On Tue, 2006-10-17 at 08:43 +1300, Chandra Sornam wrote:> Have installed Samba 3 on a Linux box with Centos OS to be a file > server. Getting its authentication from a NT4 PDC. Have created samba > shares and members of the NT4 PDC group can successfully access the > group. The only problem is users cannot authenticate their home share on > the Linux server. > A webinfo -r of the domain user gives the uid of the group the user is a > member of. The user can access the share successfully as well. > Have gone through the smb.conf and other config files, and done > extensive search on the net to figure out the problem but have hit a > blank wall. There are no noticeable errors in the log files that I can > see either. > > Regards > > CS > > Config file as below > > [global] > workgroup = domain > netbios aliases = test > server string = test File Server > security = DOMAIN > password server = scnz-nt02 scnz-nt01---- how about 'getent passwd' ? does that enumerate the users from winbind? 'getent group' ? does that enumerate the groups from winbind? if so, does a users uid from winbind match the uid from their 'home' directory? Craig
Hi Samba Experts
I raised this problem where its still waiting to be resolved. Would be
greatly appreciated if I can get some feedback. I did get a bit of help
but looked like it ended on the person's too hard basket.
Thanks
Chandra
Have installed Samba 3 on a Linux box with Centos OS to be a file
server. Getting its authentication from a NT4 PDC. Have created samba
shares and members of the NT4 PDC group can successfully access the
group. The only problem is users cannot authenticate their home share
onmor
the Linux server.
A webinfo -r of the domain user gives the uid of the group the user is a
member of. The user can access the share successfully as well.
Have gone through the smb.conf and other config files, and done
extensive search on the net to figure out the problem but have hit a
blank wall. There are no noticeable errors in the log files that I can
see either.
Samba Config file as below
[global]
workgroup = domain
netbios aliases = test
server string = test File Server
security = DOMAIN
password server = scnz-nt02 scnz-nt01
client lanman auth = No
client plaintext auth = No
log file = /var/log/samba/%m.log
max log size = 50
smb ports = 139 445
enable privileges = yes
name resolve order = wins host lmhosts bcast
server signing = auto
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
preferred master = No
local master = No
domain master = No
dns proxy = No
wins server = 172.16.21.10 172.16.10.10
ldap ssl = no
default service = files
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
winbind enum users = yes
winbind enum groups = yes
template shell = /bin/bash
admin users = chansorn, nathmawk
cups options = raw
winbind use default domain = no
[homes]
comment = Home Directories
path = /home/%U
valid users = %S
read only = No
browseable = No
writeable = yes
create mode = 0775
[AESData]
comment = AESData
path = /data/AESData
read only = no
force directory mode = 0770
If you are using the 3.0.23 c or d version of Samba, one possibility is to make the following change: *valid users = DOMAIN\%S* (assuming that "\" is your winbind separator) If you are using 3.0.23 *-->* 3.0.23b, you will have to get rid of the "valid users" directive or upgrade to c or d. If you're using some other version, then ??????? Good luck, Dale Chandra Sornam wrote:> Hi Samba Experts > > I raised this problem where its still waiting to be resolved. Would be > greatly appreciated if I can get some feedback. I did get a bit of help > but looked like it ended on the person's too hard basket. > Thanks > > Chandra > > Have installed Samba 3 on a Linux box with Centos OS to be a file > server. Getting its authentication from a NT4 PDC. Have created samba > shares and members of the NT4 PDC group can successfully access the > group. The only problem is users cannot authenticate their home share > onmor > the Linux server. > A webinfo -r of the domain user gives the uid of the group the user is a > member of. The user can access the share successfully as well. > Have gone through the smb.conf and other config files, and done > extensive search on the net to figure out the problem but have hit a > blank wall. There are no noticeable errors in the log files that I can > see either. > > Samba Config file as below > > [global] > workgroup = domain > netbios aliases = test > server string = test File Server > security = DOMAIN > password server = scnz-nt02 scnz-nt01 > client lanman auth = No > client plaintext auth = No > log file = /var/log/samba/%m.log > max log size = 50 > smb ports = 139 445 > enable privileges = yes > name resolve order = wins host lmhosts bcast > server signing = auto > socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 > preferred master = No > local master = No > domain master = No > dns proxy = No > wins server = 172.16.21.10 172.16.10.10 > ldap ssl = no > default service = files > idmap uid = 16777216-33554431 > idmap gid = 16777216-33554431 > winbind enum users = yes > winbind enum groups = yes > template shell = /bin/bash > admin users = chansorn, nathmawk > cups options = raw > winbind use default domain = no > [homes] > comment = Home Directories > path = /home/%U > valid users = %S > read only = No > browseable = No > writeable = yes > create mode = 0775 > > [AESData] > comment = AESData > path = /data/AESData > read only = no > force directory mode = 0770 > > > >
Does the /home/%U folder exist, and does the user have rwx access to it?
I found that just having the /home folder exist is not enough. Since
users' home folders do not get created when authenticating to an NT
domain, you have to create them somehow. I did this by putting "preexec
= mkdir --mode=700 /export/homes/%S" under my [homes] share. I also put
"path = /home/%S" as suggested in the Samba howto to use %S instead of
%U, though I don't know why.
James Dinkel
-----Original Message-----
From: Chandra Sornam
Hi Samba Experts
I raised this problem where its still waiting to be resolved. Would be
greatly appreciated if I can get some feedback. I did get a bit of help
but looked like it ended on the person's too hard basket.
Thanks
Chandra
Have installed Samba 3 on a Linux box with Centos OS to be a file
server. Getting its authentication from a NT4 PDC. Have created samba
shares and members of the NT4 PDC group can successfully access the
group. The only problem is users cannot authenticate their home share
onmor
the Linux server.
A webinfo -r of the domain user gives the uid of the group the user is a
member of. The user can access the share successfully as well.
Have gone through the smb.conf and other config files, and done
extensive search on the net to figure out the problem but have hit a
blank wall. There are no noticeable errors in the log files that I can
see either.
Samba Config file as below
[global]
workgroup = domain
netbios aliases = test
server string = test File Server
security = DOMAIN
password server = scnz-nt02 scnz-nt01
client lanman auth = No
client plaintext auth = No
log file = /var/log/samba/%m.log
max log size = 50
smb ports = 139 445
enable privileges = yes
name resolve order = wins host lmhosts bcast
server signing = auto
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
preferred master = No
local master = No
domain master = No
dns proxy = No
wins server = 172.16.21.10 172.16.10.10
ldap ssl = no
default service = files
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
winbind enum users = yes
winbind enum groups = yes
template shell = /bin/bash
admin users = chansorn, nathmawk
cups options = raw
winbind use default domain = no
[homes]
comment = Home Directories
path = /home/%U
valid users = %S
read only = No
browseable = No
writeable = yes
create mode = 0775
[AESData]
comment = AESData
path = /data/AESData
read only = no
force directory mode = 0770
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba