Wd ex4 & active directory

My Cloud OS 3 Personal & Network Attached Storage My Cloud EX4
1

Good morning!

I have a problem with personal shares on wd ex4 and user in active directory.

The join between nas and active directory goes successfully; I can see all a.d. users and groups in ex4 interfaces but when I share i folder with ad user or group, the user can’t access: wd ex4 request authentication (?) so I re-input my user and password but doesn’t work.

I verify:

→ Time

→ Map directly to “personal share” without open the public share 

→ Samba version 2

→ Only one lan connected with static IP

→ Upgrade wd ex 4 firmware version (1.05)

→ Turn off all

→ Read forum and manual!

→ In wd ex4 log is registered the failed logon with mydomain\myuser

Somebody can help me? 

Any ideas is accepted because I am going crazy!!!

Thanks!

2

Hello dadoex4,

Welcome to the WD Community,

Check page 118 of the manual for more information, if the problem continues I recommend you to contact support directly for further assistance.

http://www.wdc.com/wdproducts/library/UM/ENG/4779-705113.pdf#page=123

WD Contact information:

http://support.wdc.com/country/index.asp?lang=en%22

3

I have exactly the same problem, it does’t get the password from the AD accounts  

4

I think the problem is in smb.config;

In this file there is workgroup and domain, so I see that the result when I attempt to login with AD user the domain result workgroup+domain:

ex:

workgroup: XXX

domain: YYY.LOCAL

the result is of domain is: XXX.YYY.LOCAL

When I tryed to delete workgroup value in smb.config, wd ex4 works.

I hope that somebody understand me!

5

After I remove workgroup line in smb.conf the nas work correctly with AD users and private shares.

I have only a question: every restart or change in web page about folder, the cmb.conf return with the previous value (and doesn’t work!!!).

somebody knows if there is a method to save smb.conf permanently? 

It’s the only workaround that I can do!!!

6

with older firmware wd ex4 run correctly with active directory and personal folder?

I can downgrade it?

7

Hi All

I too have updated the firmware and it has broken all my shares using AD intergradation. 

Happened soon as the latest update was install.

WD needs to get on this ASAP…

8

same here! what kind of test process has WD got if they only test a new firmware without testing upgrades? at least they solved my problem with AD and link aggregation in the latest firmware, took long enough. just another example of selling enterprise features which obviously have not been tested in combination at all.

apart from that, the latest upgrade duplicated all shares (*_2) to accomodate local as well as AD users, whereas previously only one of the two option was available at the same time. If you change such a feature please document it in the release notes, I couldn’t find it there! This is a security issue, suddenly my NAS allows more access by permitting AD+local than before (AD only). The local users on my NAS were testing users with generic passwords before joining AD.

I’m going to reset to factory and build the config from scratch hoping the workgroup-nonsense is gone and doesn’t reappear in my smb.conf after a reboot.

tsktsk.

9

ok :slight_smile: so, starting with a fresh configuration didn’t help, the workgroup line is still being put into smb.conf and causing the problem. I remember this line being there with the older firmwares as well, but never really caused a problem in the past.
anyways, to work around the problem, you can simply enable SSH and run the following commands on the EX4:

grep -v “workgroup = MYDOMAIN” /etc/samba/smb.conf >/etc/samba/smb.conf-new
cp /etc/samba/smb.conf-new /etc/samba/smb.conf
rm /etc/samba/smb.conf-new
killall smbd
killall nmbd
smbd -D
nmbd -D

I automated it via a bash script which I run from another Linux server:

sudo sshpass -f /root/nas-sshpw.txt ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no sshd@nas ‘grep -v “workgroup = MYDOMAIN” /etc/samba/smb.conf >/etc/samba/smb.conf-new && cp /etc/samba/smb.conf-new /etc/samba/smb.conf && rm /etc/samba/smb.conf-new && killall smbd && killall nmbd && smbd -D && nmbd -D’

I know it’s ugly :stuck_out_tongue:

WD: please fix ASAP. I’m not sure if everyone using AD is affected (would somehow expect more complaints, but maybe “real” enterprise users also use real enterprise products…), or could there be something special about our AD configuration?

Cheers

10

I have had this AD and private share over the internet problem since purchased over a year ago. In my case, one cannot use AD and have shares work.

My EX4 can see the network without AD, through a share in Windows. That allows me to visit the EX4 over any distance.

Never had a reply from Support that could cure this.