Comment 2 for bug 1953729

It was my suspicion too.

Additional information:

In our environmant we have two domain controllers: DC1 and DC2
PAC patch for Windows as described in https://support.microsoft.com/en-us/topic/kb5008380-authentication-updates-cve-2021-42287-9dafac11-e0d0-4cb8-959a-143bd0201041 is currently installed only on DC2, but only in log level (not enforced).

Currently the samba server authenticates against DC1 without this patch.