Redhat – Configure samba server for Unix group

active-directoryauthenticationredhatsamba

I'm trying to set up a samba server with access for users in the Linux (RHEL 6) "wheel" group. I am basing smb.conf off of the example here where it goes through the [accounting] example. In my smb.conf I have

[tmp]
    comment = temporary files
    path = /var/share
    valid users = @wheel
    read only = No
    create mask = 0664
    directory mask = 02777
    max connections = 0

(rest of the output from $ testparm /etc/samba/smb.conf is here). And

groups `whoami`

returns user01 : wheel.

When I use the following command from another machine (Mac OS) as the Linux user (user01):

$ smbclient -L NETBIOSNAME/tmp

it asks for a password, I hit return without a password, and get:

Enter user01's password:
Anonymous login successful
Domain=[DOMAIN] OS=[Unix] Server=[Samba 3.6.9-151.el6_4.1]
Sharename       Type      Comment
    ---------       ----      -------
    tmp             Disk      temporary files
    IPC$            IPC       IPC Service (Samba Server Version 3.6.9-151.el6_4.1)

But when I try

$ smbclient //NETBIOSNAME/tmp

I try typing the password I use for the Linux login, and get a bunch of stuff logged, including

check_sam_security: Couldn't find user 'user01' in passdb.
...
session setup failed: NT_STATUS_LOGON_FAILURE

(I can give more logging information if it would be helpful.)

I can't find a reference to more steps I need to add group users in the resource. Should I be manually adding samba users from the group somehow?

Best Answer

The issue here was that the Samba user storage did not have the system user present. The solution, in this case was

  1. Create system user "user01" (already done)
  2. Create samba user with smbpasswd -a user01
  3. Add "user01" to the system wheel group

then the user is able to access the share. To avoid maintenance of two user databases you could consider something like LDAP.

Related Topic