Cannot map network drive from NAS in 2008 R2

By Jason S.
in Microsoft (Windows)

 Share

Recommended Posts

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

If you think it's a group policy issue; then disable them.

http://technet.micro...y/cc730760.aspx

Starting from #7...

i can certainly try this. will this effectively erase all my GP changes or can i enable/disable w/o consequence?

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

So how do you manage this nas - is there some web ui that you access?

is it possible to let me or sc302 teamviewer into this 2k8r2 box and access the nas web ui from this box?

I would be interested in seeing the sniff the traffic when creating the ntml session for the map / access. If you can map access of the other boxes shares to this 2k8r2 box then it clearly is not a issue with the account your using on 2k8 not having permissions to map.

And if you say you can map shares on the nas from a different win 7 box using the same account it really seems odd!!

I don't recall ever seeing a error 58 before, and google for it has been of no help.

I sniff of the traffic while you try and map a share on the nas, and then mapping on share on one of your other boxes might be very helpful in figuring out what is not allowing the access.

edit: I just noticed your using some assistance software from synology -- what happens when you just do normal map? And what about a different share -- are these other machines mapping to this adminfiles share?

about does a simple net view show you?

net view \\kmsnas01

do you get error 53 or access denied error 5? If access denied

then net use \\kmsnas01\ipc$ /u:kmsnas01\admin adminpassword

then

net view \\kmsnas01

again

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

So how do you manage this nas - is there some web ui that you access?

is it possible to let me or sc302 teamviewer into this 2k8r2 box and access the nas web ui from this box?

I would be interested in seeing the sniff the traffic when creating the ntml session for the map / access. If you can map access of the other boxes shares to this 2k8r2 box then it clearly is not a issue with the account your using on 2k8 not having permissions to map.

And if you say you can map shares on the nas from a different win 7 box using the same account it really seems odd!!

I don't recall ever seeing a error 58 before, and google for it has been of no help.

I sniff of the traffic while you try and map a share on the nas, and then mapping on share on one of your other boxes might be very helpful in figuring out what is not allowing the access.

edit: I just noticed your using some assistance software from synology -- what happens when you just do normal map? And what about a different share -- are these other machines mapping to this adminfiles share?

The NAS is managed through a web UI. I log in to the UI using the same admin account that i am using to map the network drive. Sure enough, the NAS's log says "CIFS client 'admin' from [computername] accessed the shared folder 'adminfiles'."

sorry - i'd love to have someone remote into the box, but that's against the company's policy.

Just to check again, i logged onto the Server 2003 machine and was able to map the NAS's folder using the same 'admin' account. really strange! i also mapped a drive from the 2008 R2 box to a shared folder on the 2003 box. really strange!

about your edit: when i do a normal map, i get repeatedly prompted for the password, over and over. i get the Error 58 from either the Synology Assistant program, or when i try to map a drive in CMD. Other machines, as said above, are able to map to this same shared folder on the NAS using the exact same 'admin' account.

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

about does a simple net view show you?

net view \\kmsnas01

do you get error 53 or access denied error 5? If access denied

then net use \\kmsnas01\ipc$ /u:kmsnas01\admin adminpassword

then

net view \\kmsnas01

again

when i type "net view \\kmsnas01" i do get the "system error 5 has occured. Access is denied."

When i do the next command you typed, i get the System Error 58.

Next, not knowing what ipc$ is, i changed that w/ the 'adminfiles' shared folder. i then get the same error 58.

Grand Master

sc302 Veteran

Posted
  • Veteran
Posted

ipc$ is just a share, any share.

\\kmsnas01\admin would be just fine

net use x: \\kmsnas01\admin /user:kmsnas01\admin adminpass

replace x with whatever drive letter you wish to use that is not currently in use and adminpass with whatever pass.

without really seeing the network traffic, I am not sure exactly how much blind troubleshooting we can do to help here. Obvioulsly there is something wrong, have you looked at your event logs to see if anything registered there?

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

without really seeing the network traffic, I am not sure exactly how much blind troubleshooting we can do to help here. Obvioulsly there is something wrong, have you looked at your event logs to see if anything registered there?

can either of you guide me through the process of sniffing the traffic then? would wireshark suffice? i dont have much experience sniffing network traffic.

Grand Master

sc302 Veteran

Posted
  • Veteran
Posted

wireshark would suffice. you could also use capsa free, it is a bit easier to read.

if using a switch you would have to either have a managed switch an enable a spanning, debug or mirror port (depending on the switch will depend on the terminology used) or install a basic hub (this cannot be a switch of any kind) between the server and the nas box and attach a pc to that hub to capture traffic with wireshark or capsa.

You would be interested in the converstation streams between your nas and your server, obviously, but you may see other traffic as well. Do not concentrate on that. This will basically verify that traffic is getting back to the server and we can try to see what/where it is being rejected. For all we know the software firewall in 2008 or uac is blocking you. Hard to see without the whole picture.

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

wireshark would suffice. you could also use capsa free, it is a bit easier to read.

if using a switch you would have to either have a managed switch an enable a spanning, debug or mirror port (depending on the switch will depend on the terminology used) or install a basic hub (this cannot be a switch of any kind) between the server and the nas box and attach a pc to that hub to capture traffic with wireshark or capsa.

You would be interested in the converstation streams between your nas and your server, obviously, but you may see other traffic as well. Do not concentrate on that. This will basically verify that traffic is getting back to the server and we can try to see what/where it is being rejected. For all we know the software firewall in 2008 or uac is blocking you. Hard to see without the whole picture.

i'll see what i can do w/ the sniffing, thanks

also, i disabled the firewalls in 2008 R2. just this morning i disabled UAC and rebooted the machine. didnt help either. :iiam:

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Since your doing the sniffing on a box directly involved in the traffic you don't have to worry about any switch port spanning or mirroring, etc. That is only required if you were trying to sniff traffic on a box not involved directly in the traffic.

But your 2k8 box is creating the traffic to your nas, so if you run wireshark - or whatever other sniff you want to use directly on the 2k8 box we will see all the traffic we need to see.

Just download wireshark, start a capture -- then do the commands we gave you for net view, net use, etc. Try to auth to the machine with your account from the nas and we should be able to see some useful info on why its failing.. Or maybe nas is saying GREAT you auth just fine and 2k8 is just not working???

I can tell you in the 23+ years I have been working with windows professionally and just as hobby for fun. I remember when we were running windows 3.11 for workgroups, and when install our first 3.51 NT server, etc. And every flavor in between. I can honestly say I do not recall ever seeing error 58.

And I have tried my best googlefu on this and just can not find anything of use about that error. And I can not duplicate it - my 2k8 boxes, both r2 and non, 32 bit, 64 bit, etc. I have never had any issues authing to any other smb/cifs box. Be it my popcorn hour, or samba running on linux, etc. Any issues I have seen have never presented error 58.

So worse case scenario after the sniff we will have more info to work with on what is failing.

The access denied makes sense - understand that, can fix that -- just have not seen 58 before.

edit: BTW, since seems this is not common sense ;) Don't be running any p2p clients or remote desktop sessions, or downloading any large files off the internet, surfing anything - watching a video off your other machine, etc. etc.. While you doing the sniff. Don't have email open, don't be chatting on AIM, etc.. etc.. Close all the other applications you might normally use while your doing the sniff -- if you don't the sniff is going to be LARGE and have lots of stuff we don't need to troubleshoot the problem (noise).

I can send you an example of what it would normally look like doing a connection to a share and authing, etc. Give me a few minutes and will post what the conversation between my 2k8r2 box and one of my other boxes.

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

ok, i ran wireshark on both the 2008 R2 box as well as the 2003 box. the former doesnt work, the latter does work. i'll send the pcap files via PM.

i cant make much sense of these, but what i do know is that the R2 box is having trouble negotiating - it's trying numerous source ports (all over 56,000) as well as other destination ports like 445, 80, 5000.

on the 2003 machine, however, you'll see the same 445 or 80 destination port, but the source port is much lower, 1855.

let me know if this means anything to you guys.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Saw your PM, where you could not attache pcap -- replied with my personal email you can send them too.

Source port is going to be random above 1024, this is the case with any tcp connection. It wouldn't be doing any sort of ntlm auth over 80, so that is strange.

looking forward to seeing the traces.

BTW - I started my example yesterday, but got sidetracked with a real work issue I had to address. Lets see if I can get that going again.

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

Ok -- did you not try and make any smb connections when you were doing that capture.

See my PM. There are no SMB packets at all in that 2k8 sniff you sent me.

i did try smb connections - i did an attempt through Windows Explorer, CMD and Synology Assistant. just sent you the latest pcap file.

Grand Master

Jason S. Global Moderator

Posted
  • Author
  • Global Moderator
Posted

I am coming into this late, but are you running a domain and is the 2008 R2 box part of that? If so, why not just join the NAS to the domain, it should have that function. Then map the drives with a domain account which has proper permissions.

nope - no domain involved here

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Ok we are on the track of the fix now!

Seems this box has 2 networks -- a public one, and a private.. Not seeing any of the smb traffic on the private interface.

Walking him through the removal of the bindings of windows network on the public interface so that traffic has to go on the correct interface.

Once we get it working will put together a write up on the root cause of the problem!

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Microsoft explains why PowerToys 0.100.0 is faster and slimmer, there are new features too

      By matthiew · Posted

      I just looked on my computer and there are settings and log files for utilities I have never even turned on!
    • O&O ShutUp10 3.1.1104

      By Copernic · Posted

      O&O ShutUp10 3.1.1104 by Razvan Serea O&O ShutUp10 offers a simple yet effective way to take control of your Windows privacy. It provides access to almost 50 privacy-related tweaks, most of them hidden or not easily accessible to the average computer users. Using a very simple interface, you decide how Windows 10/11 should respect your privacy by deciding which unwanted functions should be deactivated. Using ShutUp10 you can easily disable Windows Defender, turn off telemetry, disable peer-to-peer updates, turn off Wi-Fi Sense, disable automatic Windows updates, turn off and reset Cortana and more. ShutUp10 allows you to create a System Restore point before you apply any changes, so that you can revert your system at any time if you run into problems. O&O ShutUp10 is entirely free and does not have to be installed – it can be simply run directly and immediately on your PC. And it will not install or download retrospectively unwanted or unnecessary software, like so many other programs do these days! O&O ShutUp10 Free and Premium The latest version brings O&O ShutUp10 Premium, expanding the app’s long-standing privacy controls with automatic enforcement of user-defined settings. Instead of manually rechecking options after every Windows update, users can set their preferred privacy configuration once—or apply recommended settings in a single click—and the tool continuously monitors them in the background. If Windows 10 or 11 re-enables disabled features or introduces new data collection paths, Premium restores the chosen settings automatically without user intervention. The free version remains available and fully functional for manual adjustments, offering the same core privacy controls for Windows. However, the Premium tier is aimed at users who want long-term, hands-off protection, adding automatic reapplication after updates, ongoing monitoring, and optional notifications to ensure privacy settings remain consistent over time. O&O ShutUp10 3.1.1104 changelog: Added “Show Differences” button in the overview panel “Don’t show again” option for the restore point prompt Ctrl+F keyboard shortcut for search/filter functionality Detection and linking of system-wide and user-specific setting associations Automatic search while typing PREM: Option to preserve notification counters and timestamps across application restarts PREM: Reset blocked settings button in the Settings dialog PREM: Informational message when no settings are blocked PREM: Update check can also be triggered from the menu PREM: Notification deduplication and activity log summary feature Improved L005 “Disable Windows Location Service”: Version-specific split (up to Windows 11 23H2) and new variant for Windows 11 24H2+ L001 (Disable Location): Added Night Light warning to the description in all languages Search now detects setting IDs even when ID display is disabled and offers to enable it Detection and removal of Copilot/AI desktop apps in RecallTerminator Optimized High DPI support PREM: Reset button is now only enabled when blocked items exist – setting IDs are shown in the confirmation dialog PREM: Updated tray icons with higher-resolution versions PREM: Activity Log timestamps now use localized date and time formats PREM: Tray icon status now uses OK/Warning indicators and localized tooltips PREM: Recall folder detection switched to service-based detection PREM: Copilot uninstallation now provides UI feedback and improved verification Fixed Description text was not displayed correctly for the last item and disappeared when clicking the scrollbar Crash when clicking a search result heading or the […] button PREM: Installation path is now correctly preserved during upgrades PREM: Tray icon was not reliably removed when exiting the application PREM: Main window was not displayed correctly in single-instance mode PREM: Incorrect display of the & symbol in tray icon tooltips on Windows 10 PREM: Fixed notification flooding after sleep/standby PREM: Dashboard was not refreshed after applying recommended settings during onboarding PREM: Progress bar was not reset after deleting Recall folders PREM: Fixed service startup failures PREM: Fixed incorrect drift detection when Automatic Protection was disabled PREM: Notifications now correctly count all deviating settings when protection is enabled PREM: Registration Wizard was shown after sleep/standby despite a valid license Download: O&O ShutUp10 3.1.1104 | 76.4 MB (Freeware) Download: O&O ShutUp10 32-bit | ARM64 View: O&O ShutUp10 Home Page | Screenshot Get alerted to all of our Software updates on Twitter at @NeowinSoftware
    • New Site Moderation

      By +Edouard · Posted

      Fascinating...W h i t e P o w e r is now also asterisks out.  
    • New Site Moderation

      By +Edouard · Posted

      In the past few days I have noticed two odd moderation activities. First, when I posted the term 'White Nationist Christian' it was asterisk's out. When I changed it to **** it was allowed! Second, in the Politics is a ###business thread I was allowed to post that the GOP is a party of p e d ophiles but I was censored  when I posted the GOP are a party of p e d ophile protectors. Wtf Neowin. Please explain.
    • Latest Rufus update improves new Windows 11 install method

      By WITHOUT-ME · Posted

      send him paypal

  • Recent Achievements

    • One Month Later
      Vincian earned a badge
      One Month Later
    • First Post
      Jocimo earned a badge
      First Post
    • Week One Done
      suprememobiles48 earned a badge
      Week One Done
    • One Month Later
      Windows Guy earned a badge
      One Month Later
    • One Month Later
      Prasann earned a badge
      One Month Later

  • Popular Contributors

    1. 1
      +primortal
      547
    2. 2
      +Edouard
      166
    3. 3
      PsYcHoKiLLa
      86
    4. 4
      Steven P.
      66
    5. 5
      neufuse
      65
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!