Samba and AD
Thomas Cameron
thomas.cameron at camerontech.com
Sun May 27 03:41:40 UTC 2007
azeem ahmad wrote:
> hi all
>
> i have an FC4 box which authenticates its urses against a Windows Active
> Directory
>
> i have created the followinf share on the samba server
>
> ----------------------------------------------------------------------------------------------------------------------------------
>
> [Labs]
> comment = LAB Staff's Share
> path = /home/share
> valid users = must asif faqhi adnan
> browseable = yes
> public = no
> writable = yes
> printable = no
> create mask = 0765
> ----------------------------------------------------------------------------------------------------------------------------------
>
>
> note that asif, faqhi, adnan and must all are the users of Active
> directory. they can logon to the sshd running on the same box and they
> can open their home directories on the same box in Windows Network
> places, for home directories the configuration is as following
>
> ----------------------------------------------------------------------------------------------------------------------------------
>
> idmap uid = 16777216-33554431
> idmap gid = 16777216-33554431
> template homedir = /home/%U
> template shell = /bin/bash
> winbind use default domain = yes
> password server = 168.10.1.255
> realm = GCU.EDU.PK
> [homes]
> comment = Home Directories
> browseable = no
> writable = yes
> ----------------------------------------------------------------------------------------------------------------------------------
>
>
> the problem is that when users open samba server in their network
> places, they can see their own home directory and the share named Labs.
> but when they try to access the Labs share, they get a message of access
> denied
>
> do any one have any opinion on this
The steps outlined at:
http://people.redhat.com/tcameron/rhel-ad/1024x768/
Should work for FC4. Pay special attention to the mount options and
permissions stuff.
--
Thomas
More information about the fedora-list
mailing list