I managed to resolve this myself the other day and forgot to post. I apologize for that.
First, I was reading a how-to on Samba 4 and looking at the sample configuration that writer used.
I had been using
and the writer used
so I decided to try that.
This caused the server to request user credentials anytime a user attempts to view the shared resources on the box. It doesn't matter if Samba is configured for public access or individual user access. Changing the security mode to user forces Samba to require a valid user account in order to access anything on the box.
So then I added my user account to the samba user's list, assigning myself the same samba password as my domain password and it let me view the server's shared resources. On my non-domain workstation, it asked for user credentials so I gave it my username / password for Samba and it let me see stuff too.
So every user that needs to access the box will have to have an account on the box. But at least I can get them access, and I can set them to a nologin shell and they can still get to the shared files.
This makes things slightly more complicated for me in a few ways. First, I have to manually add the users to the linux box, and second have to manually add their passwords to Samba. Then, if a user ever changes their domain password, I will have to update their credentials on the linux box.
I'm still testing some of this, but at least I have managed to get access from both domain and non-domain computers.
Ideally, I'd like to be able to set it up so that I can assign a 'generic' user and allow multiple people use the same username / password to access the shared resources. But with the domain computers that doesn't seem to be possible to this point. But as I said, I'm still testing.