Samba AD authentikacio

Fórumok

Sziasztok!

Ezen leiras alapjan tettem be 2 gepet AD ba: http://www.alandmoore.com/blog/2015/05/06/joining-debian-8-to-active-di…

Megy szepen, nincs gond, SSH val az engedelyezett userek belephetnek.

Szeretnek viszont egy samba share-t, amit egy AD-s usernek lenne joga megnyitni.

Na ez nem jon ossze...

itt a realm list kimenet:

sudo realm list
hft.rosenberger.local
type: kerberos
realm-name: HFT.ROSENBERGER.LOCAL
domain-name: hft.rosenberger.local
configured: kerberos-member
server-software: active-directory
client-software: sssd
required-package: sssd-tools
required-package: sssd
required-package: libnss-sss
required-package: libpam-sss
required-package: adcli
required-package: samba-common-bin
login-formats: %U@hft.rosenberger.local
login-policy: allow-permitted-logins
permitted-logins: nos_admin@hft.rosenberger.local, ie_admin@hft.rosenberger.local, gk_admin@hft.rosenberger.local, ck_admin@hft.rosenberger.local
permitted-groups:

ez pedig az smb.conf

# Global parameters
[global]
workgroup = HFT.ROSENBERGER.LOCAL
realm = HFT.ROSENBERGER.LOCAL
security = DOMAIN
map to guest = Bad User
obey pam restrictions = Yes
pam password change = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
unix password sync = Yes
syslog = 0
log file = /var/log/samba/log.%m
max log size = 1000
dns proxy = No
usershare allow guests = Yes
panic action = /usr/share/samba/panic-action %d
idmap config * : backend = tdb

[homes]
comment = Home Directories
valid users = %S
create mask = 0700
directory mask = 0700
browseable = No

[printers]
comment = All Printers
path = /var/spool/samba
create mask = 0700
printable = Yes
print ok = Yes
browseable = No

[print$]
comment = Printer Drivers
path = /var/lib/samba/printers

[test]
comment = test
path = /tmp/test
valid users = nos_admin@hft.rosenberger.local
read only = No

Nyilvan a "test" share jatszik.

A megosztas latszik, csak jogosultsagom nincs....

Hozzászólások