Noob Centos Admin wrote:
>
>
> probably not the answer you want to hear but...
> swat is supposed to be the tool for simple administration.
>
>
> I was afraid of that. By the time I gave up and completed the task
> manually, I was thinking maybe it might be easier to write my own script
> to repeat all those useradd, gpasswd -a, smbpasswd and nano smb.conf :(
Is there a windows domain or AD in this picture somewhere? If so, point
samba authentication there and don't worry about separate passwords.
>
> No worries about that one, I only edit conf files on my CentOS box using
> nano. The closest to using Windows for this is to manage my servers are
> SSH through putty, and writing long php scripts to be uploaded.
If you want something nicer, run freenx on the server and the NX client
from www.nomachine.com for your windows box. That lets you connect to a
complete GUI desktop remotely and conveniently.
> For a single common to everybody share it was easy of course. In fact,
> for something like that, I'll do away with bothering everybody with a
> login and simply make a single login everybody shares for filesharing.
>
> It's when I have 8 people who have to share aaa, then a sub group B
> have to share bbb, then a subgroup C have to share ccc, then a subgroup
> of people from B+C need to share ddd and so forth that it becomes
> untenable to do everything by hand and the tools at the moment just dont
> cut it.
Not that complicated. Just create groups as needed and add the
appropriate users to each group (independently, don't worry about which
are sub-groups of others).
Then the samba shares look like:
[aaa-share]
comment = aaa workspace
path = /path/to/aaa-share
public = no
valid users = @aaa
writable = yes
printable = no
force create mode = 0775
force directory mode = 775
force group = aaa
You might want some other mode, just make sure it is group-read/write.
Then you can cut/paste those, substituting the appropriate groups, and
do an initial chgrp -R and chmod -R of the top directories to make sure
they have the right starting ownership and modes.
> Except of course webmin doesn't actually create the smbuser correctly.
> Maybe it has to do with how I use it, but maybe again like CentOS's
> tool, that particular functionality is actually broken.
If you use smb authentication against a domain controller, all you have
to do is create the linux users with the same login name. With winbind
you might not even have to do that, but then I don't know how you
control the groups.
--
Les Mikesell
lesmikesell at gmail.com