Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
When a windows user clicks on a samba network share in windows explorer he will be prompted to type in alternate user and password credentials if his current user doesnt have access right for that share. How can i avoid this?
I dont a user to be able to log onto a samba share with any credentials different from the ones he used to start his windows session. Ive looked for parameters in smb.conf but there doesnt seem to be any.
There is no way (that I am aware of) to block this from the samba side. Perhaps, though I'm not sure, under windows there is a policy that can be set to only try the logged in info.
-Create a linux account wich has the same name as the windows account. The account should have a blank password and you should put /dev/null as shell for the account.
-After, create a samba account with pdbedit wich also have a blank password.
-Create the network drive map on your windows machine.
Thats'it you should be able to log in with your windows account without supplying any password.
Matir.
I've searched for group policies in windows but all i find for "windows explorer" as far as alternate credentials are concerned, has to do with not asking for credentials when installing new software locally or over a network share. There is nothing about validating a user logging onto a share.
Actually, i don't think windows xp in a domain asks for alternate credentials when a user clicks on a windows share, it only does so if its a samba share. Thats why i think it has to do with samba and thats why there are no windows group policies for this matter. Does it make sense?
Do u know of any specialized samba forums apart from the insufferable samba mailing lists where i can ask about this matter?
to get technical, when you double click a computer in network neighborhood, Windows makes a connection to the IPC$ share with no username to get the list of shares. This is a weird implimentation, and works in windows because unauthenticated users get treated differently under Linux.
I couldn't find a single good document on the web for how to get this working, but it is possible in Samba. Try man smb.conf or man smbclient and look for guest account information, as you will have to enable the guest account in samba and map it to a Linux user account, I use the ftp account.
thanks for your post, however, i fail to see what the guest account has to do with all this. For all my samba shares, the option "guest ok" is set to "NO".
Its not that i want users to access my shares without the need of a password. its that I dont want them to access a share if their windows user and passwd are rejected by the share/samba. furthermore, if this is the case, i dont want the popup window allowing for alternative credentials to appear.
imagine you, as windows user "darin" click on a samba share to which u have no access rights. a popup window allowing to to enter an alternate user and password appears. here u type Goma_2 and my passwd, click enter and u access the share.
what i want is to keep this window from appearing. no alternate credentials. if "darin" doesnt have access to a share thats the end of it.
Sorry, I misread your original question. Unfortunatly, I belive the prompt for a new user/pass is an implimentation of Windows, it's done by the client computer, not the [samba] server. It may be possible to work around this with settings in Samba though, I'm just not aware of how.
As a source of information, I find all the online guides on the Samba homepage to be the most useful. These would be everything in the "learn samba" section of links, although you may have to wade through a lot of other information to find anything of relevance.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.