<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
</head>
<body bgcolor="#ffffff" text="#000000">
Hi!
<br>
<br>
I have upgraded my servers yesterday to CentOS 5.6 via yum
update. Everything went smoothly except that i have client
workstations not part of the domain that are not able to access the
samba server anymore. The samba server is part of the domain. We
recently added Windows 2008 R2 DC. Everything was working smoothly
until the CentOS update.
<br>
<br>
I had a Win7 Workstation that i had success connecting when
using the "net use" command:
<br>
<br>
net use g: \\sambaserver\share /user:domain\username
<br>
<br>
The mapping worked right away and didn't even asked for the
password. Normally, before the CentOS upgrade, i'd put
\\sambaserver in the UNC line of the Windows Explorer and i'd get a
box asking for credentials. Entering "domain\username" as user and
giving the password in the password line was working. Not anymore.
<br>
<br>
I have another XP workstation on another subnet (router wide open)
and the mapping with the command line as specified above doesn't
even work. For this subnet, i have to use the IP address because
the workstations on it use a DNS which isn't aware or active
directory (and cannot change this).
<br>
<br>
<br>
samba-3.0.33-3.29.el5_6.2
<br>
samba-common-3.0.33-3.29.el5_6.2
<br>
<br>
Here is my smb.conf:
<br>
===================
<br>
[global]
<br>
workgroup = DOMAINNAME
<br>
realm = DOMAINNAME.COM
<br>
server string = Servername File Server
<br>
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
<br>
security = ADS
<br>
encrypt passwords = yes
<br>
passdb backend = tdbsam
<br>
password server = *
<br>
preferred master = No
<br>
local master = No
<br>
domain master = No
<br>
cups options = raw
<br>
hosts allow = 10.0.2., 10.0.3., 127., 10.0.4.40
<br>
pam password change = Yes
<br>
passwd program = /usr/bin/passwd %u
<br>
passwd chat = <b class="moz-txt-star"><span class="moz-txt-tag">*</span>New*Password<span
class="moz-txt-tag">*</span></b> %n\n <b class="moz-txt-star"><span
class="moz-txt-tag">*</span>Re-enter*new*password<span
class="moz-txt-tag">*</span></b>%n\n <b class="moz-txt-star"><span
class="moz-txt-tag">*</span>Password*changed<span
class="moz-txt-tag">*</span></b>
<br>
username map = /etc/samba/smbusers
<br>
unix password sync = Yes
<br>
log level = 1
<br>
syslog = 0
<br>
log file = <i class="moz-txt-slash"><span class="moz-txt-tag">/</span>var/log/samba<span
class="moz-txt-tag">/</span></i>%m
<br>
max log size = 50
<br>
smb ports = 139
<br>
name resolve order = bcast hosts
<br>
time server = Yes
<br>
printcap name = CUPS
<br>
show add printer wizard = No
<br>
add user script = /usr/sbin/useradd -m '%u'
<br>
delete user script = /usr/sbin/userdel -r '%u'
<br>
add group script = /usr/sbin/groupadd '%g'
<br>
delete group script = /usr/sbin/groupdel '%g'
<br>
add user to group script = /usr/sbin/usermod -G '%g' '%u'
<br>
add machine script = /usr/sbin/useradd -s /bin/false -d /tmp '%u'
<br>
shutdown script = /var/lib/samba/scripts/shutdown.sh
<br>
abort shutdown script = /sbin/shutdown -c
<br>
<br>
# separate domain and username with '\', like DOMAIN\username
<br>
winbind separator =+
<br>
# use uids from 10000 to 20000 for domain users
<br>
idmap uid = 10000-20000
<br>
# use gids from 10000 to 20000 for domain groups
<br>
idmap gid = 10000-20000
<br>
# allow enumeration of winbind users and groups
<br>
winbind enum users = yes
<br>
<br>
[homes]
<br>
comment = Home Directories
<br>
read only = No
<br>
browseable = No
<br>
writable = yes
<br>
<br>
[Videotheque]
<br>
comment = Fichiers MPEG2
<br>
path = /home/Samba/Videotheque
<br>
read only = No
<br>
available = Yes
<br>
public = Yes
<br>
writable = yes
<br>
admin users =
domainname+user1,domainname+user2,domainname+user3
<br>
<br>
<br>
<br>
<br>
TIA,
<br>
<br>
<br>
Guy Boisvert
</body>
</html>