[Samba] Domain groups with spaces in their names
John Ennew
john.ennew at gmail.com
Mon Jul 25 14:07:10 GMT 2005
Hello Samba,
I have a Samba file server which I have successfully joined to a domian
controlled by a Windows 2003 domian controller. I cannot get the server to
allow access to users who are members of a group with spaces in its name.
The domain has three (main) groups:
- students
- teachers
- spaced users
My Samba.conf has the following shared directories defined:
[teachers]
comment = teacher's shares
writable = yes
valid users = @teachers
path = /home/groups/teachers
writable = yes
browsable = no
create mode = 0660
directory mode = 0770
[students]
comment = student's shares
writable = no
valid users = @teachers @students
path = /home/groups/students
create mode = 0660
directory mode = 0770
write list = @teachers
[spaced]
comment = test with spaces
writable = yes
valid users = "@spaced users"
path = /home/spaced users
create mode = 0660
directory mode = 0770
browsable = yes
The following works fine:
members of @teachers have access to both teachers and students shares
members of @teachers can write to both teachers and students shares
members of @students can only see the students shares
But this does not work:
"@spaced users" should be able to access the spaced share but cannot. On a
Windows XP terminal on the network, any attempt to view the spaced shared by
anyone (including members of the "spaced users" group) results in a login
box popping up and no combination of user name or password will let you see
the share.
I am using Samba version 3.14 running on Fedora Core 4.
I have included my full smb.conf
Many thanks in advance,
John
-------------- next part --------------
[global]
# Optimum Samba Performance settings
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
# NT workgroup settings
workgroup = RMLINUX
server string = Samba Server
# WINS network browsing settings
# All functions disabled apart from using a WINS server for lookups
local master = no
domain master = no
preferred master = no
wins support = no
wins server = 42.42.0.1
dns proxy = no
# Active Directory Member
realm = RMLINUX.LOCAL
security = ADS
# Server to use if no domain controller is registered in DNS
password server = zeus.rmlinux.local
# Enable Winbind for AD and local account synchronisation
# winbind separator = +
winbind use default domain = yes
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind enum users = yes
winbind enum groups = yes
# Defaultas for local accounts created by Winbind
template homedir = /home/%U
template shell = /bin/nologin
# Loggin settings
log file = /var/log/samba/%m.log
max log size = 5000
# Printer sharing
printcap name = /etc/printcap
load printers = no
# Security settings
invalid users = root bin daemon adm sync shutdown halt mail news uucp operator
# Add shares here
[homes]
comment = %U's home area
volume = Home Area
path = /home/users/%U
browsable = no
writable = yes
[teachers]
comment = teacher's shares
writable = yes
valid users = @teachers
path = /home/groups/teachers
writable = yes
browsable = no
create mode = 0660
directory mode = 0770
[students]
comment = student's shares
writable = no
valid users = @teachers @students
path = /home/groups/students
create mode = 0660
directory mode = 0770
write list = @teachers
[spaced]
comment = test with spaces
writable = yes
valid users = "@spaced users"
path = /home/spaced users
create mode = 0660
directory mode = 0770
browsable = yes
More information about the samba
mailing list