Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
This is not so hard. I use a set up like this on unix boxes at work. I would recomment server level security. in this way you can use a Windows box to verify passwords and unix to map windows users to unix users. Your users will not be prompted for a password, but will only have the unix rights they would have for their unix account. this one of my conf files if this helps:
[global] security = server
password server = <name of PDC emulator>
workgroup = <work group name if you want>
netbios name = <name you want to give the unix box>
server string = Samba Server
invalid users = root bin daemon adm sync shutdown halt mail news uucp op
erator
syslog = 0
log file = /var/opt/samba/log.%m
max log size = 1000
preferred master = False
local master = No
domain master = False
wins server = <ip address of a wins server>
encrypt passwords = Yes
username map = /etc/opt/samba/usermap.txt <<< very important for server level
#[homes]
# browsable = No
# map archive = Yes
[Temp]
path = /tmp
read only = Yes
guest ok = Yes
browseable = Yes
[John]
path = /ops/john
read only = No
valid users = john
browseable = Yes
create mask = 0666
[Tom]
path = /home/tom
read only = No
valid users = tom
browseable = Yes
create mask = 0666
[Samba DIR]
path = /opt/samba
read only = No
valid users = tom
browseable = Yes
create mask = 0666
Thanks for the info. I see there is a line for a WINS server. We are not using a WINS server on this network, just DNS. Would the IP of the DNS server work?
I presume you are not using a multi-subnetted network if you are not using WINS. If this is the case you can leave this line out. It's function is to tell the nmbd daemon to register itself with a WINS server. I presume you will have to add a DNS entry for the samba server however.
well i would suggest you use a config similar to mine. If you use security = domain you will have to register the linux box as a nt4 bdc which won't be possible if you have set your domain function level to 2003 only...
YOu just need to point it to your PDC emulator (passwd server). I cannot comment on REHL specific parameters, and i believe some are needed.... maybe try to run 'samba setup'
The samba server on the RHEL 3.0 host is on a Win2k3 domain running Active Directory. But if I dont need to have all the extra configuration to allow it to be a member server, etc....then I won't. I just want basic read/write file sharing between Windows machines and the Linux host.
OK, then go with 'security=server'. Although it sounds dramatic it's not. that said user level security will also work fine. Depending on your specific requirements, maybe that would be simpler.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.