[Samba] smbuser functionality broken?

Kristof Bruyninckx kristof.bruyninckx at thales-is.com
Tue Aug 30 10:00:31 GMT 2005 

Hello,

I recently installed RHEL 4 on 2 systems with the default samba
packages :

samba-common-3.0.10-1.4E
samba-swat-3.0.10-1.4E
samba-3.0.10-1.4E
samba-client-3.0.10-1.4E

Now I have successfully linked this server to our Windows domain. This
means that all the windows IDs are known.
 
Now we have our systems setup so that the windows accounts are linked to
existing Linux accounts with the smbusers file. 
In effect the  windows user become there linux counterpart user when
accessing his/her home from windows( e.g explorer ).  This means all
files created in windows in there homes, have the linux user permissions
and ownership.
This setup is configured and working on several other server RHEL3 and
HP-UX11.11 servers.

But on the RHEL4 the link to the existing Unix account seems to be
broken? 

The users are known, "# id Windows.Account ", will show me there
account. But when they connect with windows( e.g explorer ) they remain
in there windows account and this shouldn't happen. Because of the
smbuser file they should be linked to there existing Linux account, and
all the files they create should contain there linux account permissions
and ownership. But this is not happening! They remain in there windows
account, and files generated are with this accounts ownership and
permissions.

Also the GNU&Linux accounts have been setup by a NIS, in case this would
be important.

contents of the smb.conf, basic setup actually :

[global]
        workgroup = <Removed>
        realm = <Removed>
        server string = Samba server
        security = DOMAIN
        auth methods = winbind
        obey pam restrictions = Yes
        password server = <Removed>
        username map = /etc/opt/samba/smbusers
        log level = 3
        log file = /var/log/samba/smbd.log
        max log size = 50
        socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
        dns proxy = No
        ldap ssl = no
        idmap uid = 10000-20000
        idmap gid = 10000-20000
        template shell = /bin/bash
        winbind separator = /
        winbind cache time = 10
        winbind use default domain = Yes
        hosts allow = 192.168.1.

[homes]
        comment = Home Directories
        path = %H
        read only = No

[sharing]
        comment = File sharing area
        path = /home/sharing
        read only = No
        guest ok = Yes

and the layout of the smbusers file is:

LinuxAccount = DOMAIN\Windows.Account
etc...

also tried layout like this 

LinuxAccount = Windows.Account 
etc..

but no effect.

Does anybody have any more ideas of what could be wrong?


-- 
Kristof.Bruyninckx

We are Microsoft.  What you are experiencing is not a problem; it is an
undocumented feature.

More information about the samba mailing list