I have some (for testing) Debian based client/workstation connected to my AD. Signing to the AD works as a domain/user should. These clients can, via Nautilus file manager, access shares on the file server manually that the *signed in domain user* is permitted to "see". I would prefer to connect these files and the domain user home directory automatically at sign in without manual "click this" requirement via a file manager. Like all the W10 machines auto connect to file shares. I know that there are several ways to do this. The manner of doing this I have been researching is the use of pam_mount with sshfs. At this point I can command line connect to and sshfs share but, pam_mount continues to fail due to incorrect configuration settings. Documentation for pam_mount is weak, to say the least and does not discuss setting up these types of shares. Found the pam_mount forum but there has been very little activity there in months. Obviously the developers are not answer questions. So, someone on this list might be connecting via pam_mount either with nfs, cifs, or other file connection methodology. Anyone willing to talk about pam_mount settings as they relate to Samba 4 use?
Hai Bob, Sorry totaly forgot you mail. https://lists.samba.org/archive/samba/2020-July/231149.html Start reading here. ( its how i automount my nfsv4 ) Pam_mount, well, i seen some good examples in the list but i dont use it myself. In to busy to look it up. Sorry. And on the client your testing, is pam-krb5 krb5-user installed? Just to make sure on these. Greetz, Louis> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Robert Wooden via samba > Verzonden: donderdag 24 september 2020 13:29 > Aan: SAMBA MailList > Onderwerp: [Samba] Debian client/workstation pam_mount > > I have some (for testing) Debian based client/workstation > connected to my > AD. Signing to the AD works as a domain/user should. These > clients can, via > Nautilus file manager, access shares on the file server manually that > the *signed > in domain user* is permitted to "see". I would prefer to connect these > files and the domain user home directory automatically at > sign in without > manual "click this" requirement via a file manager. Like all the W10 > machines auto connect to file shares. > > I know that there are several ways to do this. The manner of > doing this I > have been researching is the use of pam_mount with sshfs. At > this point I > can command line connect to and sshfs share but, pam_mount > continues to > fail due to incorrect configuration settings. > > Documentation for pam_mount is weak, to say the least and > does not discuss > setting up these types of shares. > > Found the pam_mount forum but there has been very little > activity there in > months. Obviously the developers are not answer questions. > > So, someone on this list might be connecting via pam_mount > either with nfs, > cifs, or other file connection methodology. Anyone willing to > talk about > pam_mount settings as they relate to Samba 4 use? > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > >
Am 24.09.20 um 13:29 schrieb Robert Wooden via samba:> I have some (for testing) Debian based client/workstation connected to my > AD. Signing to the AD works as a domain/user should. These clients can, via > Nautilus file manager, access shares on the file server manually that > the *signed > in domain user* is permitted to "see". I would prefer to connect these > files and the domain user home directory automatically at sign in without > manual "click this" requirement via a file manager. Like all the W10 > machines auto connect to file shares. > > I know that there are several ways to do this. The manner of doing this I > have been researching is the use of pam_mount with sshfs. At this point I > can command line connect to and sshfs share but, pam_mount continues to > fail due to incorrect configuration settings. > > Documentation for pam_mount is weak, to say the least and does not discuss > setting up these types of shares. > > Found the pam_mount forum but there has been very little activity there in > months. Obviously the developers are not answer questions. > > So, someone on this list might be connecting via pam_mount either with nfs, > cifs, or other file connection methodology. Anyone willing to talk about > pam_mount settings as they relate to Samba 4 use? >I am using it on Fedora with Volume Definition looking like this: <volume user="*" options="domain=DOMAINNAME,sec=krb5,cruid=%(USERUID),nodev,vers=3.1.1" fstype="cifs" server="SERVERFQDN" path="data" mountpoint="/home/%(USER)/data/" /> The client machine is domain joined (Rowland please stop reading here) with SSSD. I am logging in with Domain credentials. What is the actual error shown? Regards -- Dr. Christian Naumer Unit Head Bioprocess Development B.R.A.I.N Aktiengesellschaft Darmstaedter Str. 34-36, D-64673 Zwingenberg e-mail cn at brain-biotech.com, homepage www.brain-biotech.com fon +49-6251-9331-30 / fax +49-6251-9331-11 Sitz der Gesellschaft: Zwingenberg/Bergstrasse Registergericht AG Darmstadt, HRB 24758 Vorstand: Adriaan Moelker (Vorstandsvorsitzender), Manfred Bender Aufsichtsratsvorsitzender: Dr. Georg Kellinghusen
On 24/09/2020 12:47, Christian Naumer via samba wrote:> I am using it on Fedora with Volume Definition looking like this:and I use this: <volume fstype="cifs" ??????? server="CIFS_SERVER_FQDN" ??????? path="linprofiles" ??????? mountpoint="/mnt/%(USER)" options="username=%(USER),uid=%(USERUID),gid=%(USERGID),domain=%(DOMAIN_NAME)" > <not> <uid>0-9999</uid> </not> </volume> I do not use sssd and it mounts at user logon. Rowland