Samba not working with Samba Server joined to ADS
Hello,
I cannot browse or open any samba shares from a windows client machine. I have integrated the Samba Server into ADS and have tried setting up smb.conf to allow a windows domain user access samba shares. It fails. Below are steps I did for setting up the Samba Server as a Domain Member Server. I would like to still use PAM authentication (that fails even). I also have VSFTP installed and would like that integrated to authenticate against ADS. Please help! messagebus, oddjob, winbind, openldap, smb are all running. STEPS I TOOK: Code:
Promote Linux Server to full functioning Samba Server and Domain Member Server [root@nomad ~]# testparm -s Load smb config files from /etc/samba/smb.conf Processing section "[homes]" Processing section "[FTP]" Processing section "[Shekinya]" Processing section "[printers]" Processing section "[shared]" Loaded services file OK. 'winbind separator = +' might cause problems with group membership. Server role: ROLE_DOMAIN_MEMBER [global] workgroup = PROXIMA realm = PROXIMA.LOCAL server string = Samba Server security = ADS obey pam restrictions = Yes passdb backend = tdbsam guest account = samba template homedir = /home/PROXIMA/%U template shell = /sbin/nologin winbind separator = + winbind cache time = 10 winbind enum users = Yes winbind enum groups = Yes winbind use default domain = Yes idmap config PROXIMA:range = 16777216-33554431 idmap config PROXIMA:base_rid = 500 idmap config PROXIMA:backend = rid cups options = raw [homes] comment = Home Directories valid users = MYDOMAIN\%S read only = No [FTP] comment = FTP Directories path = /home valid users = @PROXIMA+echatham, @echatham, @sysadmin, @root create mask = 0700 directory mask = 0700 inherit permissions = Yes inherit acls = Yes guest ok = Yes [Shekinya] comment = Shekinya Website path = /var/www/html/shekinya valid users = @echatham, @sysadmin, @root read only = No guest ok = Yes [printers] comment = All Printers path = /var/spool/samba printable = Yes browseable = No [shared] comment = HPPAV main share path = /mnt/shares/samba_t read only = No inherit permissions = Yes guest ok = Yes |
Ok, one thing I did change was the delimiters for the shares: "@," "\," and "+." I can't tell if the "\" "+" is the correct delimiter in the config, but "@" is for searching a group. I think the "\" works though.
Code:
[homes] Code:
# winbind separator = + Thank you. |
Nope still having problems. I log onto the windows client as "echatham." I commented out the UNIX user echatham in /etc/passwd.
Now, I cannot browse to the Samba Server at all if I try logging on with the DOMAIN account to get to the Samba Server. For some reason, the admin account (I used to join to ADS) shows up when I browse to the Samba Server. I can tell this because the home directory that displays is the ADMIN account. So, trying this in Windows Quote:
|
All times are GMT -5. The time now is 10:56 PM. |