I'm running samba 2.5 on a FreeBSD box using winbind to do authentication with my PDC/BDC. I'm able to configure shares that everyone on the NT network can access but when I configure private shares (only 1 or 2 users have access to) the users get prompted for a username and password and are not allowed access. What am I doing wrong? Below I have included a copy of my smb.conf and pam.conf . Any suggestions will help. SMB.conf workgroup = domain-name netbios name = comp-name server string = comp-name security = domain log file = /var/log/sambalog.%m encrypt passwords = yes local master = no os level = 0 domain master = no preferred master = no wins support = no wins server = 0.0.0.0 wins proxy = no dns proxy = no log level = 3 max log size = 100000000 load printers = no winbind uid = 10000-20000 winbind gid = 10000-20000 winbind enum users = yes winbind enum groups = yes winbind separator = . winbind use default domain = yes template homedir = /usr/share/%U template shell = /bin/false password server = * name resolve order = hosts lmhosts wins bcast nt acl support = yes [share] comment = temporary file space path = path browsable = yes read only = no public = yes printable = no writeable = yes [sarg] comment = sarg report files path = /usr/report username = domain-name.username browsable = yes read only = no #public = yes printable = no writeable = yes Pam.conf auth required pam_nologin.so no_warn auth sufficient pam_winbind.so auth sufficient pam_opie.so no_warn no_fake_prompts auth requisite pam_opieaccess.so no_warn allow_local #auth sufficient pam_krb5.so no_warn try_first_pass #auth sufficient pam_ssh.so no_warn try_first_pass auth required pam_unix.so no_warn try_first_pass # account #account required pam_krb5.so account sufficient pam_winbind.so account required pam_unix.so # session #session optional pam_ssh.so session required pam_permit.so # password password required pam_permit.so Thanks Thron
I'm running samba 2.5 on a FreeBSD box using winbind to do authentication with my PDC/BDC. I'm able to configure shares that everyone on the NT network can access but when I configure private shares (only 1 or 2 users have access to) the users get prompted for a username and password and are not allowed access. What am I doing wrong? Below I have included a copy of my smb.conf and pam.conf . Any suggestions will help. SMB.conf workgroup = domain-name netbios name = comp-name server string = comp-name security = domain log file = /var/log/sambalog.%m encrypt passwords = yes local master = no os level = 0 domain master = no preferred master = no wins support = no wins server = 0.0.0.0 wins proxy = no dns proxy = no log level = 3 max log size = 100000000 load printers = no winbind uid = 10000-20000 winbind gid = 10000-20000 winbind enum users = yes winbind enum groups = yes winbind separator = . winbind use default domain = yes template homedir = /usr/share/%U template shell = /bin/false password server = * name resolve order = hosts lmhosts wins bcast nt acl support = yes [share] comment = temporary file space path = path browsable = yes read only = no public = yes printable = no writeable = yes [sarg] comment = sarg report files path = /usr/report username = domain-name.username browsable = yes read only = no #public = yes printable = no writeable = yes Pam.conf auth required pam_nologin.so no_warn auth sufficient pam_winbind.so auth sufficient pam_opie.so no_warn no_fake_prompts auth requisite pam_opieaccess.so no_warn allow_local #auth sufficient pam_krb5.so no_warn try_first_pass #auth sufficient pam_ssh.so no_warn try_first_pass auth required pam_unix.so no_warn try_first_pass # account #account required pam_krb5.so account sufficient pam_winbind.so account required pam_unix.so # session #session optional pam_ssh.so session required pam_permit.so # password password required pam_permit.so Thanks Thron
I keep going over the man file but I still can't figure out why it prompts them for a password and then won't let them in. I still can't access the folder unless I open it up to the whole network. Thron Thron Havens Network Engineer Minka Group (909) 520-1551 -----Original Message----- From: rruegner [mailto:robowarp@gmx.de] Sent: Monday, November 03, 2003 1:03 PM To: Thron Havens; samba@lists.samba.org Subject: Re: [Samba] Samba and private shares sorry what is wrong with that prompt, ? upgrade to samba 3 and study man smb.conf to make you more familiar with smb.conf parameters ----- Original Message ----- From: "Thron Havens" <thavens@minkagroup.net> To: <samba@lists.samba.org> Sent: Monday, November 03, 2003 9:45 PM Subject: [Samba] Samba and private shares> I'm running samba 2.5 on a FreeBSD box using winbind to do authentication > with my PDC/BDC. I'm able to configure shares that everyone on the NT > network can access but when I configure private shares (only 1 or 2 users > have access to) the users get prompted for a username and password and are > not allowed access. What am I doing wrong? Below I have included a copy of > my smb.conf and pam.conf . Any suggestions will help. > > > > SMB.conf > > workgroup = domain-name > > netbios name = comp-name > > server string = comp-name > > security = domain > > log file = /var/log/sambalog.%m > > encrypt passwords = yes > > local master = no > > os level = 0 > > domain master = no > > preferred master = no > > wins support = no > > wins server = 0.0.0.0 > > wins proxy = no > > dns proxy = no > > log level = 3 > > max log size = 100000000 > > load printers = no > > > > > > winbind uid = 10000-20000 > > winbind gid = 10000-20000 > > winbind enum users = yes > > winbind enum groups = yes > > winbind separator = . > > winbind use default domain = yes > > template homedir = /usr/share/%U > > template shell = /bin/false > > password server = * > > name resolve order = hosts lmhosts wins bcast > > nt acl support = yes > > > > [share] > > comment = temporary file space > > path = path > > browsable = yes > > read only = no > > public = yes > > printable = no > > writeable = yes > > > > [sarg] > > comment = sarg report files > > path = /usr/report > > username = domain-name.username > > browsable = yes > > read only = no > > #public = yes > > printable = no > > writeable = yes > > > > Pam.conf > > auth required pam_nologin.so > no_warn > > auth sufficient pam_winbind.so > > auth sufficient pam_opie.so > no_warn no_fake_prompts > > auth requisite pam_opieaccess.sono_warn> allow_local > > #auth sufficient pam_krb5.so > no_warn try_first_pass > > #auth sufficient pam_ssh.so > no_warn try_first_pass > > auth required pam_unix.so > no_warn try_first_pass > > > > # account > > #account required pam_krb5.so > > account sufficient pam_winbind.so > > account required pam_unix.so > > > > # session > > #session optional pam_ssh.so > > session required pam_permit.so > > > > # password > > password required pam_permit.so > > > > > > Thanks > > > > Thron > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba >
I know what everyone is busy and there are a lot of requests here but can someone give me any ideas why I can't get private shares to work? Right now I get prompted with a logon and password but I cannot connect. Under my share config I have used "user(s) = user-name" valid users = user-name" and "username = user-name" None of them will let me in. I'm running samba 2.5 on a FreeBSD box using winbind to do authentication with my PDC/BDC and I'm able to configure global shares that everyone on the NT network can access. SMB.conf workgroup = domain-name netbios name = comp-name server string = comp-name security = domain log file = /var/log/sambalog.%m encrypt passwords = yes local master = no os level = 0 domain master = no preferred master = no wins support = no wins server = 0.0.0.0 wins proxy = no dns proxy = no log level = 3 max log size = 100000000 load printers = no winbind uid = 10000-20000 winbind gid = 10000-20000 winbind enum users = yes winbind enum groups = yes winbind separator = . winbind use default domain = yes template homedir = /usr/share/%U template shell = /bin/false password server = * name resolve order = hosts lmhosts wins bcast nt acl support = yes [share] comment = temporary file space path = path browsable = yes read only = no public = yes printable = no writeable = yes [temp] comment = another share path = /usr/report username = user-name browsable = yes read only = no #public = yes printable = no writeable = yes Pam.conf auth required pam_nologin.so no_warn auth sufficient pam_winbind.so auth sufficient pam_opie.so no_warn no_fake_prompts auth requisite pam_opieaccess.so no_warn allow_local #auth sufficient pam_krb5.so no_warn try_first_pass #auth sufficient pam_ssh.so no_warn try_first_pass auth required pam_unix.so no_warn try_first_pass # account #account required pam_krb5.so account sufficient pam_winbind.so account required pam_unix.so # session #session optional pam_ssh.so session required pam_permit.so # password password required pam_permit.so Thanks Thron
Yes, I tried username = with variations of domainname/username, domainname\username, domainname.username and then just username. So I don't know what im doing wrong. Everywhere I read it says all of the above should work. Thron -----Original Message----- From: John H Terpstra [mailto:jht@samba.org] Sent: Tuesday, November 04, 2003 11:57 AM To: Thron Havens Cc: samba@lists.samba.org Subject: Re: [Samba] Samba and private shares On Tue, 4 Nov 2003, Thron Havens wrote:> I know what everyone is busy and there are a lot of requests here but can > someone give me any ideas why I can't get private shares to work? Rightnow> I get prompted with a logon and password but I cannot connect. Under my > share config I have used "user(s) = user-name" valid users = user-name"and> "username = user-name" None of them will let me in.Have you tried "valid users = 'user_name'"? - John T.> > > > I'm running samba 2.5 on a FreeBSD box using winbind to do authentication > with my PDC/BDC and I'm able to configure global shares that everyone onthe> NT network can access. > > > > SMB.conf > > workgroup = domain-name > > netbios name = comp-name > > server string = comp-name > > security = domain > > log file = /var/log/sambalog.%m > > encrypt passwords = yes > > local master = no > > os level = 0 > > domain master = no > > preferred master = no > > wins support = no > > wins server = 0.0.0.0 > > wins proxy = no > > dns proxy = no > > log level = 3 > > max log size = 100000000 > > load printers = no > > > > > > winbind uid = 10000-20000 > > winbind gid = 10000-20000 > > winbind enum users = yes > > winbind enum groups = yes > > winbind separator = . > > winbind use default domain = yes > > template homedir = /usr/share/%U > > template shell = /bin/false > > password server = * > > name resolve order = hosts lmhosts wins bcast > > nt acl support = yes > > > > [share] > > comment = temporary file space > > path = path > > browsable = yes > > read only = no > > public = yes > > printable = no > > writeable = yes > > > > [temp] > > comment = another share > > path = /usr/report > > username = user-name > > browsable = yes > > read only = no > > #public = yes > > printable = no > > writeable = yes > > > > Pam.conf > > auth required pam_nologin.so > no_warn > > auth sufficient pam_winbind.so > > auth sufficient pam_opie.so > no_warn no_fake_prompts > > auth requisite pam_opieaccess.sono_warn> allow_local > > #auth sufficient pam_krb5.so > no_warn try_first_pass > > #auth sufficient pam_ssh.so > no_warn try_first_pass > > auth required pam_unix.so > no_warn try_first_pass > > > > # account > > #account required pam_krb5.so > > account sufficient pam_winbind.so > > account required pam_unix.so > > > > # session > > #session optional pam_ssh.so > > session required pam_permit.so > > > > # password > > password required pam_permit.so > > > > > > Thanks > > > > Thron > > > >-- John H Terpstra Email: jht@samba.org