Topic: SME and Winbind

[Derek]

Hi,

I'm trying to use winbind to force the other samba servers on our network to use the SME domain user accounts. (I'm sick of maintaining seperate user accounts on each samba server). The non-SME samba servers are Mandrake 8.x and 9.0. This is what I've tried on a Mandrake 9.0 box:

In /etc/pam.d/samba:
- auth sufficient /lib/security/pam_winbind.so
- account sufficient /lib/security/pam_winbind.so

In /etc/nsswitch.conf
- passwd files winbind
- group files winbind

In smb.conf:
- security = domain
- password server = SME server
- winbind uid = 10000-20000
- winbind gid = 10000-20000

Succesfully joined the SME domain using smbpasswd -j

It sort of works....An SME user can browse the list of shares, but cannot connect to any individual shares. The individual shares are configured with "valid user = "

What am I missing? Or is this even possible at all?

Thanks,

Derek

[Laurent]

Bonjour,

you need use the domain separator ie " + " with domain name :

     valid users = +

Laurent

[Derek]

Bonjour,

I tried "winbind separator = +" with "valid users = DOMAIN + user".
Also "winbind use default domain = yes" with "valid users = user"
And default winbind separator with "valid users = DOMAIN/user"

None of those worked for me. Any other suggestions?

Merci,

Derek

[maz_AT_mymail.net]

bonjour,

Check the access rights on the directory that you are sharing from the linux boxs (Mandrakes).

First test winbind : wbinfo -u  & -g are good to let see if you have a good config. If that works do the next test.

Create a test share that is public, logon on a client and try to access and create for example a directory. Then logon on the linux box and "ls"
you should have domain+user owning that directory.

After that you could do the others shares the way you want.

good luck mon ami.