[Samba] SAMBA using existing users and passwords on Linux
rpenny at samba.org
Thu Jun 18 17:44:57 UTC 2020
On 18/06/2020 17:55, Fernando Gonçalves via samba wrote:
> Hello everyone.
> I'm back because I decided to follow your advice and deploy the system
> using a new version of SAMBA with encrypted passwords.
> I added the SAMBA server in the AD domain without any problems and I am
> already accessing the shares with AD users.
> However I have a new problem for which I need help.
> When I try to access SAMBA shares with local Linux users, it is necessary
> to include the name of the Linux server when passing the local user.
> For example if I try to access like this, it doesn't work, it gives an
> invalid user error
> net use \\host\share /U:localuser
> To work the command must be like this:
> net use \\host\share /U:host\localuser
> What it seems to me is that SAMBA does not authenticate on the local
> machine, only in AD.
Yes, that is correct, all authentication on a domain machine is done via
the AD DC.
> Is there a way to get SAMBA to authenticate to AD and on the local machine?
Well, yes and no, it all depends on what you mean by authentication and
local users ;-)
If I run 'getent passwd rowland' on a Unix domain member, I get this:
So, the OS thinks that I am a local user, but, you will not find
'rowland' in /etc/passwd
I think we need to see your present smb.conf file and can you also tell
us what your AD DC's are and how you joined the domain.
More information about the samba