[Samba] samba as a domain member

Wed, 01 Mar 2006 10:21:45 -0800 

Hello,
I am new to this list but I have been learning to use linux/bsd and samba for 
the past year. so far I have been able to learn enough on my own to be able to 
successfully set up a functional samba server on FreeBSD and Gentoo Linux 
boxes. I am trying to learn how to integrate them into an Active Directory 
windows 2003 server domain. So far I have verified that Kerberos and ldap and 
winbind (I think) are functioning correctly. I am able to do a 'kinit [EMAIL 
PROTECTED]' command and not get a failure.
I am able to see all of the groups and users/systems in the domain from getent 
commands.

My problem is that I cant access samba shares when permissions are set using 
domain users.
I can access the /home/samba/public share is I DON'T specify a 'valid users =' 
line in the smb.conf file, but not the other way around.

Here is what my smb.conf file looks like:

# Samba config file created using SWAT
# from 10.11.7.56 (10.11.7.56)
# Date: 2006/03/01 09:45:11

[global]
        workgroup = MARKETSCAN
        realm = MARKETSCAN.COM
        server string = %h Samba Server
        interfaces = lo, eth0
        bind interfaces only = Yes
        security = ADS
        auth methods = winbind
        password server = nostradmus, nostradamus_ii, nostradamus_cam
        log file = /var/log/samba/log.%m
        socket options = TCP_NODELAY SO_RCVBUF=16384 SO_SNDBUF=16384
        load printers = No
        preferred master = No
        dns proxy = No
        wins proxy = No
        wins server = 10.11.3.198
        ldap ssl = no
        passdb expand explicit = No
        idmap uid = 10000-20000
        idmap gid = 10000-20000
        template shell = /bin/bash
        winbind separator = max log size = 50
        winbind use default domain = Yes

[public]
        comment = %h Public Share
        path = /home/samba/public
        read only = No
        force create mode = 0777
        force directory mode = 0777
        guest ok = Yes

[homes]
        comment = Home Directory for %U
        path = /home/%D/%U
        valid users = %S
        read only = No
        force create mode = 0777
        force directory mode = 0777
        browseable = No

I would greatly appreciate any help.

thanks,

Guillermo Gutierrez
Development Systems Engineer
Market Scan Information Systems
(818) 575-2000 x2427
[EMAIL PROTECTED]

--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

Reply via email to