Samba and Windows user ids

[Jerry Feldman]

On 04/24/2010 09:07 PM, Matthew Gillen wrote:
> On 04/24/2010 05:18 PM, Jerry Feldman wrote:
>  =20
>> At work, I export our home directories as well as a few others. I'm
>> using NIS for password management on RHEL 5.2. Normally when a Windows=

>> user creates a file, the user id is changed to nobody. This was fine f=
or
>> me since most Windows users were simply viewing files, but one of my
>> coworkers now wants to be able to update files in his home directory,
>> and if windows wants to update an existing file, he will have problems=

>> as well as when he logs into Linux.  Since we only have 6 people in th=
e
>> office and only 1 person who currently wants to be able to modify file=
s
>> on both Linux and Windows, I'd like a fairly simple solution. Would
>> something like "Share-level" security work where it would require user=
s
>> to enter their password to obtain their home directory. Other
>> directories would continue to use 'User-level' security.
>>    =20
> For his directory, you could create a special share, and use 'force use=
r'.
> Something like this:
> [jamesbond]
>    path =3D /home/jbond
>    validusers =3D jbond
>    force user =3D jbond
>    read only =3D no
>
> A better solution would be to check your smbusers to ensure that everyo=
ne's
> windows username maps to their unix username (if they're not in there, =
I
> think it default maps to 'nobody').  That should solve the problem for
> everyone (assuming you're already forcing them to use a username/passwo=
rd to
> access the shares, then you shouldn't have to change anything w.r.t.
> share-level vs. user-level security).
>
>  =20
Actually, the Linux user names are different from the Windows Names.
Since there are only 7 people in our office, and only 6 or use use
Linux, I don't mind updating the Samba config.

--=20
Jerry Feldman <gaf-mNDKBlG2WHs at public.gmane.org>
Boston Linux and Unix
PGP key id: 537C5846
PGP Key fingerprint: 3D1B 8377 A3C0 A5F2 ECBB  CA3B 4607 4319 537C 5846