Web lists-archives.com

Re: [Samba] Authentication issues with Samba 4.3.8

Hi  Rowland,

Thanks for the help.	

Could you please let me know what would  be the passwd database if I update my smb.conf. 

I have created the user locally and in samba using the steps given by you. And it seems it's working fine. 

The authentication is successful, but I was wondering why it was working in earlier version without adding user in samba database.

I'm having around 100+ users/share and the authentication is share level, do I need to add all the users again in the samba database ? can you please comment on these as well. Thank you.


-----Original Message-----
From: samba [mailto:samba-bounces@xxxxxxxxxxxxxxx] On Behalf Of Rowland Penny via samba
Sent: Sunday, July 02, 2017 8:33 PM
To: samba@xxxxxxxxxxxxxxx
Subject: Re: [Samba] Authentication issues with Samba 4.3.8

On Sun, 2 Jul 2017 19:49:12 +0530
"Chunduru, Krishnachaithanya via samba" <samba@xxxxxxxxxxxxxxx> wrote:

> Hi Rowland,
> Sorry I missed your previous mail.
> Our servers are not having any ldap or AD for authentication. It is 
> using tdbsam option as password database, and yes all the users and 
> groups are stored locally in the /etc/passwd and /etc/group.

OK, what you seem to be trying to set up is a standalone server with only passworded user access.

Can I suggest you alter smb.conf to this:

        # Change 'WORKGROUP' below to whatever
        # you want your workgroup to be called.
        workgroup = WORKGROUP
        server string = Samba on AIX
        log file = /var/log/samba/%m.log
        log level = 2
        max log size = 1000

        comment = All Printers
        path = /usr/spool/samba
        printable = Yes
        browseable = No

        comment = Temporary file space
        path = /tmp
        read only = No

Your users will need to exist in /etc/passwd and also be Samba users, you can do this by running (as root):

smbpasswd -a USERNAME

You will be asked for a password for the user (twice) and then the user will be added to Samba's database

You will also need to run (again as root):

smbpasswd -e USERNAME

You can find more info on this here:


You do not need to run winbind on a standalone server, only 'smbd' & 'nmbd'

Any user that needs to connect to the shares, will need to be both a Unix and Samba user on the standalone server, they will also have to use the Samba users password.


To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

This message and any attachments are intended only for the use of the addressee and may contain information that is privileged and confidential. If the reader of the message is not the intended recipient or an authorized representative of the intended recipient, you are hereby notified that any dissemination of this communication is strictly prohibited. If you have received this communication in error, please notify us immediately by e-mail and delete the message and any attachments from your system.
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba