[Samba] cannot access to linux share from windows

Fujisan fujisan43 at gmail.com
Thu Dec 1 13:57:42 UTC 2016 

OK I will contact freeipa mailing list as well.

Anyway, on server A, conf is the following:

[global]
    workgroup = MYDOMAIN
    netbios name = F25SERVER
    realm = MYDOMAIN
    kerberos method = dedicated keytab
    dedicated keytab file = FILE:/etc/samba/samba.keytab
    create krb5 conf = no
    domain master = yes
    domain logons = yes
    max log size = 10000
    log file = /var/log/samba/log.%m
    passdb backend = ipasam:ldapi://%2fvar%2frun%2fslapd-MYDOMAIN.socket
    disable spoolss = yes
    ldapsam:trusted = yes
    ldap ssl = off
    ldap suffix = dc=mydomain
    ldap user suffix = cn=users,cn=accounts
    ldap group suffix = cn=groups,cn=accounts
    ldap machine suffix = cn=computers,cn=accounts
    rpc_server:epmapper = external
    rpc_server:lsarpc = external
    rpc_server:lsass = external
    rpc_server:lsasd = external
    rpc_server:samr = external
    rpc_server:netlogon = external
    rpc_server:tcpip = yes
    rpc_daemon:epmd = fork
    rpc_daemon:lsasd = fork
    security = user
    enable core files = no
    log level = 2

[homes]
    comment = Home Directories
    read only = no
    browseable = yes
    create mask = 0664
    directory mask = 0775

and on client B:

[global]
    workgroup = MYDOMAIN
    realm = MYDOMAIN
    netbios name = F25SERVER
    server string = Samba Server Version %v
    kerberos method = dedicated keytab
    dedicated keytab file = FILE:/etc/samba/samba.keytab
    log file = /var/log/samba/log.%m
    rpc_server:epmapper = external
    rpc_server:lsarpc = external
    rpc_server:lsass = external
    rpc_server:lsasd = external
    rpc_server:samr = external
    rpc_server:netlogon = external
    rpc_server:tcpip = yes
    rpc_daemon:epmd = fork
    rpc_daemon:lsasd = fork
    security = user
    map untrusted to domain = Yes
    smb ports = 139 445
    log level = 2

[data]
    comment = /data/beauduin on f25desktop
    path = /data/smith
    create mask = 0644
    read only = no

[data2]
    comment = /data2/beauduin on f25desktop
    path = /data2/smith
    create mask = 0644
    read only = no

[data3]
    comment = /data3 on f25desktop
    path = /data3/smith
    create mask = 0644
    read only = no

[backup]
    comment = /backup on f25desktop
    path = /backup
    read only = no

On Thu, Dec 1, 2016 at 2:37 PM, Rowland Penny via samba <
samba at lists.samba.org> wrote:

> On Thu, 1 Dec 2016 14:08:55 +0100
> Fujisan via samba <samba at lists.samba.org> wrote:
>
> > I have:
> >   A/ 1 F25 freeipa server
> >   B/ 1 F25 freeipa client
> >   C/ 1 F24 freeipa client
> >   D/ 1 windows desktop
> >
> > I can access linux shares of A from D.
> > I can access linux shares of C from D.
> > I *cannot* access linux shares of B from D.
> >
>
> So, ignoring 'C', windows can access shares on a 'F25' computer (A),
> but cannot access shares on a 'F25' computer (B)
>
> Can I suggest you compare the various conf files on 'A' & 'B'
> Can I also point out the 'freeipa' & 'sssd' (which is also probably
> involved here) have nothing to do with Samba. You may get better help
> from their respective mailing lists.
>
> Rowland
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>

More information about the samba mailing list