bakytn
2012-Apr-09 15:26 UTC
[Samba] SAMBA 3.5.11 joined to Active Directory not asking for login and password denying user access
I have SAMBA machine successfully joined to Active Directory domain. security is set to ads. I am using one share as a folder redirection container like /mnt/profiles/USERNAME where they are configured in the Group Policy as Folder Redirection target. It all working just great. So people can see their own files etc. For example when they are logged in Windows machine and they can access their files. My issue is that when I go to \\sambahost\profiles\USERNAME from some other machine on the network it's not allowing me to see USERNAME's files. Just showing me that access is denied. What I expect is to ask me for login and password. -- View this message in context: http://samba.2283325.n4.nabble.com/SAMBA-3-5-11-joined-to-Active-Directory-not-asking-for-login-and-password-denying-user-access-tp4543070p4543070.html Sent from the Samba - General mailing list archive at Nabble.com.
bakytn
2012-Apr-09 15:37 UTC
[Samba] SAMBA 3.5.11 joined to Active Directory not asking for login and password denying user access
here is my smb.conf is needed. [global] workgroup = WORK realm = WORK.LOCAL preferred master = no server string = SAMBA security = ADS encrypt passwords = yes log level = 1 log file = /var/log/samba/log.%m max log size = 1000 idmap uid = 2000-20000 idmap gid = 2000-20000 template shell = /bin/bash winbind enum groups = yes winbind enum users = yes winbind separator = + winbind use default domain = Yes winbind nested groups = Yes template homedir = "/mnt/files/%U" syslog = 0 panic action = /usr/share/samba/panic-action %d passdb backend = tdbsam obey pam restrictions = yes unix password sync = yes passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* . pam password change = yes map to guest = bad user usershare allow guests = yes [homes] comment = Home Directories valid users = %S read only = no browseable = no [profiles] comment = Profiles browseable = yes path = /mnt/files guest ok = yes read only = no create mode = 0755 force create mode = 0755 directory mask = 0700 posix locking = no hide files = /~$*/$RECYCLE.BIN -- View this message in context: http://samba.2283325.n4.nabble.com/SAMBA-3-5-11-joined-to-Active-Directory-not-asking-for-login-and-password-denying-user-access-tp4543070p4543091.html Sent from the Samba - General mailing list archive at Nabble.com.