[Samba] SAMBA using existing users and passwords on Linux

Rowland penny rpenny at samba.org
Thu Jun 18 17:44:57 UTC 2020

On 18/06/2020 17:55, Fernando Gonçalves via samba wrote:
> Hello everyone.
> I'm back because I decided to follow your advice and deploy the system
> using a new version of SAMBA with encrypted passwords.
> I added the SAMBA server in the AD domain without any problems and I am
> already accessing the shares with AD users.
> However I have a new problem for which I need help.
> When I try to access SAMBA shares with local Linux users, it is necessary
> to include the name of the Linux server when passing the local user.
> For example if I try to access like this, it doesn't work, it gives an
> invalid user error
> net use \\host\share /U:localuser
> To work the command must be like this:
> net use \\host\share /U:host\localuser
> What it seems to me is that SAMBA does not authenticate on the local
> machine, only in AD.
Yes, that is correct, all authentication on a domain machine is done via 
the AD DC.
> Is there a way to get SAMBA to authenticate to AD and on the local machine?

Well, yes and no, it all depends on what you mean by authentication and 
local users ;-)

If I run 'getent passwd rowland' on a Unix domain member, I get this:

rowland:*:10000:10000:Rowland Penny:/home/rowland:/bin/bash

So, the OS thinks that I am a local user, but, you will not find 
'rowland' in /etc/passwd

I think we need to see your present smb.conf file and can you also tell 
us what your AD DC's are and how you joined the domain.


More information about the samba mailing list