[Samba] Samba4 to replicate my samba3.6 config

Justin Cooper-Marsh JCooper-Marsh at cbnl.com
Thu Oct 16 06:39:35 MDT 2014

We are running Arch Linux as a new sever and only has samba4 available officially
I am trying to migrate my samba 3 config to work with samba 4

I currently use samba to authenticate windows users to use our Linux shares using the unix groups as the valid users.

Here is the problem.

I can see the shares using samba 4 but it uses the "Domain users" group to write to the shares and not any of the linux groups.

My samba 4 config

  netbios name = newvsbuild
  workgroup = mydomain
  realm = mydomain.local
  server string = %h ArchLinux Host
  security = ads
  encrypt passwords = yes
  #password server = dc1.cambridgebroadband.com

  idmap config * : backend = rid
  idmap config * : range = 10000-20000

  winbind use default domain = Yes
  winbind enum users = Yes
  winbind enum groups = Yes
  winbind nested groups = Yes
  winbind separator = @
  winbind refresh tickets = yes

  template shell = /bin/bash
  template homedir = /home/%D/%U

  preferred master = no
  dns proxy = no
  wins server = cb-dc1.cambridgebroadband.com
  wins proxy = no

  inherit acls = Yes
  map acl inherit = Yes
  acl group control = yes

# load printers = no
  debug level = 3
  use sendfile = no

comment = Scratch folders
path = /scratch
valid users = @development @cvs
browseable = yes
writable = yes
locking = yes
create mode = 0770
directory mode = 0770

Cambridge Broadband Networks Limited (CBNL) is registered in England and Wales at Byron House, Cambridge Business Park, Cowley Road, Cambridge CB4 0WZ under company registration number 3879840. CBNL is the market leader in carrier-class multipoint microwave backhaul and access solutions, serving customers in over 40 countries across the globe. 
This e-mail and any attachments to it are confidential. If you are not the intended recipient, please send an e-mail to the sender stating that it has been received in error and then delete all copies of it immediately. Any views expressed may not be the views of CBNL. Please only print this email if necessary. 

More information about the samba mailing list