[Samba] Making Home Directory available for Windows Users

Alexander Schaber lists at alexanderschaber.de
Thu Jan 4 20:44:22 GMT 2007


Am Donnerstag, 4. Januar 2007 08:12 schrieb Andreas Heinlein:
> Hello,
>
> I am pretty sure this is described somewhere in the official docs, but
> anyway:

Well I've looked through the docs, that's where I got this from. The main 
difference to the setups explained there is, that in our case, most shares 
are public and must not have a User/Password auth. Just this one should to 
that.

> Your approach #1 should work well. The [homes] section is accessible by
> clients using *either*
> \\<servername>\<username> or
> \\<servername>\homes

This doesn't work as expected :( At least with Konqueror. If I browse to  
\\fileserver everything works fine and the logs tell me I'm an anonymous 
user,which is fine, the auth fails though, which is still fine. [1]

The browsing through the public shares works fine.

Now the important one: If I try to browse to the homes share I get the error 
message that share cannot be found (that is in Konqueror) and the smb logs 
give me [2]. It doesn't prompt me for the User/Pass :( And therefore fails 
with still anonymous trying to log in.

I'm sending the output of the testparmed smb.conf as well. [3]

> No modifications to your example necessary.

Seems like that there is still some work to be done, but thanks anyway :)

[1]
[2007/01/04 21:34:51, 2] smbd/reply.c:reply_special(490)
  netbios connect: name1=FILESERVER.GYMH name2=ITSERVER
[2007/01/04 21:34:51, 2] smbd/reply.c:reply_special(497)
  netbios connect: local=fileserver.gymh remote=itserver, name type = 0
[2007/01/04 21:34:51, 2] lib/smbldap.c:smbldap_open_connection(724)
  smbldap_open_connection: connection opened
[2007/01/04 21:34:51, 2] auth/auth.c:check_ntlm_password(317)
  check_ntlm_password:  Authentication for user [anonymous] -> [anonymous] 
FAILED with error NT_STATUS_NO_SUCH_USER

[2]
[2007/01/04 21:38:23, 2] lib/smbldap.c:smbldap_open_connection(724)
  smbldap_open_connection: connection opened
[2007/01/04 21:38:23, 2] auth/auth.c:check_ntlm_password(317)
  check_ntlm_password:  Authentication for user [anonymous] -> [anonymous] 
FAILED with error NT_STATUS_NO_SUCH_USER
[2007/01/04 21:38:23, 2] smbd/service.c:make_connection(804)
  [homes] share not available for this user because it was not found or 
created at session setup time
[2007/01/04 21:38:23, 2] smbd/server.c:exit_server(614)
  Closing connections

[3]
[global]
        workgroup = ....
        map to guest = Bad User
        passdb backend = ldapsam:ldap://127.0.0.1/
        log level = 2
        printcap name = cups
        add machine script = /usr/sbin/useradd  -c 
Machine -d /var/lib/nobody -s /bin/false %m$
        domain master = No
        ldap admin dn = ....
        ldap group suffix = ou=group
        ldap machine suffix = ou=machines
        ldap passwd sync = Yes
        ldap suffix = dc=gymhaan,dc=lan
        ldap user suffix = ou=people
        cups options = raw
        include = /etc/samba/dhcp.conf

[homes]
        comment = Home Directories
        valid users = %S
        read only = No
        inherit acls = Yes

[profiles]
        comment = Network Profiles Service
        path = %H
        read only = No
        create mask = 0600
        directory mask = 0700
        store dos attributes = Yes

[users]
        comment = All users
        path = /home
        read only = No
        inherit acls = Yes

[groups]
        comment = All groups
        path = /home/groups
        read only = No
        inherit acls = Yes

[printers]
        comment = All Printers
        path = /var/tmp
        create mask = 0600
        printable = Yes
        browseable = No

[print$]
        comment = Printer Drivers
        path = /var/lib/samba/drivers
        write list = @ntadmin, root
        force group = ntadmin
        create mask = 0664
        directory mask = 0775

[public]
        comment = All users
        path = /srv/samba/public
        read only = No
        inherit acls = Yes
        guest ok = Yes

[informatik]
        comment = All users
        path = /srv/samba/informatik
        read only = No
        inherit acls = Yes
        guest ok = Yes

[virdef]
        comment = All users
        path = /srv/samba/virdef
        read only = No
        inherit acls = Yes
        guest ok = Yes

[kaspersky]
        comment = All users
        path = /srv/samba/kaspersky
        read only = No
        inherit acls = Yes
        guest ok = Yes

Thanks for your reply!

-- 
Greetings
 Alexander Schaber
 http://www.alexanderschaber.de
 GPG fingerprint = E61B 2945 512E 9DF4 69C3 20F5 0FA7 48BF 9413 40D8
-- 
Gruß
 Alexander Schaber


More information about the samba mailing list