NT Can't connect to encrypted share
Luke Kenneth Casson Leighton
lkcl at switchboard.net
Thu Feb 19 18:58:17 GMT 1998
hm. the username you are using to log in has an entry in
private/smbpasswd, yes?
comments and ramblings, etc:
you are implicitly using the default guest account of "nobody" here.
check that its uid is 65534 not -2.
[global]
workgroup = SANDBOX
; *** this line should be of the format s-1-5-21-xxx-yyy-zzz.
domain sid = S-1-5-21-222-222-222
; Added the following four lines to see if they make profiles work.
domain master = yes
local master = yes
preferred master = yes
os level = 200
domain logons = yes
security = user
; Samba seems to require the prior line for trust logins.
; **** and more.
wins support = yes
smbrun = /usr/LOCAL/samba/bin/smbrun
lock dir = /usr/LOCAL/samba/var/locks
debug level = 5
log file = /var/log/samba.log
load printers = no
hide dot files = no
revalidate = yes
printing = bsd
default service = homes
encrypt passwords = yes
logon path = \\vuk\profile
; **** recommend \\%L\%U\profile as all your users will have the same
; **** profile if you do this. also, putting machine names into the
; **** smb.conf file makes it non-portable.
[netlogon]
guest ok = no
read only = no
; **** read only = yes
; **** IT IS A SECURITY RISK TO PUT writeable = yes on the netlogon
; **** share.
path = /home/davis/12s7/smb/netlogon/aperrin
browseable = no
; **** browseable = yes.
[profile]
guest ok = no
guest only = no
read only = no
browseable = yes
wide links = yes
printable = no
path = /home/davis/hdir1/%U/.ntprofile
oo. interesting. wow. fascinating. does this work, then? wow, cool.
i wonder what the implications of doing this are. hm. when one user logs
out, the connection isn't dropped, and the next user uses the same smbd
process...
hm. i wonder.
hey, i have an idea. what happens if you clear all the oplocks before
responding to the "SMBlogoffX"? sorry, thinking out loud...
Comment = Profile Directory (%U)
[homes]
guest ok = no
read only = no
browseable = yes
wide links = yes
printable = no
create mask = 0775
path = /home/davis/hdir1/%U
Comment = Home Directory (%U)
[test]
guest ok = no
read only = no
browseable = yes
wide links = yes
printable = no
path = /usr/LOCAL/samba/test
Comment = Sandbox
[cdrom]
guest ok =no
read only = yes
browseable = yes
path = /cdrom
wide links = no
Comment = CD-ROM
<a href="mailto:lkcl at samba.anu.edu.au" > Luke Kenneth Casson Leighton </a>
<a href="http://mailhost.cb1.com/~lkcl"> Samba and Network Development </a>
<a href="http://www.samba.co.uk" > Samba and Network Consultancy </a>
More information about the samba-ntdom
mailing list