Problem: Cross-domain share access via same user and password doesn’t work any more after updating to UCS 4.3.
The following option can be set on all Samba AD/DCs of the domain. Do not set it on the affected member server.
ucr set samba/global/options/"auth methods"="anonymous sam winbind_rodc sam_failtrusts sam_ignoredomain" /etc/init.d/samba restart
This may cause unintended changes of behavior. Unfortunately there is only “auth methods” and it affects both, local logon and netlogon. In this case only the netlogon behavior needed adjustment.
More details about the root cause can be found in Bug #47314.