Jan Andre Schonekerl
2003-Dec-05 08:39 UTC
[Samba] Show windows users/groups of a mounted smb filesystem.
Hi,
I have setup linux as a member server (fedora 1), it authenticates against
a w2k AD server and runs winbind. I modified the login pam file
so can login to the linux box with my windows account. After login
I see my windows "home" directory that is mounted from a windows
w2k fileserver.
All described above works fine the only problem I have that I don't see
the owner/group of the files from the mounted windows filesystem. everything
belongs to root and I can't write in my own home directory.
------------------------------------------------------------
I mount the windows share this way:
smbmount //vryXXXX/f$ /mnt/nt_user_share -o username=admin_XXXX,rw
------------------------------------------------------------
My problem: I don't want to see root but the windows file owners
on the smb mount!
[root@linux root]# login EUROPE+vryXXXX
Last login: Fri Dec 5 09:06:50 on pts/3
-bash-2.05b$ ls -la
total 16
drwxr-xr-x 1 root root 4096 Oct 16 11:27 .
drwxr-xr-x 1 root root 4096 Dec 5 08:53 ..
dr-xr-xr-x 1 root root 4096 Dec 3 08:22 my documents
drwxr-xr-x 1 root root 4096 Dec 2 08:48 outlook
-bash-2.05b$ touch bla
touch: cannot touch `bla': Permission denied
-bash-2.05b$
------------------------------------------------------------
But localy it works!
-bash-2.05b$ ls -lad /bla
drwxrwxrwx 2 root root 4096 Dec 5 09:33 /bla
-bash-2.05b$ cd /bla
-bash-2.05b$ touch blie
-bash-2.05b$ ls -la
total 8
drwxrwxrwx 2 root root 4096 Dec 5 09:34 .
drwxr-xr-x 22 root root 4096 Dec 5 09:31 ..
-rw-r--r-- 1 EUROPE+vryXXXX EUROPE+Domain Users 0 Dec 5 09:34
blie
------------------------------------------------------------
</etc/samba/smb.conf>
[global]
workgroup = EUROPE
winbind separator = +
idmap uid = 10000-20000
winbind gid = 10000-20000
winbind enum users = yes
winbind enum groups = yes
template homedir = /mnt/nt_user_share/users/%U
template shell = /bin/bash
nt acl support = Yes
realm = EUROPE.XXXX.COM
security = ADS
encrypt passwords = yes
------------------------------------------------------------
</etc/pam.d/samba>
#%PAM-1.0
auth required pam_winbind.so
auth required pam_stack.so service=system-auth
account required pam_winbind.so
account required pam_stack.so service=system-auth
session required pam_stack.so service=system-auth
password required pam_stack.so service=system-auth
------------------------------------------------------------
</etc/pam.d/login>
#%PAM-1.0
auth required pam_securetty.so
auth sufficient pam_winbind.so
auth sufficient pam_unix.so use_first_pass
auth required pam_stack.so service=system-auth
auth required pam_nologin.so
account sufficient pam_winbind.so
account required pam_stack.so service=system-auth
password required pam_stack.so service=system-auth
session required pam_stack.so service=system-auth
session optional pam_console.so
------------------------------------------------------------
part of </etc/nsswitch.conf>
passwd: files winbind
shadow: files
group: files winbind
-----------------------------------------------------------
</etc/krb5.conf>
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
ticket_lifetime = 24000
default_realm = EUROPE.XXXX.COM
dns_lookup_realm = false
dns_lookup_kdc = false
[realms]
EUROPE.XXXX.COM = {
kdc = XXXX.XXXX.com:88
admin_server = XXXX.XXXX.com:749
default_domain = XXXX.XXXX.com
}
[domain_realm]
.europe.ad.flextronics.com = EUROPE.XXXX.COM
europe.ad.flextronics.com = EUROPE.XXXX.COM
[kdc]
profile = /var/kerberos/krb5kdc/kdc.conf
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
----------------------------------------------------------
I run samba version: 3.0.0-15
----------------------------------------------------------
Thanks
------------------------------------------------
Jan-Andre Schonekerl
Systems administrator
FLEXTRONICS Logistics
Spurkterweg 81
5804 AP Venray
the Netherlands
+31 (0)478 557171 Main
+31 (0)478 521777 Direct
+31 (0)478 557188 Fax
http://www.flextronics-logistics.com
------------------------------------------------
Reasonably Related Threads
- help
- SpanDSP - Still can't send
- Problem with Arima HDAMA rev.G with Integrated SiliconImage Sil3114 Serial ATA 4 Ports and 1TB SATA disks. Recomendation for a cheap SATA controller for linux software raid?
- Plotting Dendrogram Help Getting Plot to Display Neatly
- Slightly off topic but I''ll ask anyway
Wisdom of the Ancients
