HPE Community
Operating System - HP-UX
1827893 Members
1778 Online
109969 Solutions
New Discussion

Samba user access

 
Robbie Smeeton
New Member

‎02-24-2003 05:15 PM

‎02-24-2003 05:15 PM

Samba user access

Hi,
I have configure a win2000 server to access a shared directory on a HPUX 11.0 Server.
With "security = share", read access is too open. How can I configure the smb.conf file to limit access to a single user, preferably without a password ?

Robbie
0 Kudos
Reply
2 REPLIES 2
Steven E. Protter
Exalted Contributor

‎02-24-2003 09:27 PM

‎02-24-2003 09:27 PM

Re: Samba user access

The user id needs to exist on the HP-UX box unless you are using LDAP.

/opt/samba/bin/smbpasswd -a userid password

Root user runs this command and then the user is authorized for the samba share.

I'm uploading a sample smb.conf file for you to use as a reference.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Darren Prior
Honored Contributor

‎02-25-2003 02:47 AM

‎02-25-2003 02:47 AM

Re: Samba user access

Hi Robbie,

It sounds like user level security is a better fit for what you need. I suggest you have a read of the Using Samba book by O'Reilly (which is supplied in html format with HP's CIFS/9000 product) - there's a good section on Authentication Security that discusses user level security. You will need to setup the smbpassword file (as mentioned in the previous response), and have a valid HPUX user. If the user's password in smbpassword is the same as their Win2000 password and their HPUX user is named identically to their Win2000 username the authentication process won't ask for a password.

A sample share definition may look something like this if you wanted to limit to just the user bobjones:

[ourdata]
path = /user3/data
comment = ourdata - limited to bobjones
guest ok = no
valid users = bobjones

regards,

Darren.
Calm down. It's only ones and zeros...
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.