Samba Windows Users
Hello,
I have a question regarding setting up samba on a windows network. I am not a domain admin so I can not use winbind, I also can not join the Linux box to the AD domain. I want to have a group of users in a windows group to have write access to a samba share. I know that I can sync the usernames and passwords on the linux box to the same that exist in AD and all will be well. The problem is, I only have all the usernames that belong to the group in question. Is there a way to customize samba to allow a user to login to the system with a valid username and record the password somehow for later use? i.e. the first time a user logs into the share it prompts for username and password, If the username exists it will save the password for that user. Or is there a way to get this to work without using winbind? I need to somehow get this group of users over to the linux box. Thanks. |
workgroup= same as windows workgroup
server string= whatever you call it # Security mode. Defines in which mode Samba will operate. Possible # values are share, user, server, domain and ads. Most people will want # user level security. See the Samba-HOWTO-Collection for details. security = share share will make the shares available to all I think. No authentication necessary. I did that on a home BSD server. The windows box's just see it as Samba Server in their net neighborhood and open it like any windoze shares. # This option is important for security. It allows you to restrict # connections to machines which are on your local network. The # following example restricts access to two C class networks and # the "loopback" interface. For more examples of the syntax see # the smb.conf man page ;hosts allow = 172.16.1. 172.16.1. 127. So read up on how to setup your smb.conf Edit: You'll have to give them permission to your shares of course. |
Thank you for the reply. SOrry i should have been more clear, I need a group of users to have write access to this share and another group read access. I believe security = user is the only way to achieve this. In security = share you can not implement the "write list" option. I think i may have found a solution but it requires the user to register their ldap usernames.
|
All times are GMT -5. The time now is 01:30 PM. |