file transfers 3GB and above. It also randomly shows the same warning when they are saving projects to the server occasionally and they have to manully reconnect.
Latest windows 7 64bit pro on all clients and latest mac os X on server.
The share point is an attached thunderbolt raid and has all permissions switched off, and is configured to RAID 0. This is backed up hourly by another drive.
Is there anyway of rolling back to lion? I no longer have a lion back up on my time machine.
Anyone else having these issues?Apple's SMB implentation is weak and buggy. I feel like I'm back in 10.3 trying to talk to Windows servers. Those were horrible days.
To Fix.. go to your Mac and check to make sure that it has the correct WINS settings (network, advanced, WINS). Your server has to be on the same workgroup (domain) as your windows clients. For some reason, the setting does not stick on your Mac and that setting gets lost. And that is the bug...
To fix this (second part of your fix).. go ahead and turn off file sharing. Then add your settings under WINS as stated above, then turn sharing back on and your networking from windows to mac will start to work fine.
Fun bugs... please call Apple about this, so they can follow up. My case number is 357016704 -
Windows SMB shares not showing in finder
hi,
i'm using 10.5.8 on a powermac G5 in the office and recently experienced some difficulties regarding SMB shares. there are two Win XP 32bit machines in the office network, one Win 7 64bit machine and the powermac.
1) usually, the powermac could see and access all three windows machines via finder's sidebar. that stoped working some weeks ago. none of the three PCs shows up in the sidebar now. when i use finder's "connect to server" feature, the connection is established without problems. network printing to one of the XP machines also works fine. the mac's firewall settings where set to “Set access for specific services and applications” all the time, showing AFP and SMB shares enabled. just out of curiosity, i deactivated the firewall… and voila: my three PCs showed up in the finder sidebar again. changed it back… no PCs there
what's that? why did it work before, with the firewall enabled, and all of a sudden it doesn't work anymore and i have to shut down the firewall, to see my windows shares?
2) for some time it was sufficient that i could access the windows shares from my mac. now my colleagues needed to access the mac from their windows machines. as they do not need to have access to my entire home folder, i added the relevant (sub)folder from my documents folder via SMB guest sharing, setting the access rights to "read&write" for everyone, so that no password was needed for guests accessing that folder. however, all three windows machines could only see the standard public folder with its drop box, but not the newly added folder. experimented for over an hour or so, changing settings, trying to add other folders… until i found out, that the folder will only show up on the windows network, when it's located on the top level of my home folder, but not, if it's located in a subfolder (i.e. in documents, music, etc.)
is this meant to be that way? or am i doing something wrong?If this is still driving you crazy...
I had the same problem and by figuring out which machine was the Master Browser I managed to fix it. I have a Windows 7 system and it had taken over as the Master Browser (probably because I had to rebuild my Mac). I disabled the Computer Browser service on the W7 computer and a 2003 server in my network automatically took over as the Master Browser. All of the Windows machines immediately appeared under Shared Items on my Mac sidebar.
I followed the instructions from:
http://robmulally.blogspot.com/2009/03/macbook-master-browser-and-my-mate.html
- on how to figure out which machine is the Master Browser in the network. The link came from a different discussion on the same issue (https://discussions.apple.com/thread/1877116?start=0&tstart=0). There are also instructions (although somewhat vague) on how to make your Mac the Master Browser.
I hope this is of some help. -
Best method: Browsing windows/smb shares cli or gui
Just wondering what everyone uses. I just have a few scripts that I wrote to mount my network drives on my network, but when I'm on campus I would like to browse the subnet in the engineering department. Eventually I'll probably just map the share folder for students, but it's still nice to be able to browse.
CLI is preferable, but I'm not opposed to GUI if it gets the job done without a fuss. I'm running KDEmod latest and arch x86 fully updated.
I've installed g2sc and smb4k (latter doesn't work in kdemod apparently). g2sc seems like it will work with a little configuration.
On g2sc it doesnt' prompt for authentication when I click on network/WORKGROUP...........though I can authenticate with my mount cifs scripts quite easily using my Windows share credentials.
Last edited by DarksideEE7 (2009-09-19 04:28:41)Thanks for the info, but I know how to mount shares...........I wrote scripts for all of my network drives on my network (for example)
sudo mount -t cifs -o username=USER,password=PASSWORD //192.168.0.255/SHARE /mnt/RAID5
What I'm looking for is a good way to browse resources if you don't know the IP addresses or share names of the servers running the shares. In our engineering network we have Linux and Windows shares AFAIK, and elsewhere on the wireless it would be nice to browse other resources, such as the computing department (downloading MS Office, etc.)
I authenticate using my student credentials, so if there are profiles and/or global settings I could use those credentials.....
EDIT:
That article links some info on smbclient...........I have a feeling that is the best solution, since it's CLI and straightforward.
smbclient works great, but I need to figure out which switch allows to list all available shares on the subnet......if anyone knows before I find it in the man pages or elsewhere I'd appreciate the advice
Last edited by DarksideEE7 (2009-09-19 06:50:49) -
Hi All,
Sometime ago I posted regarding an issue I was seeing on our TMS , where most of the remote devices seemingly showed up as loosing remote connection (no HTTPS Response - https://supportforums.cisco.com/discussion/12290956/tms-lost-https-communciation-devices-not-really). However, I could not figure out the root cause of the error, and now I have managed to break things again - probably due to a Java upgrade which broke TMSPE (see https://supportforums.cisco.com/discussion/12404166/looks-latest-update-java-8-update-31-will-break-tmspe-11).
However, I thought I would look at little more closely this time to see if I could figure out the problem.
I am seeing a lot of entries in the Security Log in TMS that seem to indicated that my the account used from a TMSPE connection has a bad or invalid password (this is set in "Administrative Tools --> Configuration --> Provisioning Extension Settings", but this password is correct (I can log into TMS with this account, and reset and restarted services etc).
The computer attempted to validate the credentials for an account.
Authentication Package: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Logon Account: tmspeconnect
Source Workstation: TMS
Error Code: 0xc0000064
and
An account failed to log on.
Subject:
Security ID: IIS APPPOOL\TMSNet40AppPool
Account Name: TMSNet40AppPool
Account Domain: IIS APPPOOL
Logon ID: 0x214b6
Logon Type: 8
Account For Which Logon Failed:
Security ID: NULL SID
Account Name: tmspeconnect
Account Domain: TMS
Failure Information:
Failure Reason: Unknown user name or bad password.
Status: 0xc000006d
Sub Status: 0xc0000064
Process Information:
Caller Process ID: 0x860
Caller Process Name: C:\Windows\SysWOW64\inetsrv\w3wp.exe
Network Information:
Workstation Name: TMS
Source Network Address: 127.0.0.1
Source Port: 62114
Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0
This event is generated when a logon request fails. It is generated on the computer where access was attempted.
The Subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.
The Logon Type field indicates the kind of logon that was requested. The most common types are 2 (interactive) and 3 (network).
The Process Information fields indicate which account and process on the system requested the logon.
The Network Information fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.
The authentication information fields provide detailed information about this specific logon request.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
I just wanted to check this like file/folder NTFS permissions, or any specific IIS permission . Is there a list of NTFS folder permissions for which the TMS required with regard to the "IIS APPPOOL", and perhaps what may need to be check in IIS?
Oddly, the error list above refers the our "TMSPEConnect" account from the TMS domain, however this is incorrect - TMS is the machine name. Still we ARE seeing similar error which reference the actual domain name, such as:
An account failed to log on.
Subject:
Security ID: IIS APPPOOL\TMSNet40AppPool
Account Name: TMSNet40AppPool
Account Domain: IIS APPPOOL
Logon ID: 0x49e55
Logon Type: 8
Account For Which Logon Failed:
Security ID: NULL SID
Account Name: tmspeconnect
Account Domain: mydomain
Failure Information:
Failure Reason: Unknown user name or bad password.
Status: 0xc000006d
Sub Status: 0xc000006a
Process Information:
Caller Process ID: 0xb18
Caller Process Name: C:\Windows\SysWOW64\inetsrv\w3wp.exe
Network Information:
Workstation Name: TMS
Source Network Address: 1.1.1.1 (changed external IP)
Source Port: 47620
Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0
This event is generated when a logon request fails. It is generated on the computer where access was attempted.
The Subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.
The Logon Type field indicates the kind of logon that was requested. The most common types are 2 (interactive) and 3 (network).
The Process Information fields indicate which account and process on the system requested the logon.
The Network Information fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.
The authentication information fields provide detailed information about this specific logon request.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Idea welcome.
Cheers
ChrisHi all,
After a long a fraught weekend trying to fix things, I am not that much further on, but I am beginning to understand what it isn't........ I think :(
It looks as though the "DatabaseScanning" service, or anything that runs under the credentials of the "nt authority\network service" seems to have a problem.
The Audit log show lot of entries where services such as"TMSWebPublic" running under the ISS Application pool "tmsnet40apppool", and actions launched under our own credential appear to communicate just fine with the device, only for the 'network service' to time out the connection a short while later. The same goes for some (not all) of the Phone book updates, which also looks as though it runs under the credentials of the 'Network Service' account.
26/01/2015 08:30:54
nt authority\network service
Update
System
our-ctrl1
System status
NoResponse
TMSDatabaseScannerService
26/01/2015 08:30:54
nt authority\network service
Update
System
our-ctrl1
Connection status
NoHTTPSResponse
TMSDatabaseScannerService
26/01/2015 08:29:06
tmsnet40apppool
Update
System
our-ctr1l
System status
Idle
TMSWebPublic
26/01/2015 08:29:06
tmsnet40apppool
Update
System
our-ctrl1
Connection status
OK
TMSWebPublic
However, I still don't know at this point is this is related to the actual TMS front end, something to do with the domain and policies that have been applied to TMS, or the actual database, or even just communication with the back end database??? I did try running the services under a domain user (service) account, but then ran into other issues as I couldn't log into TMS.
BTW, removing TMS, and IIS and reinstalling did fix my second issue relating to the 'Communication Errors'.
Chris -
Boot Camp - NTFS and issue and Windows based defragmenters.
I am interested in having a BootCamp developer contact me regarding NTFS partitions and what happens when you defragment while booted into Windows.
Specifically, what is happening is that when a boot time defrag is performed while booted into Windows (necessary in order to defragment certain NTFS metadata files), afterwards BootCamp may no longer see the Windows installation.
Boot time defrag is supported in a native Windows environment (non BootCamp). However, if it is performed in a BootCamp environment, the resulting changes in NTFS are something that BootCamp is not correctly handling with the result being that BootCamp no longer sees Windows. This issue could potentially occur with ANY Windows based low level disk utility that changes/updates NTFS structures.
The company that I work for is an NTFS expert and we are interested in speaking with BootCamp development to work with them to ensure that they are correctly handling NTFS changes made while booted into Windows in order to ensure that BootCamp users do not experience this issue.
Greg Hayes
Mgr, Technical Solutions
Raxco Software, Inc
Microsoft MVP 2003-2007 Windows File Systems
<Edited by Moderator>
I work for Raxco Software, the maker of PerfectDisk - a Microsoft Certified defrag tool.I use Diskeeper but I don't use Apple's Boot Camp MBR.
I don't think you are suppose to post contact information.
Not sure your "open letter" is a how to find or get other developers involved in what you want to do either. Leaving that out, still, something others have probably run into as far as troubleshooting and problems. -
ICal Shared over Apple formatted iPhone and Windows formatted iPhone
My wife and I both have iPhones (4 and 3G). Mine is Mac and hers is Windows. Is there a way to share a calendar between the two of us? Before you ask, she cannot reformat her phone to Mac.
Thanks in advance.Well, the new gigabyte bios fixed the issue.
Maybe you are looking for
-
When trying to open ITunes, I got an error message of msvcr80.dll can not be found. Assuming that it was an iTunes file, I reinstalled iTunes. Trying to open again, I got an error message of an appication is trying to open a library file incorrectly.
-
Hi, I have installed BI tool in my windows machine . But i do not know how to create report in this tool. Please give me guiedance for this. It is urgent. Thanks in advance.
-
TM 7.1 upgrade from SP3 to SP4
Dear all, We have TM 7.1 system installed. We are currently running on EHP1 Netweaver 7.1 version with SP03. We want to upgrade our system to SP4 , where could i find detail upgrade guide , or list of patches i need to apply to upgrade the TM system.
-
Hello, Is there a way in Dreamweaver to apply a class to an item like this for example: .paragraphstyle.orange The class in code view would look like: <class="paragraphstyle orange"> The only way I can find to apply a class like this, is to manually
-
FCP keyboard shortcuts in PremPro
Hey all I remember in CS6 you could assign the keyboard shortcuts and workspace to FCP, is this still possible in CC14? B