Thanks Swerdna and PV, my samba file server is working now but a secure office environment need protected file sharing, so is it possible that only specific users and groups can see the specific folders. not every one who can see the WORKGROUP.
On Tue April 28 2009 02:56 pm, davesal wrote:
>
> Thanks Swerdna and PV, my samba file server is working now but a secure
> office environment need protected file sharing, so is it possible that
> only specific users and groups can see the specific folders. not every
> one who can see the WORKGROUP.
>
>
davesal;
These two parameters in the share definition may help.
browseable = no
valid users = [space separated list of users and NIX groups]
Example: valid users = jdoe tsmith @sales
Here jdoe and tsmith are user names, @sales is a Linux group.
By setting “browseable = no” the share is invisible to all the users. By
setting only the valid users, other users can see the share but not connect
to it. See “man smb.conf” for the use of these and many other parameters.
P. V.
“We’re all in this together, I’m pulling for you.” Red Green
There’s a range of recipes for shares in smb.conf discussed in this tutorial which might cover the options for most business cases, including restricting access, writability, ownerships and editorial rights: Samba Server and Suse / openSUSE: HowTo Configure a Professional File Server on a SOHO LAN
Thanks.
Do i need to add every user on linux by their windows login names. because i am having trouble if do not register anyone on samba server.
You must create credentials in the Samba user database or else Samba cannot decide who to allow and who to reject. You can use the windows logon names for administrative neatness sake – or other names as you wish.
Another alternative is to allow access to a share by IP addresses of the accessing machines (hosts allow). Seems cumbersome to me.
Thanks alot.
while in my global setting i am wondering which command is suitable or both. though there is no issue in the system and both are working.
name resolve order = bcast host lmhosts wins
OR
**include = /etc/samba/dhcp.conf **
while i am not using WINS
my Global configuration :
workgroup = WORKGROUP
netbios name = BCH-Fileshare
name resolve order = bcast host lmhosts wins
server string = “”
map to guest = Bad User
include = /etc/samba/dhcp.conf
local master = yes
preferred master = yes
os level = 65
I’d comment out this line:
# include = /etc/samba/dhcp.conf
and test.
PS your [global] looks OK otherwise
thanks again. right now i am testing mode and managing the users and groups.
as discussed in [http://HowTo Configure a Professional File Server on a SOHO LAN](http://HowTo Configure a Professional File Server on a SOHO LAN) to add a group
valid users = +chemstudy
but if need to add 2 or more groups can it be like this
** valid users = +chemstudy +humanresource + administration**
Yes, but don’t leav any space between + and administration
i.e.:
valid users = +chemstudy +humanresource +administration
do leave the space between successive groups as shown
You can also create different folder for each department, sales, accounting, administration, IT, etc, and then create a separate configuration for each folder in the samba conf file
ej:
[Sales]
path=/home/user/sales
read list=salesman1, salesman2
write list=salesman3 ,salesman4 salesmanager
force user=salesmanager
valid users=salesman1, salesman2, salesman3 ,salesman4 salesmanager
guest ok=no
[accounting]
path=/home/user/acc
read list=acc1, acc2
write list=acc3 ,acc4 accmanager
force user=accmanager
valid users=acc1, acc2, acc3 ,acc4 accmanager
guest ok=no
and so on, if a user does not have permission for one folder, that user will not be able to brower its content
Thanks Guys