Hello Samba, I have a Samba file server which I have successfully joined to a domian controlled by a Windows 2003 domian controller. I cannot get the server to allow access to users who are members of a group with spaces in its name. The domain has three (main) groups: - students - teachers - spaced users My Samba.conf has the following shared directories defined: [teachers] comment = teacher's shares writable = yes valid users = @teachers path = /home/groups/teachers writable = yes browsable = no create mode = 0660 directory mode = 0770 [students] comment = student's shares writable = no valid users = @teachers @students path = /home/groups/students create mode = 0660 directory mode = 0770 write list = @teachers [spaced] comment = test with spaces writable = yes valid users = "@spaced users" path = /home/spaced users create mode = 0660 directory mode = 0770 browsable = yes The following works fine: members of @teachers have access to both teachers and students shares members of @teachers can write to both teachers and students shares members of @students can only see the students shares But this does not work: "@spaced users" should be able to access the spaced share but cannot. On a Windows XP terminal on the network, any attempt to view the spaced shared by anyone (including members of the "spaced users" group) results in a login box popping up and no combination of user name or password will let you see the share. I am using Samba version 3.14 running on Fedora Core 4. I have included my full smb.conf Many thanks in advance, John -------------- next part -------------- [global] # Optimum Samba Performance settings socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 # NT workgroup settings workgroup = RMLINUX server string = Samba Server # WINS network browsing settings # All functions disabled apart from using a WINS server for lookups local master = no domain master = no preferred master = no wins support = no wins server = 42.42.0.1 dns proxy = no # Active Directory Member realm = RMLINUX.LOCAL security = ADS # Server to use if no domain controller is registered in DNS password server = zeus.rmlinux.local # Enable Winbind for AD and local account synchronisation # winbind separator = + winbind use default domain = yes idmap uid = 10000-20000 idmap gid = 10000-20000 winbind enum users = yes winbind enum groups = yes # Defaultas for local accounts created by Winbind template homedir = /home/%U template shell = /bin/nologin # Loggin settings log file = /var/log/samba/%m.log max log size = 5000 # Printer sharing printcap name = /etc/printcap load printers = no # Security settings invalid users = root bin daemon adm sync shutdown halt mail news uucp operator # Add shares here [homes] comment = %U's home area volume = Home Area path = /home/users/%U browsable = no writable = yes [teachers] comment = teacher's shares writable = yes valid users = @teachers path = /home/groups/teachers writable = yes browsable = no create mode = 0660 directory mode = 0770 [students] comment = student's shares writable = no valid users = @teachers @students path = /home/groups/students create mode = 0660 directory mode = 0770 write list = @teachers [spaced] comment = test with spaces writable = yes valid users = "@spaced users" path = /home/spaced users create mode = 0660 directory mode = 0770 browsable = yes
John Ennew wrote:>Hello Samba, > >I have a Samba file server which I have successfully joined to a domian >controlled by a Windows 2003 domian controller. I cannot get the server to >allow access to users who are members of a group with spaces in its name.> I have the same problem with Samba version 3.20b. What is interesting is that groups with spaces in the name work through Winbind (ie. apache with mod_auth_pam), but don't work from within Samba (ie. the smb.conf file). Is this currently being resolved, and/or is there a work around? Cheers, Jeremy>The domain has three (main) groups: >- students >- teachers >- spaced users > >My Samba.conf has the following shared directories defined: > >[teachers] >comment = teacher's shares >writable = yes >valid users = @teachers >path = /home/groups/teachers >writable = yes >browsable = no >create mode = 0660 >directory mode = 0770 > >[students] >comment = student's shares >writable = no >valid users = @teachers @students >path = /home/groups/students >create mode = 0660 >directory mode = 0770 >write list = @teachers > >[spaced] >comment = test with spaces >writable = yes >valid users = "@spaced users" >path = /home/spaced users >create mode = 0660 >directory mode = 0770 >browsable = yes > >The following works fine: >members of @teachers have access to both teachers and students shares >members of @teachers can write to both teachers and students shares >members of @students can only see the students shares > >But this does not work: >"@spaced users" should be able to access the spaced share but cannot. On a >Windows XP terminal on the network, any attempt to view the spaced shared by >anyone (including members of the "spaced users" group) results in a login >box popping up and no combination of user name or password will let you see >the share. > >I am using Samba version 3.14 running on Fedora Core 4. > >I have included my full smb.conf > >Many thanks in advance, > >John>
John Ennew wrote:>Hello Samba, > >I have a Samba file server which I have successfully joined to a domian >controlled by a Windows 2003 domian controller. I cannot get the server to >allow access to users who are members of a group with spaces in its name. > >I have the same problem with Samba version 3.20b. What is interesting is that groups with spaces in the name work through Winbind (ie. apache with mod_auth_pam), but don't work from within Samba (ie. the smb.conf file). Is this currently being resolved, and/or is there a work around? Cheers, Jeremy>The domain has three (main) groups: >- students >- teachers >- spaced users > >My Samba.conf has the following shared directories defined: > >[teachers] >comment = teacher's shares >writable = yes >valid users = @teachers >path = /home/groups/teachers >writable = yes >browsable = no >create mode = 0660 >directory mode = 0770 > >[students] >comment = student's shares >writable = no >valid users = @teachers @students >path = /home/groups/students >create mode = 0660 >directory mode = 0770 >write list = @teachers > >[spaced] >comment = test with spaces >writable = yes >valid users = "@spaced users" >path = /home/spaced users >create mode = 0660 >directory mode = 0770 >browsable = yes > >The following works fine: >members of @teachers have access to both teachers and students shares >members of @teachers can write to both teachers and students shares >members of @students can only see the students shares > >But this does not work: >"@spaced users" should be able to access the spaced share but cannot. On a >Windows XP terminal on the network, any attempt to view the spaced shared by >anyone (including members of the "spaced users" group) results in a login >box popping up and no combination of user name or password will let you see >the share. > >I am using Samba version 3.14 running on Fedora Core 4. > >I have included my full smb.conf > >Many thanks in advance, > >John > >