[SAMBA] how to make smbpasswd use or import system passwords?

[Maginot Junior]

Well .... this isnt possible, because all my share are sector specific
with group restriction ... So ... what I came across is to use mysql
(ldap is to big to my network with less them 100 users) to sync all
passwords, Im going to make a db with mysql and inside create a simple
"login, passwd, full name, homedir" table and populate it with the
same postfix password that users uses to access email and make through
pam it work with my ltsp server, email and hopefully with samba too,
and so make all password be sync... unfortunately I will have to make
this new implementation, I think this is a samba fault, I really don't
matter about windows passwords, because all my network isnt going to
have windows boxes, so why samba one of the most complete projects
I've ever seen for linux does not have a work through for this
situation? Like mentioned here, is an ever week question, so Its being
a big need for everyone ... I'm self come to this list in a extreme
try to find an ultimate solution, because after googling around I was
getting convinced that wasn't a possible thing to do.. now after your
directly answers I'm sure of that.

I know smb is a protocol that are already in the go for a long time...
but maybe some linux new things to smb protocol could really help.
Well, this is more an idea then a complain, maybe Im being to
promiscuous and not looking to a different view with some other good
(god) solution ;) ... of course if anyone have any idea that could
slap my face and give me a new horizon I would be pleased to see.

Well ... thanks anyway for the good advices and fast answer.

[ ]'s
PS: I don't think NFS will be of the same control then Samba, so I
discarded this option...

On Wed, Feb 27, 2008 at 12:52 AM, Adam Williams
<awilliam at mdah.state.ms.us> wrote:
> you could use a tdbsam password backend, roaming profiles, tell all your
>  users they will have a default password of whatever, and set their
>  password to be expired, so on their first log in, they will be required
>  to change their password.  if you read the samba docs, Windows uses a
>  different password encryption then what /etc/passwd uses, they aren't
>  compatible.
>
>  or you can map to gues = bad user, and use guest only = yes and guest ok
>  = yes on your shares, and set your shares not browsable, but i wouldn't
>  recommend that.
>
>
> Maginot Junior wrote:
>  > Hi!
>  >
>  >
>  > Im almost loosing my hairs here...
>  >
>  > I have already had troubles configuring samba to work just like I
>  > wanted but in the end everything was fine. Now I have searched a lot
>  > and many different views for this problems, so I think its better come
>  > here trying to find the entire solution...
>  >
>  > I have about 30 users on my box, all have passwords already set.
>  > So I come to the idea of making a share for each sector, like sales,
>  > financial, ti, and so on.
>  > So far no problem, the shares are created, owned by root and with the
>  > group respectively with the share name (group sales, share sales).
>  > Have already added in /etc/group the users for each group and gone
>  > configuring smb.conf.
>  >
>  > I start using security = user and setting inside the shares "valid users = @ti"
>  >
>  > Now comes the problem... when I try to access this share, I can only
>  > access with the user added to smbpasswd, for what I saw until now I
>  > must have the user in smbpasswd, this is a must to rule... I dont have
>  > any user passwd in my hand, so I cant just do a smbpasswd -a user and
>  > set what password whatever I want, so I tried "cat /etc/passwd |
>  > /usr/sbin/mksmbpasswd > /etc/samba/smbpasswd" and I got a lot of
>  > XXXX-XXX on the password fields of smbpasswd file...
>  >
>  > So Im lost on this, I must add all user to smbpasswd using the same
>  > password from the system... to make all to stay sync, but this is
>  > being a pain so any help will be very apreciated.
>  >
>  > Thanks,
>  >
>  >
>
>



-- 
Maginot Júnior
"the game of life"
LPIC - CCNA - ¿Designer?