Cannot map network drive from NAS in 2008 R2

By Jason S.
in Microsoft (Windows)

 Share

Recommended Posts

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

If you think it's a group policy issue; then disable them.

http://technet.micro...y/cc730760.aspx

Starting from #7...

i can certainly try this. will this effectively erase all my GP changes or can i enable/disable w/o consequence?

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

So how do you manage this nas - is there some web ui that you access?

is it possible to let me or sc302 teamviewer into this 2k8r2 box and access the nas web ui from this box?

I would be interested in seeing the sniff the traffic when creating the ntml session for the map / access. If you can map access of the other boxes shares to this 2k8r2 box then it clearly is not a issue with the account your using on 2k8 not having permissions to map.

And if you say you can map shares on the nas from a different win 7 box using the same account it really seems odd!!

I don't recall ever seeing a error 58 before, and google for it has been of no help.

I sniff of the traffic while you try and map a share on the nas, and then mapping on share on one of your other boxes might be very helpful in figuring out what is not allowing the access.

edit: I just noticed your using some assistance software from synology -- what happens when you just do normal map? And what about a different share -- are these other machines mapping to this adminfiles share?

about does a simple net view show you?

net view \\kmsnas01

do you get error 53 or access denied error 5? If access denied

then net use \\kmsnas01\ipc$ /u:kmsnas01\admin adminpassword

then

net view \\kmsnas01

again

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

So how do you manage this nas - is there some web ui that you access?

is it possible to let me or sc302 teamviewer into this 2k8r2 box and access the nas web ui from this box?

I would be interested in seeing the sniff the traffic when creating the ntml session for the map / access. If you can map access of the other boxes shares to this 2k8r2 box then it clearly is not a issue with the account your using on 2k8 not having permissions to map.

And if you say you can map shares on the nas from a different win 7 box using the same account it really seems odd!!

I don't recall ever seeing a error 58 before, and google for it has been of no help.

I sniff of the traffic while you try and map a share on the nas, and then mapping on share on one of your other boxes might be very helpful in figuring out what is not allowing the access.

edit: I just noticed your using some assistance software from synology -- what happens when you just do normal map? And what about a different share -- are these other machines mapping to this adminfiles share?

The NAS is managed through a web UI. I log in to the UI using the same admin account that i am using to map the network drive. Sure enough, the NAS's log says "CIFS client 'admin' from [computername] accessed the shared folder 'adminfiles'."

sorry - i'd love to have someone remote into the box, but that's against the company's policy.

Just to check again, i logged onto the Server 2003 machine and was able to map the NAS's folder using the same 'admin' account. really strange! i also mapped a drive from the 2008 R2 box to a shared folder on the 2003 box. really strange!

about your edit: when i do a normal map, i get repeatedly prompted for the password, over and over. i get the Error 58 from either the Synology Assistant program, or when i try to map a drive in CMD. Other machines, as said above, are able to map to this same shared folder on the NAS using the exact same 'admin' account.

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

about does a simple net view show you?

net view \\kmsnas01

do you get error 53 or access denied error 5? If access denied

then net use \\kmsnas01\ipc$ /u:kmsnas01\admin adminpassword

then

net view \\kmsnas01

again

when i type "net view \\kmsnas01" i do get the "system error 5 has occured. Access is denied."

When i do the next command you typed, i get the System Error 58.

Next, not knowing what ipc$ is, i changed that w/ the 'adminfiles' shared folder. i then get the same error 58.

Grand Master

sc302 Veteran

Posted
  • Veteran
Posted

ipc$ is just a share, any share.

\\kmsnas01\admin would be just fine

net use x: \\kmsnas01\admin /user:kmsnas01\admin adminpass

replace x with whatever drive letter you wish to use that is not currently in use and adminpass with whatever pass.

without really seeing the network traffic, I am not sure exactly how much blind troubleshooting we can do to help here. Obvioulsly there is something wrong, have you looked at your event logs to see if anything registered there?

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

without really seeing the network traffic, I am not sure exactly how much blind troubleshooting we can do to help here. Obvioulsly there is something wrong, have you looked at your event logs to see if anything registered there?

can either of you guide me through the process of sniffing the traffic then? would wireshark suffice? i dont have much experience sniffing network traffic.

Grand Master

sc302 Veteran

Posted
  • Veteran
Posted

wireshark would suffice. you could also use capsa free, it is a bit easier to read.

if using a switch you would have to either have a managed switch an enable a spanning, debug or mirror port (depending on the switch will depend on the terminology used) or install a basic hub (this cannot be a switch of any kind) between the server and the nas box and attach a pc to that hub to capture traffic with wireshark or capsa.

You would be interested in the converstation streams between your nas and your server, obviously, but you may see other traffic as well. Do not concentrate on that. This will basically verify that traffic is getting back to the server and we can try to see what/where it is being rejected. For all we know the software firewall in 2008 or uac is blocking you. Hard to see without the whole picture.

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

wireshark would suffice. you could also use capsa free, it is a bit easier to read.

if using a switch you would have to either have a managed switch an enable a spanning, debug or mirror port (depending on the switch will depend on the terminology used) or install a basic hub (this cannot be a switch of any kind) between the server and the nas box and attach a pc to that hub to capture traffic with wireshark or capsa.

You would be interested in the converstation streams between your nas and your server, obviously, but you may see other traffic as well. Do not concentrate on that. This will basically verify that traffic is getting back to the server and we can try to see what/where it is being rejected. For all we know the software firewall in 2008 or uac is blocking you. Hard to see without the whole picture.

i'll see what i can do w/ the sniffing, thanks

also, i disabled the firewalls in 2008 R2. just this morning i disabled UAC and rebooted the machine. didnt help either. :iiam:

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Since your doing the sniffing on a box directly involved in the traffic you don't have to worry about any switch port spanning or mirroring, etc. That is only required if you were trying to sniff traffic on a box not involved directly in the traffic.

But your 2k8 box is creating the traffic to your nas, so if you run wireshark - or whatever other sniff you want to use directly on the 2k8 box we will see all the traffic we need to see.

Just download wireshark, start a capture -- then do the commands we gave you for net view, net use, etc. Try to auth to the machine with your account from the nas and we should be able to see some useful info on why its failing.. Or maybe nas is saying GREAT you auth just fine and 2k8 is just not working???

I can tell you in the 23+ years I have been working with windows professionally and just as hobby for fun. I remember when we were running windows 3.11 for workgroups, and when install our first 3.51 NT server, etc. And every flavor in between. I can honestly say I do not recall ever seeing error 58.

And I have tried my best googlefu on this and just can not find anything of use about that error. And I can not duplicate it - my 2k8 boxes, both r2 and non, 32 bit, 64 bit, etc. I have never had any issues authing to any other smb/cifs box. Be it my popcorn hour, or samba running on linux, etc. Any issues I have seen have never presented error 58.

So worse case scenario after the sniff we will have more info to work with on what is failing.

The access denied makes sense - understand that, can fix that -- just have not seen 58 before.

edit: BTW, since seems this is not common sense ;) Don't be running any p2p clients or remote desktop sessions, or downloading any large files off the internet, surfing anything - watching a video off your other machine, etc. etc.. While you doing the sniff. Don't have email open, don't be chatting on AIM, etc.. etc.. Close all the other applications you might normally use while your doing the sniff -- if you don't the sniff is going to be LARGE and have lots of stuff we don't need to troubleshoot the problem (noise).

I can send you an example of what it would normally look like doing a connection to a share and authing, etc. Give me a few minutes and will post what the conversation between my 2k8r2 box and one of my other boxes.

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

ok, i ran wireshark on both the 2008 R2 box as well as the 2003 box. the former doesnt work, the latter does work. i'll send the pcap files via PM.

i cant make much sense of these, but what i do know is that the R2 box is having trouble negotiating - it's trying numerous source ports (all over 56,000) as well as other destination ports like 445, 80, 5000.

on the 2003 machine, however, you'll see the same 445 or 80 destination port, but the source port is much lower, 1855.

let me know if this means anything to you guys.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Saw your PM, where you could not attache pcap -- replied with my personal email you can send them too.

Source port is going to be random above 1024, this is the case with any tcp connection. It wouldn't be doing any sort of ntlm auth over 80, so that is strange.

looking forward to seeing the traces.

BTW - I started my example yesterday, but got sidetracked with a real work issue I had to address. Lets see if I can get that going again.

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

Ok -- did you not try and make any smb connections when you were doing that capture.

See my PM. There are no SMB packets at all in that 2k8 sniff you sent me.

i did try smb connections - i did an attempt through Windows Explorer, CMD and Synology Assistant. just sent you the latest pcap file.

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

I am coming into this late, but are you running a domain and is the 2008 R2 box part of that? If so, why not just join the NAS to the domain, it should have that function. Then map the drives with a domain account which has proper permissions.

nope - no domain involved here

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Ok we are on the track of the fix now!

Seems this box has 2 networks -- a public one, and a private.. Not seeing any of the smb traffic on the private interface.

Walking him through the removal of the bindings of windows network on the public interface so that traffic has to go on the correct interface.

Once we get it working will put together a write up on the root cause of the problem!

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Rockstar confirms Grand Theft Auto VI pre-orders begin next week, unveils cover art

      By margrave · Posted

      Well, I only by on pc so saves me money
    • Rockstar confirms Grand Theft Auto VI pre-orders begin next week, unveils cover art

      By spaceship9876 · Posted

      probably due to pc piracy.
    • Rockstar confirms Grand Theft Auto VI pre-orders begin next week, unveils cover art

      By grik · Posted

      Maybe it's just my old-school soul talking, but I’ve always felt that games aren't 'real' games until they hit the PC. Leaving the PC community out at launch just doesn't sit right with me. That being said, I'm probably going to buy the PS5 just for the fun of trying it out.
    • The Vibe Coding Playbook: Building Your Tech Business with AI —was $35, now FREE

      By News Staff · Posted

      The Vibe Coding Playbook: Building Your Tech Business with AI —was $35, now FREE by Steven Parker Claim your complimentary copy (worth $35) of "The Vibe Coding Playbook: Building Your Tech Business with AI" for free, before the offer ends on June 23. Description A detailed and up-to-date walkthrough for entrepreneurs with limited (or non-existent) coding skills who want to build profitable software companies using new gen-AI tools. In The Vibe Coding Playbook: Building Your Tech Business With AI, renowned AI and data science educator Siraj Raval walks you through exactly what you need to do to build a technology business with generative AI-powered code assistants. Raval offers step-by-step guidance for non-technical professionals and entrepreneurs interested in creating scalable, profitable enterprises without spending years learning how to code. This book conceives of new artificial intelligence tools, like Cursor, as “co-founders,” lighting your way to constructing valuable software products and services. You’ll learn to build minimally viable products (MVPs), iterate on your software products as you develop and after launch, and grow your company while maintaining a lean, efficient, solopreneur-focused structure. Inside the book: Detailed guidance for entrepreneurs interested in creating powerful tech solutions for niche problems and markets without hiring expensive software developers Strategies for using generative AI tools to substitute for traditional technical co-founders Illustrative case studies from real-world founders who built successful technology businesses without learning to code Useful tools for non-technical entrepreneurs, including prompt libraries, decision trees, QR codes linking to video tutorials demonstrating key techniques, and access to an exclusive online community of like-minded founders Perfect for ambitious professionals and entrepreneurs who want to build a successful technology company now – using commercially available AI tools – The Vibe Coding Playbook is your personal roadmap to creating useful and profitable software for customers without learning how to code. How to download for free Please ensure you read the terms and conditions to claim this offer. Complete and verifiable information is required in order to receive this free offer. If you have previously made use of these offers, you will not need to re-register. Was $35, but is now FREE | Below free offer link expires on June 23. The Vibe Coding Playbook: Building Your Tech Business with AI The below offers are also available for free in exchange for your (work) email: The Vibe Coding Playbook: Building Your Tech Business with AI ($35 Value) FREE - Expires 6/23 The Persuasion Engine: How Any Business Can Use AI-Powered Neuromarketing to Understand and Win Customers ($28 Value) FREE - Expires 6/24 How to Do More with Less: Future-Proofing Yourself in an AI-driven Economy ($28 Value) FREE - Expires 6/30 Cloud Security Fundamentals: Building the Foundations for Secure Cloud Platforms ($131.95 Value) FREE - Expires 7/1 The Complete Free AI Learning: Master ChatGPT, Claude, Gemini & More ($21 Value) FREE How to Build an AI Design Workflow with Gamma ($21 Value) FREE The Ultimate Linux Newbie Guide – Featured Free content Python Notes for Professionals – Featured Free content Learn Linux in 5 Days – Featured Free content Quick Reference Guide for Cybersecurity – Featured Free content We post these because we earn commission on each lead so as not to rely solely on advertising, which many of our readers block. It all helps toward paying staff reporters, servers and hosting costs. Other ways to support Neowin The above deal not doing it for you, but still want to help? Check out the links below. Check out our partner software in the Neowin Store Buy a T-shirt at Neowin's Threadsquad Subscribe to Neowin - for $14 a year, or $28 a year for an ad-free experience Disclosure: An account at Neowin Deals is required to participate in any deals powered by our affiliate, StackCommerce. For a full description of StackCommerce's privacy guidelines, go here. Neowin benefits from shared revenue of each sale made through the branded deals site.
    • Rockstar confirms Grand Theft Auto VI pre-orders begin next week, unveils cover art

      By LoneWolfSL · Posted

      Rockstar confirms Grand Theft Auto VI pre-orders begin next week, unveils cover art by Pulasthi Ariyasinghe The release date of Grand Theft Auto VI has moved quite a lot since its original announcement in 2023, but it finally looks like the game has found its final launch slot. Rockstar today had a new video upload on its YouTube channel, and while it wasn't a new trailer for the game, the company revealed two things. This was the pre-order kickoff date for Grand Theft Auto VI as well as the game's official cover art. The company revealed that June 25 is when fans of the series will be able to pre-order their copy of Grand Theft Auto VI. Pre-orders will be available both digitally and in retail stores. The newly unveiled cover art shows off the two new protagonists, as well as a few more characters that are probably vital to the campaign storyline. Shots of vehicles players can use like a light helicopter, motorcycle, sports car, and speed boat are also seen here, alongside a shot of a crocodile. "Jason and Lucia have always known the deck is stacked against them," says Rockstar describing the campaign's protagonist duo. "But when an easy score goes wrong, they find themselves on the darkest side of the sunniest place in America, in the middle of a conspiracy stretching across the state of Leonida — forced to rely on each other more than ever if they want to make it out alive." Grand Theft Auto VI is coming to Xbox Series X|S and PlayStation 5 on November 19, 2026. A PC version has not been confirmed yet, though it's expected by many to land after the console release. When asked about this, the Take-Two CEO says it considers the core audience for the Grand Theft Auto franchise to be on consoles.

  • Recent Achievements

    • Week One Done
      Huge Trailer earned a badge
      Week One Done
    • Week One Done
      Classifyskilleducation earned a badge
      Week One Done
    • One Month Later
      eurospharma62 earned a badge
      One Month Later
    • Week One Done
      With What earned a badge
      Week One Done
    • Week One Done
      Harris Gilbert earned a badge
      Week One Done

  • Popular Contributors

    1. 1
      +primortal
      555
    2. 2
      +Edouard
      168
    3. 3
      PsYcHoKiLLa
      72
    4. 4
      Michael Scrip
      64
    5. 5
      ATLien_0
      64
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!