Hi there,
here's what I have:
1) Many Windows-Clients
2) a linux box (Suse 7.3)
3) a W2K server (Exchange, in fact)
here's what I want:
1) Windows-Clients using samba shares on the linux box
2) Not having to create user accounts on the linux box
3) Letting the w2k server do the authentication
here's what I've done:
1) downloaded/unpacked Samba 2.2.3a
2) ./configure --with-pam --with-pam_smbpass --with-winbind
3) make, make install
4) created smb.conf
[global]
workgroup = MYDOMAIN
netbios name = samba
encrypt passwords = yes
comment = Samba Server
printing = bsd
printcap name = /etc/printcap
load printers = no
log file = /var/log/smbdlog
log level = 4
max log size = 5000
; case sensitive = yes
short preserve case = yes
preserve case = yes
lock directory = /usr/local/samba/var/locks
locking = yes
security = domain
password server = MARVIN
socket options = TCP_NODELAY
interfaces = eth0
local master = yes
os level = 1
domain master = yes
preferred master = yes
wins support = yes
winbind separator = +
winbind uid = 10000-30000
winbind gid = 10000-30000
winbind enum users = yes
winbind enum groups = yes
template shell = /bin/false
template homedir = /home/samba/%D/%U
[homes]
comment = Home Directories
public = no
browseable = no
writable = yes
path=/home/samba/MYDOMAIN/%S
valid users = %S
create mask = 0700
force user = %S
[inst]
comment = Installationskram
path = /home/samba/inst
public = yes
writable = yes
browseable = yes
printable = no
write list = @users
create mask = 0770
directory mask = 0770
force group = users
[spass]
comment = Spass
path = /home/samba/spass
public = yes
writable = yes
browseable = yes
printable = no
write list = @users
create mask = 0770
directory mask = 0770
force group = users
5) done all the things in winbindd documentation
6) smb, nmbd and winbind start up fine
7) when started interactively, winbindd shows a very interesting line
'IPC$ connections are done anonymously'
8) getent passwd shows only local users; wbinfo -u says 'error looking up
domain users' and:
The w2k server log shows
Ge?ffnetes Objekt:
Objektserver: Security Account Manager
Objekttyp: SAM_SERVER
Objektname: CN=Server,CN=System
Neue Handlekennung: -
Vorgangskennung: {0,2595960835}
Prozesskennung: 264
Prim?rer Benutzer: MARVIN$
Prim?re Dom?ne: MYDOMAIN
Prim?re Anmeldekennung: (0x0,0x3E7)
Clientbenutzername: ANONYMOUS-ANMELDUNG
Clientdom?ne: NT-AUTORIT?T
Clientanmeldekennung: (0x0,0x7312)
Zugriffe MAX_ERLAUBT
Berechtigungen -
(sorry, this is in german)
I see the spass and inst shares, but i cannot copy files there. I cannot map a
home directory.
Anyone with a working configuration who can help me out?
---------------------------------------------------------
| Peter Koch Schlund & Partner AG |
| mailto:peter.koch@schlund.de Erbprinzenstr. 4-12 |
| T. 0721-91374-687 D-76133 Karlsruhe |
| F. 0721-91374-20 |
---------------------------------------------------------