Centos7 - Samba AD auth

Sziasztok!

 

Probalom beallitani a Samba AD auth-ot Centos7-en (SSSD-vel). A domain-hez csatlakoztam, siman be tudok logolni SSH-n domain userrel. sudo jog is megy (hozzadtam a megfelelo ad group-ot a sudoers-hez)

Viszont a samba share nem megy... A windows-ban a betallozott serveren még a megosztott konyvtar sem latszik. Tuzfalon kiengedtem a samba-t, illetve selinux ki-bekapcs is megvolt (hatha az fogja)

 

Igy nez ki a smb.conf

 

[global]
workgroup = DOMAIN
security = ads
encrypt passwords = yes
realm = DOMAIN_NEVE-LOCAL
passdb backend = tdbsam
printing = cups
printcap name = /dev/null
load printers = no
cups options = raw

[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes

[printers]
comment = All Printers
path = /var/tmp
printable = Yes
create mask = 0600
browseable = No

[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = @printadmin root
force group = @printadmin
create mask = 0664
directory mask = 0775

[share]
path = /mnt/share/
public = yes
valid users = nsuto
comment = test
browseable = yes
writeable = yes
printable = yes
guest ok = no
read only = no
create mask = 775
 

Hozzászólások

Meglett a baj :)

Ha masnak erdekes lehet, ez a helyes config:

 

[global]
workgroup = DOMAIN
security = ads
encrypt passwords = yes
log file = /var/log/samba/log.%m
max log size = 50
realm = DOMAIN_NEVE-LOCAL
printing = cups
printcap name = /dev/null
load printers = no
cups options = raw
kerberos method = secrets and keytab
ntlm auth = yes

[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes

[printers]
comment = All Printers
path = /var/tmp
printable = Yes
create mask = 0600
browseable = No

[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = @printadmin root
force group = @printadmin"
create mask = 0664
directory mask = 0775

[share]
path = /mnt/share
public = yes
valid users = @"csoport_neve@domain_neve.local"
writeable = yes
guest ok = no