HPE Community
Operating System - HP-UX
1827861 Members
2533 Online
109969 Solutions
New Discussion

samba setup

 
Mohd Rasidi Che Mat
Frequent Advisor

‎02-17-2010 07:00 PM

‎02-17-2010 07:00 PM

samba setup

Hi,
i've managed to setup samba share in hpux with "security = domain". However I'm not sure if this is correct as i need to manually create samba id & passwd at samba server. shouldn't the id & passwd obtained from domain credentials? if domain passwd changed, will it be reflected at samba?

1. create id in unix the same with windows domain id.
2. add the id in /etc/opt/samba/smb.conf as “valid users”.
3. create samba passwd for the id same with windows domain passwd:
# /opt/samba/bin/smbpasswd –a new_unix_id
4. add “host allow” in smb.conf for workstation used by user to access samba share.
0 Kudos
Reply
4 REPLIES 4
Horia Chirculescu
Honored Contributor

‎02-17-2010 10:29 PM

‎02-17-2010 10:29 PM

Re: samba setup

Hello,

From:

http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/domain-member.html

I quote:

"Currently, domain security in Samba does not free you from having to create local UNIX users to represent the users attaching to your server. "


Horia.
Best regards from Romania,
Horia.
0 Kudos
Reply
Horia Chirculescu
Honored Contributor

‎02-17-2010 11:58 PM

‎02-17-2010 11:58 PM

Re: samba setup

You had 2 questions:
1: >at samba server. shouldn't the id & passwd obtained from domain credentials? if domain

2: >passwd changed, will it be reflected at samba?

The answer is NO to both of those.
At least not in the current implementation of SAMBA. Re-read the passage I have quoted above.

Horia.
Best regards from Romania,
Horia.
0 Kudos
Reply
Cesare Salvioni
Trusted Contributor

‎02-18-2010 04:00 PM

‎02-18-2010 04:00 PM

Re: samba setup

hi there.

1. setting security=domain is not enough, u must also join the domain with command:

/opt/samba/bin/net rpc join

it would ask u the administrator password, as a alternative u can create a host with the name as the hpux box on the domain controller checking the box windows 2000 domain. In this way it will not ask u the password

once u join the domain u can check with same command with argument testjoin

Once u have join the domain, the domain controller will authenticate username and password, so changing the password on the pc will effect also connecting the samba resource BUT u still must map the windows username to a unix username, u can create same username in the passwd file with * password or, if username is longer then 8 char, use the mapping file in smb.conf, in this file put something like:

= \

If u wan to get uid from the domain controller samba is not enough, u must also configure the ldap client on the unix box, but that's another story

hope it helps
0 Kudos
Reply
Mohd Rasidi Che Mat
Frequent Advisor

‎02-18-2010 05:20 PM

‎02-18-2010 05:20 PM

Re: samba setup

thanks.
btw, join domain done previously.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.