[Samba] username map with “security = ads”

Philipp Gesang philipp.gesang at intra2net.com
Thu May 2 15:27:27 UTC 2019

Hi Louis!

-<| Quoting L.P.H. van Belle via samba <belle at bazuin.nl>, on Thursday, 2019-05-02 03:15:46 PM |>-
> Not tested, just brain farts ;-)
> Setup a member, Allow guest access.  ( in global : guest ok = yes ) 
> This allow local users to access the server ( not shares ) 
> On the shares 
> Deny "domain users" and/or authenticated users. 
> Allow the local group for local users. 

Not sure if I follow. Is this what you imagined:

    guest ok = yes
    valid users = @shareusers

? I’m not seeing any config option to reject access by all domain

> Not tested but technicaly is could work. 
> Which is almost the same as a standalone with and without user authentication. 

We’re testing the split config setup right now, let’s see how
this works out.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba/attachments/20190502/1749c1ea/signature.sig>

More information about the samba mailing list