I am migrating from my "old" 2.2.7 samba server to a newer server
runnig
3.0.20a and everythig is working except the [homes] share. The server
(FILE-CABINET) is a member of the domain, security is set to ADS and, as
far as I can tell, kerberos is working. The program wbinfo returns a
list of users and groups like it should. getent passwd returns first my
local passwd file and then the list of windows users. nscd is off.
authentication seems to be working:
$ sudo wbinfo -a scarville%<password>
plaintext password authentication failed
error code was NT_STATUS_NO_SUCH_USER (0xc0000064)
error messsage was: No such user
Could not authenticate user scarville%<password> with plaintext password
challenge/response password authentication succeeded
I'm currently testing from a Window 2003 terminal server and, If I use
run->\\file-cabinet I can see all the listed shares and all _except_ the
home directory are accessible.
Usually a few minutes with Google is all I need to solve Samba problem
but not this time.
Samba version: 3.0.20a
I have in nsswitch.conf:
passwd: files winbind
shadow: files winbind
group: files winbind
in smb.conf:
[global]
unix charset = LOCALE
workgroup = TOTALFLOOD
realm = TOTALFLOOD.COM
netbios name = FILE-CABINET
security = ADS
encrypt passwords = yes
lanman auth = no
lm announce = no
min protocol = NT1
username map = /etc/samba/smbusers
log level = 10
syslog = 0
server string = Main File Server
hosts allow = 192.168.124. 127.
log file = /var/log/samba/%m.log
max log size = 50
smb ports = 139
name resolve order = wins bcasts hosts
wins server = 192.168.124.10
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
load printers = No
idmap uid = 10000-20000
idmap gid = 10000-20000
admin users = stephen, paul
[netapps]
comment = Network Applications
path = /export/netapps
force user = procman
force group = users
read only = No
[common]
comment = Common Files
path = /export/common
force group = users
read only = No
create mask = 0775
force create mode = 0664
directory mask = 0775
force directory mode = 0775
[public]
comment = Public Files
path = /export/public
force user = procman
force group = users
read only = No
create mask = 0774
[homes]
comment = Home Directory
path = /export/private/%S
hide dot files = yes
valid users = %S
read only = No
browseable = No
-- Stephen
> I'm currently testing from a Window 2003 terminal server and, If I use > run->\\file-cabinet I can see all the listed shares and all _except_ > the home directory are accessible. > > [homes] > comment = Home Directory > path = /export/private/%S > hide dot files = yes > valid users = %S > read only = No > browseable = NoIs it possible that /export/private/%S doesn't exist? (i.e. %S isn't what you're expecting it to be?) If you set the path to /tmp or something, does that make the share appear? I'm just wondering whether %S is of the form "username" or "DOMAIN\username", and whether case sensitivity is important. I'm guessing it is, being in a UNIX path name. Cheers, Adam.
I am migrating from my "old" 2.2.7 samba server to a newer server
runnig
3.0.20a and everythig is working except the [homes] share. The server
(FILE-CABINET) is a member of the domain, security is set to ADS and, as
far as I can tell, kerberos is working. The program wbinfo returns a
list of users and groups like it should. getent passwd returns first my
local passwd file and then the list of windows users. nscd is off.
authentication seems to be working:
$ sudo wbinfo -a scarville%<password>
plaintext password authentication failed
error code was NT_STATUS_NO_SUCH_USER (0xc0000064)
error messsage was: No such user
Could not authenticate user scarville%<password> with plaintext password
challenge/response password authentication succeeded
I'm currently testing from a Window 2003 terminal server and, If I use
run->\\file-cabinet I can see all the listed shares and all _except_ the
home directory are accessible.
Usually a few minutes with Google is all I need to solve Samba problem
but not this time.
Samba version: 3.0.20a
I have in nsswitch.conf:
passwd: files winbind
shadow: files winbind
group: files winbind
in smb.conf:
[global]
unix charset = LOCALE
workgroup = TOTALFLOOD
realm = TOTALFLOOD.COM
netbios name = FILE-CABINET
security = ADS
encrypt passwords = yes
lanman auth = no
lm announce = no
min protocol = NT1
username map = /etc/samba/smbusers
log level = 10
syslog = 0
server string = Main File Server
hosts allow = 192.168.124. 127.
log file = /var/log/samba/%m.log
max log size = 50
smb ports = 139
name resolve order = wins bcasts hosts
wins server = 192.168.124.10
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
load printers = No
idmap uid = 10000-20000
idmap gid = 10000-20000
admin users = stephen, paul
[netapps]
comment = Network Applications
path = /export/netapps
force user = procman
force group = users
read only = No
[common]
comment = Common Files
path = /export/common
force group = users
read only = No
create mask = 0775
force create mode = 0664
directory mask = 0775
force directory mode = 0775
[public]
comment = Public Files
path = /export/public
force user = procman
force group = users
read only = No
create mask = 0774
[homes]
comment = Home Directory
path = /export/private/%S
hide dot files = yes
valid users = %S
read only = No
browseable = No
--
Stephen Carville -- polluting the ranks of skeptics since 1995.
---------------------------------------------------------------
As democracy is perfected, the office of president represents, more and
more closely, the inner soul of the people. On some great and glorious
day the plain folks of the land will reach their heart's desire at last
and the White House will be adorned by a downright moron.
-- H. L. Mencken
will changing "path = /export/private/%S" to "path =
/export/private/%U" under the [homes] section change anything?
-----Original Message-----
From: samba-bounces+ggutierrez=marketscan.com@lists.samba.org
[mailto:samba-bounces+ggutierrez=marketscan.com@lists.samba.org]On
Behalf Of Stephen Carville
Sent: Sunday, May 14, 2006 6:50 PM
To: Samba List
Subject: [Samba] Everything but [Homes] works
I am migrating from my "old" 2.2.7 samba server to a newer server
runnig
3.0.20a and everythig is working except the [homes] share. The server
(FILE-CABINET) is a member of the domain, security is set to ADS and, as
far as I can tell, kerberos is working. The program wbinfo returns a
list of users and groups like it should. getent passwd returns first my
local passwd file and then the list of windows users. nscd is off.
authentication seems to be working:
$ sudo wbinfo -a scarville%<password>
plaintext password authentication failed
error code was NT_STATUS_NO_SUCH_USER (0xc0000064)
error messsage was: No such user
Could not authenticate user scarville%<password> with plaintext password
challenge/response password authentication succeeded
I'm currently testing from a Window 2003 terminal server and, If I use
run->\\file-cabinet I can see all the listed shares and all _except_ the
home directory are accessible.
Usually a few minutes with Google is all I need to solve Samba problem
but not this time.
Samba version: 3.0.20a
I have in nsswitch.conf:
passwd: files winbind
shadow: files winbind
group: files winbind
in smb.conf:
[global]
unix charset = LOCALE
workgroup = TOTALFLOOD
realm = TOTALFLOOD.COM
netbios name = FILE-CABINET
security = ADS
encrypt passwords = yes
lanman auth = no
lm announce = no
min protocol = NT1
username map = /etc/samba/smbusers
log level = 10
syslog = 0
server string = Main File Server
hosts allow = 192.168.124. 127.
log file = /var/log/samba/%m.log
max log size = 50
smb ports = 139
name resolve order = wins bcasts hosts
wins server = 192.168.124.10
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
load printers = No
idmap uid = 10000-20000
idmap gid = 10000-20000
admin users = stephen, paul
[netapps]
comment = Network Applications
path = /export/netapps
force user = procman
force group = users
read only = No
[common]
comment = Common Files
path = /export/common
force group = users
read only = No
create mask = 0775
force create mode = 0664
directory mask = 0775
force directory mode = 0775
[public]
comment = Public Files
path = /export/public
force user = procman
force group = users
read only = No
create mask = 0774
[homes]
comment = Home Directory
path = /export/private/%S
hide dot files = yes
valid users = %S
read only = No
browseable = No
-- Stephen
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Whoops, hadn't seen that this answer was already given. never mind.
-----Original Message-----
From: samba-bounces+ggutierrez=marketscan.com@lists.samba.org
[mailto:samba-bounces+ggutierrez=marketscan.com@lists.samba.org]On
Behalf Of Guillermo Gutierrez
Sent: Monday, May 15, 2006 5:35 AM
To: Stephen Carville; Samba List
Subject: RE: [Samba] Everything but [Homes] works
will changing "path = /export/private/%S" to "path =
/export/private/%U" under the [homes] section change anything?
-----Original Message-----
From: samba-bounces+ggutierrez=marketscan.com@lists.samba.org
[mailto:samba-bounces+ggutierrez=marketscan.com@lists.samba.org]On
Behalf Of Stephen Carville
Sent: Sunday, May 14, 2006 6:50 PM
To: Samba List
Subject: [Samba] Everything but [Homes] works
I am migrating from my "old" 2.2.7 samba server to a newer server
runnig
3.0.20a and everythig is working except the [homes] share. The server
(FILE-CABINET) is a member of the domain, security is set to ADS and, as
far as I can tell, kerberos is working. The program wbinfo returns a
list of users and groups like it should. getent passwd returns first my
local passwd file and then the list of windows users. nscd is off.
authentication seems to be working:
$ sudo wbinfo -a scarville%<password>
plaintext password authentication failed
error code was NT_STATUS_NO_SUCH_USER (0xc0000064)
error messsage was: No such user
Could not authenticate user scarville%<password> with plaintext password
challenge/response password authentication succeeded
I'm currently testing from a Window 2003 terminal server and, If I use
run->\\file-cabinet I can see all the listed shares and all _except_ the
home directory are accessible.
Usually a few minutes with Google is all I need to solve Samba problem
but not this time.
Samba version: 3.0.20a
I have in nsswitch.conf:
passwd: files winbind
shadow: files winbind
group: files winbind
in smb.conf:
[global]
unix charset = LOCALE
workgroup = TOTALFLOOD
realm = TOTALFLOOD.COM
netbios name = FILE-CABINET
security = ADS
encrypt passwords = yes
lanman auth = no
lm announce = no
min protocol = NT1
username map = /etc/samba/smbusers
log level = 10
syslog = 0
server string = Main File Server
hosts allow = 192.168.124. 127.
log file = /var/log/samba/%m.log
max log size = 50
smb ports = 139
name resolve order = wins bcasts hosts
wins server = 192.168.124.10
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
load printers = No
idmap uid = 10000-20000
idmap gid = 10000-20000
admin users = stephen, paul
[netapps]
comment = Network Applications
path = /export/netapps
force user = procman
force group = users
read only = No
[common]
comment = Common Files
path = /export/common
force group = users
read only = No
create mask = 0775
force create mode = 0664
directory mask = 0775
force directory mode = 0775
[public]
comment = Public Files
path = /export/public
force user = procman
force group = users
read only = No
create mask = 0774
[homes]
comment = Home Directory
path = /export/private/%S
hide dot files = yes
valid users = %S
read only = No
browseable = No
-- Stephen
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Based on suggestions here and elsewhere I've made some changes. First
to [homes]:
[homes]
comment = Home Directory
path = /export/private/%U
hide dot files = yes
valid users = %S
write list = %S
read only = yes
browseable = No
I also changed the mapping in smbuser:
stephen = TOTALFLOOD/scarville
I can now see and open all the shares which is the good news. The bad
news is that my home directory cannot be accessed by scarville -- my
windows username -- but only by my Unix username stephen. If I try to
open it as //file-cabinet/scarville:
2006/05/15 06:44:55, 0] smbd/service.c:make_connection(798)
pellucidar (192.168.124.232) couldn't find service scarville
but as //file-cabinet/stephen it works.
So, apparently, a logon script entry like "net use z:
\\file-cabinet\%u"
will not work unless the UNIX and windows usernames are the same.
There are only a few persons in the shop whose UNIX and Windows username
are different but, unfortunately, one of them is the VP of IT who will
bitch incessantly about the "inconvenience". Not entirely unjustified
since it worked under 2.2.
Maybe I should just downgrade...
--
Stephen
scott wrote:> I had a similar problem when adding a domain member server. I wanted > to move the homes directory from my samba pdc to the dms. I seem to > remember reading somewhere that the [homes] pulls path from > /etc/passwd. When you do a 'getent passwd', do you see the path that > you expect for the home directories? At first, I did not see the > home directories that I expected. My home paths are > /home/u/<username>. I had to add the following global option: > > template homedir= /home/u/%u > > Hope this helps.$ getent passwd |grep scarville TOTALFLOOD\scarville:x:10001:10000:Stephen Carville:/home/TOTALFLOOD/scarville:/bin/false I even tried creating home directories in /home/TOTALFLOOD but that didn't work either.