[Samba] samba fails to connect to windows file share joined to domain

jacek burghardt jaceksburghardt at gmail.com
Tue Dec 12 17:41:41 UTC 2023


Sorry  if I am not clear. I am using windows server as my file server. I
can moun the shares from windows server 2022 on osx and windows. I had file
share from linux that was working but is powered down. I moved to windows
os for multimedia server.  I need to rewrite my config file .

On Tue, Dec 12, 2023 at 10:16 AM Rowland Penny via samba <
samba at lists.samba.org> wrote:

> On Tue, 12 Dec 2023 09:46:51 -0700
> jacek burghardt via samba <samba at lists.samba.org> wrote:
>
> > I am using arch linux
> > This is my fstab entry using cred for windows domain user
> >
> > //winnas/radio /radio cifs
> >
> credentials=/etc/samba/credentials/radiorec,vers=2.0,uid=1000,gid=1000,iocharset=utf8,sec=krb5i,nofail
> > 0 0
> >
> > I run hardening kitty scripts .
>
> Can you provide a link to those scripts ?
>
> >
> > Windows and osx clients can mount the shares but linux has an issue.
> >
> >
> > [global]
> >
> >         netbios name = radiorec
> >
> >         socket options = TCP_NODELAY SO_RCVBUF=16384 SO_SNDBUF=16384
> >         winbind sealed pipes = false
> >         require strong key = false
> >         winbind sealed pipes:HEBE = true
> >         require strong key:HEBE = true
> >         lanman auth = no
> >         ntlm auth = yes
> >         ntlm auth = mschapv2-and-ntlmv2-only
> >         client signing = auto
> >         server signing = auto
> >         winbind enum users = yes
> >         winbind gid = 10000-20000
> >         workgroup = hebe
> >         os level = 20
> >         winbind enum groups = yes
> >         password server = den-dc01.hebe.us
> >         preferred master = no
> >         winbind separator = +
> >         max log size = 50
> >         log file = /var/log/samba/log.%m
> >         dns proxy = no
> >         realm = hebe.us
> >         security = ADS
> >         wins server = 192.168.1.8
> >         wins proxy = no
> >         client signing = auto
> >         server signing = auto
> >         domain master = auto
> >         server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc,
> > drepl, winbindd, ntp_signd, kcc, dnsupdate
> >         idmap_ldb:use rfc2307 = yes
> >         ldap server require strong auth = No
> >         idmap config * : backend = tdb
> >         idmap config * : range = 10000-20000
> >         winbind use default domain = Yes
> >         winbind enum users = Yes
> >         winbind enum groups = Yes
> >         winbind nested groups = Yes
> >         winbind separator = +
> >         winbind refresh tickets = yes
> >         winbind offline logon = yes
> >         winbind cache time = 300
> >         template shell = /bin/bash
> >         template homedir = /home/%D/%U
> >         inherit acls = Yes
> >         map acl inherit = Yes
> >         acl group control = yes
> >         load printers = no
> >         debug level = 3
> >         use sendfile = no
> >         vfs objects = acl_xattr shadow_copy2
> >
> > [sysvol]
> >          path = /usr/share/samba/sysvol
> >          read only = No
> >
> > [netlogon]
> >
>
> To be honest, I am surprised anything can mount the shares (which you
> haven't provided), but I am more worried about your smb.conf, it
> appears to be partially for a Unix domain member (but not complete),
> the other part appears to be for a DC, but again not complete, what do
> you think it is ?
>
> Rowland
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>


More information about the samba mailing list