I just rolled out a new server based on Ubuntu 10.04 running SAMBA for the PC's and Netatalk for the Mac's. Everything seems to function for for the Mac's. Keychain remembers and properly handles the login credentials. But the PC's are a different story.
First thing to note, the PC's will not display the new server when browsing the network. The only way to find or map the drive is to do so using the IP Address (\\IP Address). Using the \\Name finds nothing. If I use the address of the server then the name of the server will properly show up.
On the PC side, I have go to "control panel / user accounts", selected the user account and then selected "Manage network passwords" to remove all references to the server and password. I have then rebooted. From there I try to map a network drive. I do so first by entering \\IP Address and then clicking browse. At that point the XP machine will find the server. I click on the share I want mapped to and when prompted for credentials I enter the login and password. I also have the check box for remember password and reconnect on next login checked. But, when the PC is rebooted the user is required to enter the password again.
I don't "believe" this problem is impacting Vista or Windows 7 machines, just XP - Pro machines. At this point I am thinking it is related to the configuration of the SAMBA install. I am also starting to think it may also be related to the server name not being visible (UNC?).
Here are the parts of the smb.conf that I initially suspect you would need to view. If I need to go through the process of copying the entire config file I will do so but thought I would start here. I did change user names & path names but kept the structure 100% the same.
[global]
#For the naughty macs that do horrible things to files
unix extensions = no
#Hide netatalk files
veto files = /.AppleDouble/.AppleDesktop/Network Trash Folder/TheVolume/SettingsFolder/:2eDS_Store
## Browsing/Identification ###
# Change this to the workgroup/NT-domain name your Samba server will part of
workgroup = WORKGROUP
# server string is the equivalent of the NT Description field
server string = %h server (Samba, Ubuntu)
# Windows Internet Name Serving Support Section:
# WINS Support - Tells the NMBD component of Samba to enable its WINS Server
# wins support = no
# WINS Server - Tells the NMBD components of Samba to be a WINS Client
# Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
; wins server = w.x.y.z
# This will prevent nmbd to search for NetBIOS names through DNS.
dns proxy = no
# What naming service and in what order should we use to resolve host names
# to IP addresses
; name resolve order = lmhosts host wins bcast
####### Authentication #######
# "security = user" is always a good idea. This will require a Unix account
# in this server for every user accessing the server. See
# /usr/share/doc/samba-doc/htmldocs/Samba3-HOWTO/ServerType.html
# in the samba-doc package for details.
# security = user
# You may wish to use password encryption. See the section on
# 'encrypt passwords' in the smb.conf(5) manpage before enabling.
encrypt passwords = true
# If you are using encrypted passwords, Samba will need to know what
# password database type you are using.
passdb backend = tdbsam
obey pam restrictions = yes
# This boolean parameter controls whether Samba attempts to sync the Unix
# password with the SMB password when the encrypted SMB password in the
# passdb is changed.
unix password sync = yes
# For Unix password sync to work on a Debian GNU/Linux system, the following
# parameters must be set (thanks to Ian Kahan <<kahan@informatik.tu-muenchen.de> for
# sending the correct chat script for the passwd program in Debian Sarge).
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
# This boolean controls whether PAM will be used for password changes
# when requested by an SMB client instead of the program listed in
# 'passwd program'. The default is 'no'.
pam password change = yes
# This option controls how unsuccessful authentication attempts are mapped
# to anonymous connections
map to guest = bad user
[Data Server]
comment = Welcome to the Data Server
path = /storage/data
valid users = data @data bill
browseable = yes
read only = no
writeable = yes
guest ok = no
create mask = 0777
directory mask = 0777
[Bill Share]
comment = Welcome Bill
path = /storage/bill
valid users = bill @bill
browseable = yes
read only = no
writeable = yes
guest ok = no
create mask = 0777
directory mask = 0777
First thing to note, the PC's will not display the new server when browsing the network. The only way to find or map the drive is to do so using the IP Address (\\IP Address). Using the \\Name finds nothing. If I use the address of the server then the name of the server will properly show up.
On the PC side, I have go to "control panel / user accounts", selected the user account and then selected "Manage network passwords" to remove all references to the server and password. I have then rebooted. From there I try to map a network drive. I do so first by entering \\IP Address and then clicking browse. At that point the XP machine will find the server. I click on the share I want mapped to and when prompted for credentials I enter the login and password. I also have the check box for remember password and reconnect on next login checked. But, when the PC is rebooted the user is required to enter the password again.
I don't "believe" this problem is impacting Vista or Windows 7 machines, just XP - Pro machines. At this point I am thinking it is related to the configuration of the SAMBA install. I am also starting to think it may also be related to the server name not being visible (UNC?).
Here are the parts of the smb.conf that I initially suspect you would need to view. If I need to go through the process of copying the entire config file I will do so but thought I would start here. I did change user names & path names but kept the structure 100% the same.
[global]
#For the naughty macs that do horrible things to files
unix extensions = no
#Hide netatalk files
veto files = /.AppleDouble/.AppleDesktop/Network Trash Folder/TheVolume/SettingsFolder/:2eDS_Store
## Browsing/Identification ###
# Change this to the workgroup/NT-domain name your Samba server will part of
workgroup = WORKGROUP
# server string is the equivalent of the NT Description field
server string = %h server (Samba, Ubuntu)
# Windows Internet Name Serving Support Section:
# WINS Support - Tells the NMBD component of Samba to enable its WINS Server
# wins support = no
# WINS Server - Tells the NMBD components of Samba to be a WINS Client
# Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
; wins server = w.x.y.z
# This will prevent nmbd to search for NetBIOS names through DNS.
dns proxy = no
# What naming service and in what order should we use to resolve host names
# to IP addresses
; name resolve order = lmhosts host wins bcast
####### Authentication #######
# "security = user" is always a good idea. This will require a Unix account
# in this server for every user accessing the server. See
# /usr/share/doc/samba-doc/htmldocs/Samba3-HOWTO/ServerType.html
# in the samba-doc package for details.
# security = user
# You may wish to use password encryption. See the section on
# 'encrypt passwords' in the smb.conf(5) manpage before enabling.
encrypt passwords = true
# If you are using encrypted passwords, Samba will need to know what
# password database type you are using.
passdb backend = tdbsam
obey pam restrictions = yes
# This boolean parameter controls whether Samba attempts to sync the Unix
# password with the SMB password when the encrypted SMB password in the
# passdb is changed.
unix password sync = yes
# For Unix password sync to work on a Debian GNU/Linux system, the following
# parameters must be set (thanks to Ian Kahan <<kahan@informatik.tu-muenchen.de> for
# sending the correct chat script for the passwd program in Debian Sarge).
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
# This boolean controls whether PAM will be used for password changes
# when requested by an SMB client instead of the program listed in
# 'passwd program'. The default is 'no'.
pam password change = yes
# This option controls how unsuccessful authentication attempts are mapped
# to anonymous connections
map to guest = bad user
[Data Server]
comment = Welcome to the Data Server
path = /storage/data
valid users = data @data bill
browseable = yes
read only = no
writeable = yes
guest ok = no
create mask = 0777
directory mask = 0777
[Bill Share]
comment = Welcome Bill
path = /storage/bill
valid users = bill @bill
browseable = yes
read only = no
writeable = yes
guest ok = no
create mask = 0777
directory mask = 0777