Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Samba Domain Member - File Permissions 1

Status
Not open for further replies.
RaI3id

RaI3id

IS-IT--Management
Mar 24, 2006
3
US
Hi, I am trying to add a Fedora Core 5 Samba server to a Windows NT 4.0 Domain. The whole purpose is so that I can create shared folders for all the different users on the domain. I would like all user authentication to be handled by our PDC and BDC's so no local users will have to be created on the Fedora Samba Server. So far I have succesfully added the samba server to the domain as a member. The problem i am having now is how to configure samba so that it can authenticate the users to the PDC/BDC's and create permissions on the file shares so they can access the shares.

So far this is what my smbconfig looks like.

;Begin
[global]

security = domain
workgroup = cmh
encrypt passwords = yes
password server = *
username map = /etc/samba/smbusers
hosts allow = 10.1.
hosts deny = all
log file = /var/log/samba/%m.smbd
max log size = 50
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
dns proxy = no

[Share]
comment = Test Share
path = /share
public = yes
writeable = yes
browseable = yes
;End

I created the share with access for everyone but it does not seem to work. When i try to connect from a Windows XP SP2 machine it asks for a login and password. I can only login with root and even when i do that i am not allowed to create any files on the share. Please give me any advice you can I am new to Samba.
 
Sort by date Sort by votes
Are your users mapped correctly in /etc/samba/smbusers

ie
unixuser = ntdomain\windowsuser

"If you always do what you've always done, you will always be where you've always been."
 
Upvote 0 Downvote
They were not but i have added that line to my smbusers file. I have been messing with this a lot and am still having problems. Just to update you i have been setting up winbind so it can communicate with the NT domain and I believe i have it setup properly. It has been added to the domain succesfully and is listed on the domain as a trusted computer. I can do a wbinfo -u or -g on the samba server and it will list all the users/groups that are on our domain server. However i cannot do a getent passwd. Supposedly that will grab user information from the domain server and list it, for me it only seems to list local user information. From what i have read if i can do a wbinfo then getent should work so I'm pretty confused about it.

Here's other infromation that could be usefull.

I edited my etc/nsswitch so it now has these two lines.

passwd file winbind
group file winbind

my etc/pam.d/login looks like this.

#%PAM-1.0
auth required pam_securetty.so
auth sufficient pam_winbind.so
auth required pam_stack.so service=system-auth
auth required pam_nologin.so
account sufficient pam_winbind.so
account required pam_stack.so service=system-auth
password required pam_stack.so service=system-auth
session required pam_selinux.so close
session required pam_stack.so service=system-auth
session required pam_loginuid.so
session optional pam_console.so
session required pam_selinux.so multiple open


My etc/pam.d/samba looks like this.

#%PAM-1.0
auth required pam_nologin.so
auth required pam_stack.so service=system-auth
account required pam_stack.so service=system-auth
session required pam_stack.so service=system-auth
password required pam_stack.so service=system-auth

Here is an updated version of my smb.conf

[global]
security = domain
workgroup = CMH
server string = Samba Server
hosts allow = 10.1.
log file = /var/log/samba/%m.log
max log size = 50
password server = CMHPACE CMH-BDC
encrypt passwords = yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
domain master = no
dns proxy = no
winbind separator =/
winbind enum groups = yes
winbind enum users = yes
winbind use default domain = yes
template homedir = /home/winnt/%D/%U
template shell = /bin/bash

[home]
comment = Home Directories
browseable = yes
read only = no
writeable = yes

[share]
comment = Test Share
public = yes
path = /share
writeable = yes


There must be some little thing I'm missing. Anyone have any ideas? Thanks for the quick response!
 
Upvote 0 Downvote
I figured out my problem on my own. I had some bad syntax in my different configuration files. Thanks for the help.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MartijnNL
  • Locked
  • Question
searching for files reaching file version limit
Replies
2
Views
144
MartijnNL
MartijnNL
treedstang
  • Locked
  • Question
SAMBA4 DOMAIN NOT SEEING IMPORTED USERS OR GROUPS FROM SAMBA3 DOMAIN
Replies
0
Views
90
treedstang
treedstang
countrydj
  • Locked
  • Question
Setup samba centos 6.3
Replies
2
Views
107
countrydj
countrydj
SBTBILL
  • Locked
  • Question
How to get to files
Replies
1
Views
128
Provogeek
Provogeek
galileo005
  • Locked
  • Question
Samba .conf / file permissions
Replies
0
Views
43
galileo005
galileo005

Part and Inventory Search

Sponsor

Back
Top