[Samba] home directories & winbind ?

jchurch at gprep.org jchurch at gprep.org
Mon Jul 8 18:29:01 GMT 2002

What is the trick for having home directories on a samba share be
accessible from a windows machine??

I am using winbind with NT to authenticate -- it works fine.  I have users
with accounts on the samba machine, they have the same usernames and
passwords on the NT machine.  All users on the samba machine have accounts
in /home   Is there some sort of trick with the template homedir command,
and maybe with the allowed users in the homes share??

Here are my files
auth       required	/lib/security/pam_securetty.so
auth	   sufficient	/lib/security/pam_unix.so use_first_pass
auth	   required	/lib/security/pam_stack.so service=system-auth
auth       required	/lib/security/pam_nologin.so
account    required	/lib/security/pam_stack.so service=system-auth
password   required	/lib/security/pam_stack.so service=system-auth
session    required	/lib/security/pam_stack.so service=system-auth
session    optional	/lib/security/pam_console.so

# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth        required      /lib/security/pam_env.so
auth        sufficient    /lib/security/pam_winbind.so
auth        sufficient    /lib/security/pam_unix.so likeauth nullok
auth        required      /lib/security/pam_deny.so
account     sufficient	  /lib/security/pam_winbind.so
account     required      /lib/security/pam_unix.so
password    sufficient	  /lib/security/pam_winbind.so
password    required      /lib/security/pam_cracklib.so retry=3
password    sufficient    /lib/security/pam_unix.so nullok use_authtok md5
password    required      /lib/security/pam_deny.so
session     required      /lib/security/pam_limits.so
session     required      /lib/security/pam_unix.so


auth       required	pam_nologin.so
auth       required	pam_stack.so service=system-auth
account    required	pam_stack.so service=system-auth
session    required	pam_stack.so service=system-auth
password   required	pam_stack.so service=system-auth


# Global parameters
	workgroup = GPREP
	netbios name = leonardo
	server string = leonardo the lionhearted
	interfaces =
        winbind uid=10000-20000
        winbind gid=10000-20000
        winbind cache time = 15
        winbind enum users = yes
        winbind enum groups = yes
	winbind separator= +
# from server to domain
	security = domain
	password server = GOETHE
	encrypt passwords = yes
        log level = 3
	log file = /home/log/samba/log.%e
	max log size = 50
	os level = 33
	local master = No
	wins proxy = Yes
	wins server =
#        getwd cache = yes
	follow symlinks = no
        wide links = no
	template homedir = /home/%U
	template shell = /bin/bash
#       template homedir = /home/%D/%U
#	template homedir = /home/%D%U
        obey pam restrictions = yes
#        smb passwd file=/etc/smbpasswd
	hosts allow= 172.16.

	comment = Home Directories
#	allow users = "%D+%U"
	read only = No
        create mask = 0700
        directory mask = 0700
	browseable = No

More information about the samba mailing list