I guess in retrospect I should have given more details...
I have the samba server set up such that:
[global]
map to guest = Bad User
guest account = a_valid_unix_account
[some_share]
path = /somepath
guest ok = Yes
read only = Yes
write list = special_user
I am talking about a network of ultimately 200 Samba servers connected in a star configuration (all over IPSEC VPN) with our support office being the center of the star. I do not want to have to maintain user accounts on all 200 Samba servers for all of our support people, with the associated pain of adding/deleting users, etc (I know, rsync, etc, but I want to avoid all that...)
Anyone can browse to the server and if they are an unkown username, they gets mapped to the guest account which gives READ ONLY access to "some_share". This is perfectly acceptable and safe, no-one can accidentally delete things, there's nothing confidential on the share, so read only is perfect.
Under certain circumstances, they will need to be able to delete files off of these same shares, which can be accomplished by logging into the remote samba server as the "special_user" which is explicitly given write permission to the share. No problem with either "Net Use" or Windows Explorer, Map Network Drive...
BUT... and there is always a BUT...
I am trying to do this through a browser interface to simplify everything. I am setting up a central intranet web site that will give access to SWAT on each of the servers, AND allow the user to browse the remote samba server ( and lot of other stuff as well, VNC, etc)
For swat, I have http://remote_host_name:901/
For the shares, I have "file://remote_host_name/"
This works perfectly EXCEPT for the situation where the users need write access to the remote shares. I was hoping that there would be a "slick" way to say "file://remote_host_name%username/" and have the dialog box pop up prompting for password. Since this is a (hopefully)! secure vpn environment behind Cisco PIX & Cisco VPN concentrator, I would even be happy with something that would embed the password.
A MUCH less clean solution, and my fall-back plan, would be to put two shares that point at the same directory. The first share would say "guest ok = yes", "read only = yes", which would allow browsing, and the second share would say "guest ok = no", "read only = no" which would then cause the "Connect As" dialog box to appear (because of unknown username).
Anyway, hope that clarifies things...
Thanks for any input,
Steve Williams
[EMAIL PROTECTED] wrote:
Hi,
Mebbe I don't understand but try this;
smbmount //foo/bar -o username=foo password-bar
I use this to cross mount servers of various types for
sym link integrity. My way of load balancing.
Bri-
__________________________________________________
Do you Yahoo!?
Yahoo! Tax Center - forms, calculators, tips, more
http://taxes.yahoo.com/
-- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
