Trouble accessing smb share using winbind
I have two problems with users accessing an smb share on a linux based server. The server is joined to the domain and is running smb and winbind.
First problem is that if I browse to the box via netbios name or fqdn i get an authentication window pop up and no combination of username/password will work. If I browse to the same box via IP I am automatically authenticated (as I should be) and I can view all of the share points. In this case I am browsing from an xp client. Second problem is with a mac user. The user is member of the domain as is his system. Browsing to multiple smb shares is not a problem except for this particular server. He cannot get access at all. If another user who does have access from their system to this share logs into the trouble box they can also not access the share. Access is controlled by winbind and AD group access. I have verified all group members and all can access the share except for this one person. Given that the share point is giving trouble to two seperate clients (xp and OSX10.3) in two different ways (works with ip but not netbios frm xp and no access to user frm OSX) I am somewhat confused. Does anyone have any suggestions? |
what do u mean by this
"If I browse to the same box via IP I am automatically authenticated (as I should be)" u need to enter the username passwd at least once and save that in the dialog box for later usage regards |
I'm logging into an AD domain from the xp client. Accessing the smb share across the network should be seamless as the smb shared box is part of the domain and my user account is included in the write list and valid users segment for the share in question.
Joe.User can log into the domain, access any and all shares hosted on windows or linux boxes yet he is unable to access this share by netbios name or fqdn. He must access it via IP. Mac.Guy can also access any share hosted on any box except for this one, at all. smb.conf for the box; <begin> [global] log level = 10 security = ADS realm = domain.com password server = dc1.domain.com dc2.domain.com encrypt passwords = yes idmap uid = 10000-20000 idmap gid = 10000-20000 winbind enum users = yes winbind enum groups = yes winbind separator = + winbind use default domain = yes workgroup = DOMAIN printcap name = /etc/printcap load printers = yes log file = /var/log/samba/log.%m max log size = 50 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 dns proxy = no server string = IMAGE GALLERY [FTP_Drop] comment = FTP Dropzone path = /usr/local/ftp_dropzone public = no create mask = 0775 directory mask = 02771 force group = ftp_upload write list = @gbMarketing,@gbIT,DOMAIN+Joe.User,DOMAIN+Mac.Guy valid users = @gbMarketing,@gbIT,DOMAIN+Joe.User,DOMAIN+Mac.Guy </end> |
All times are GMT -5. The time now is 01:41 PM. |