[Samba] Samba and Winbind

Roberto Mason roberto at rmasonfamily.info
Tue Jun 3 20:51:37 GMT 2003 

Hello eveyone,
	Thanks in advance, for what every help you can provide me :)

	I'm trying to get Winbind to work at home, but I seem to be getting nowhere
awfully fast. Here's my situation.
I have a server (Redhat 9.0) called Mail... which acts as  SAMBA PDC,
NIS/NFS, MAIL, DNS and DHCP server. In addition, I have two other servers
setup. 1 is an Windows 2000 standalone server, that I've setup for the
moment to act as both a file server and print server. The machine account
has been created on the domain. The second is a Redhat 9.0 file server. Also
on that server (running Samba) I have a machine account created on the
Domain.

	I have a 4th machine, with windows xp and Redhat workstation  coexisting
together. Both are registered with the Domain.  I have no problem logging
from both 2000 server or xp machine using a domain user. Because of NIS, I
can also log to my Linux boxes with no problem.

Where I do have a problem is sharing files on my Linux File server. I
assume, because I can't get my Winbind to work, I can't properly share my
files, since I can't access neither the Samba Users or groups. On the Domain
server, I've created a group called storage, and added the user Roberto to
that group.

When I go to the file server, if I do ypcat group, I see the group I created
(I updated the YP database) If I do ypcat passwd, I see the users I created
on the main server. On this same file server I share a directory called
storage. Here's an extract of my smb.conf file:

[storage]
path = /storage
valid users = @storage
write list = @storage
read only = No
Everytime I try to access this directory from Network neighborhood, it asks
me to log on. I'm assuming that I need Winbind. I've tried installing it,
Winbindd is running, I modified /etc/pam.d/logon file
auth       required	pam_securetty.so
auth       required	pam_stack.so service=system-auth
auth       required	pam_nologin.so
auth       sufficient    pam_winbind.so  <added>
auth       required      pam_deny.so     <added>
account    required	pam_stack.so service=system-auth
password   required	pam_stack.so service=system-auth
session    required	pam_stack.so service=system-auth
session    optional	pam_console.so

This is the conf for smb.conf

[global]
	workgroup = SAMBANET
	netbios name = SERVER
	server string = Samba Server
	security = DOMAIN
	encrypt passwords = Yes
	obey pam restrictions = Yes
	password server = 192.168.1.3
	pam password change = Yes
	passwd program = /usr/bin/passwd %u
	passwd chat = *New*password* %n\n *Retype*new*password* %n\n
*passwd:*all*authentication*tokens*updated*successfully*
	unix password sync = Yes
	log file = /var/log/samba/%m.log
	max log size = 0
	socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
	preferred master = No
	domain master = No
	dns proxy = No
	wins server = 192.168.1.3
	winbind uid = 10000-20000
	winbind gid = 10000-20000
	winbind separator = +
	winbind use default domain = Yes
	printing = cups

[homes]
	comment = Home Directories
	valid users = %S
	read only = No
	create mask = 0664
	directory mask = 0775
	browseable = No

[printers]
	comment = All Printers
	path = /var/spool/samba
	printable = Yes
	browseable = No

[storage]
	path = /storage
	valid users = @storage
	write list = @storage
	read only = No

:)

More information about the samba mailing list