Thanks for the reply.
I believe I need to create a user in smbpasswd for that, as well as, in /etc/passwd.
If you have 50 users the setup though can be laborious. Say Emma is mapped to sapread but in another share I want her to be able to write. In the long run, user.map solution will not suffice on a per share configuration.
The solution is something like this but I just don't know how to setup.
Say you have two shares PublicFiles and PrivateFiles and two users Emma and Robin. Emma will have write Privilege in PrivateFiles.
[global]
# tells samba to validate using a Domain Controller
# samba does not need to be a domain member
security=< I'm not sure of the correct setting>
# tells samba the Domain Controller
password server= <machine name or IP>
[PublicFiles]
path=/home/localnixuser/PublicFiles
# users are existing in NT/Samba PDC only.
valid users= emma robin
#map robin and emma to local nixuser
force user= localnixuser
#only read access even though localnixuser
#have write privilege
read only= yes
[PrivateFiles]
path=/home/localnixuser/PrivateFiles
# users are existing in NT/Samba PDC only.
read list = robin
write list= emma
#map robin and emma to local nixuser
force user=localnixuser
[WorldFiles]
path=/home/localnixuser/WorldFiles
# no password required for this share
guest ok = yes
read only = yes
This approach is fine grained because you may be able to
specify valid users per share, as well as , a user's privilege.
I hope somebody made a solution.